├── README.md
├── keyboxGenerator_v1.0.py
├── keyboxGenerator.py
├── keyboxGenerator_v2.0.py
└── LICENSE
/README.md:
--------------------------------------------------------------------------------
1 | # keyboxGenerator
2 |
3 | The Python scripts here are used for generating Android keybox.xml for Tricky Store (a Magisk Module) on the Ubuntu 24.04.1 LTS platform (WSL).
4 |
5 | ## Acknowledgement
6 |
7 | 1) [https://xdaforums.com/t/tee-hacking.4662185/page-21#post-89847987](https://xdaforums.com/t/tee-hacking.4662185/page-21#post-89847987)
8 | 2) [https://stackoverflow.com/questions/17733536/how-to-convert-a-private-key-to-an-rsa-private-key](https://stackoverflow.com/questions/17733536/how-to-convert-a-private-key-to-an-rsa-private-key)
9 |
10 | ## Cautions
11 |
12 | Remember to store the script with Unix (LF) as the line separator.
13 |
14 | ## Versions
15 |
16 | ### v1.0
17 |
18 | This is the original version.
19 |
20 | ### v2.0
21 |
22 | Briefly checking the content of the three child key files is supported.
23 |
24 | Using ``ssh-keygen`` to convert an OpenSSL private key to the required RSA private key is supported.
25 |
26 | The program will prompt the overwriting if files exist.
27 |
28 | The device ID is generated randomly.
29 |
--------------------------------------------------------------------------------
/keyboxGenerator_v1.0.py:
--------------------------------------------------------------------------------
1 | import os
2 | try:
3 | os.chdir(os.path.abspath(os.path.dirname(__file__)))
4 | except:
5 | pass
6 | EXIT_SUCCESS = 0
7 | EXIT_FAILURE = 1
8 | EOF = (-1)
9 | keyboxFormatter = """
10 |
11 | 1
12 |
13 |
14 |
15 | {0}
16 |
17 | 1
18 |
19 | {1}
20 |
21 |
22 |
23 |
24 | {2}
25 |
26 |
27 | """
28 |
29 |
30 | def execute(commandline:str) -> int|None:
31 | if isinstance(commandline, str):
32 | print("$ " + commandline)
33 | return os.system(commandline)
34 | else:
35 | return None
36 |
37 | def handleOpenSSL(flag:bool = True) -> bool|None:
38 | if isinstance(flag, bool):
39 | errorLevel = execute("openssl version")
40 | if EXIT_SUCCESS == errorLevel:
41 | return True
42 | elif flag: # can try again
43 | execute("sudo apt-get install openssl libssl-dev")
44 | return handleOpenSSL(False)
45 | else:
46 | return False
47 | else:
48 | return None
49 |
50 | def pressTheEnterKeyToExit(errorLevel:int|None = None):
51 | try:
52 | print("Please press the enter key to exit ({0}). ".format(errorLevel) if isinstance(errorLevel, int) else "Please press the enter key to exit. ")
53 | input()
54 | except:
55 | pass
56 |
57 | def main() -> int:
58 | # Parameters #
59 | failureCount = 0
60 | ecPrivateKeyFilePath = "ecPrivateKey.pem"
61 | certificateFilePath = "certificate.pem"
62 | rsaPrivateKeyFilePath = "rsaPrivateKey.pem"
63 | oldRsaPrivateKeyFilePath = "oldRsaPrivateKey.pem"
64 | keyboxFilePath = "keybox.xml"
65 |
66 | # First-phase Generation #
67 | failureCount += execute("openssl ecparam -name prime256v1 -genkey -noout -out \"{0}\"".format(ecPrivateKeyFilePath)) != 0
68 | failureCount += execute("openssl req -new -x509 -key \"{0}\" -out {1} -days 3650 -subj \"/CN=Keybox\"".format(ecPrivateKeyFilePath, certificateFilePath)) != 0
69 | failureCount += execute("openssl genrsa -out \"{0}\" 2048".format(rsaPrivateKeyFilePath)) != 0
70 | if failureCount > 0:
71 | print("Cannot generate a sample ``keybox.xml`` file since {0} PEM file{1} not generated successfully. ".format(failureCount, ("s were" if failureCount > 1 else " was")))
72 | pressTheEnterKeyToExit(EOF)
73 | return EOF
74 |
75 | # First-phase Reading #
76 | try:
77 | with open(ecPrivateKeyFilePath, "r", encoding = "utf-8") as f:
78 | ecPrivateKey = f.read()
79 | with open(certificateFilePath, "r", encoding = "utf-8") as f:
80 | certificate = f.read()
81 | with open(rsaPrivateKeyFilePath, "r", encoding = "utf-8") as f:
82 | rsaPrivateKey = f.read()
83 | except BaseException as e:
84 | print("Failed to read one or more of the PEM files. Details are as follows. \n{0}".format(e))
85 | pressTheEnterKeyToExit(EOF)
86 | return EOF
87 |
88 | # Second-phase Generation #
89 | if rsaPrivateKey.startswith("-----BEGIN PRIVATE KEY-----"):
90 | print("A newer openssl version is used. The RSA private key in the PKCS8 format will be converted to that in the PKCS1 format soon. ")
91 | failureCount += execute("openssl rsa -in \"{0}\" -out \"{1}\" -traditional".format(rsaPrivateKeyFilePath, oldRsaPrivateKeyFilePath))
92 | if failureCount > 0:
93 | print("Cannot convert the RSA private key in the PKCS8 format to that in the PKCS1 format. ")
94 | pressTheEnterKeyToExit(EOF)
95 | return EOF
96 | else:
97 | print("Finished converting the RSA private key in the PKCS8 format to that in the PKCS1 format. ")
98 | try:
99 | with open(oldRsaPrivateKeyFilePath, "r", encoding = "utf-8") as f:
100 | rsaPrivateKey = f.read()
101 | except BaseException as e:
102 | print("Failed to update the RSA private key from \"{0}\". Details are as follows. \n{1}".format(oldRsaPrivateKeyFilePath, e))
103 | pressTheEnterKeyToExit(EOF)
104 | return EOF
105 |
106 | # Keybox Generation #
107 | keybox = keyboxFormatter.format(ecPrivateKey, certificate, rsaPrivateKey)
108 | print(keybox)
109 | try:
110 | with open(keyboxFilePath, "w", encoding = "utf-8") as f:
111 | f.write(keybox)
112 | print("Successfully wrote the keybox to \"{0}\". ".format(keyboxFilePath))
113 | pressTheEnterKeyToExit(EXIT_SUCCESS)
114 | return EXIT_SUCCESS
115 | except BaseException as e:
116 | print("Failed to write the keybox to \"{0}\". Details are as follows. \n{1}".format(keyboxFilePath, e))
117 | pressTheEnterKeyToExit(EXIT_FAILURE)
118 | return EXIT_FAILURE
119 |
120 |
121 |
122 | if "__main__" == __name__:
123 | exit(main())
--------------------------------------------------------------------------------
/keyboxGenerator.py:
--------------------------------------------------------------------------------
1 | import os
2 | from random import randint, choice
3 | from base64 import b64decode
4 | try:
5 | os.chdir(os.path.abspath(os.path.dirname(__file__)))
6 | except:
7 | pass
8 | EXIT_SUCCESS = 0
9 | EXIT_FAILURE = 1
10 | EOF = (-1)
11 | LB = 2 # the lower bound of the length of the device ID
12 | UB = 12 # the upper bound of the length of the device ID
13 | CHARSET = "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz"
14 | keyboxFormatter = """
15 |
16 | 1
17 |
18 |
19 |
20 | {1}
21 |
22 | 1
23 |
24 | {2}
25 |
26 |
27 |
28 |
29 | {3}
30 |
31 |
32 |
33 | """
34 |
35 |
36 | def canOverwrite(flags:list, idx:int, prompts:str|tuple|list|set) -> bool:
37 | if isinstance(flags, list) and isinstance(idx, int) and -len(flags) <= idx < len(flags) and isinstance(prompts, (str, tuple, list, set)):
38 | try:
39 | if isinstance(prompts, str):
40 | print("\"{0}\"".format(prompts))
41 | choice = input("The file mentioned above exists. Overwrite or not [aYn]? ")
42 | else:
43 | print(prompts)
44 | choice = input("At least one of the files mentioned above exists. Overwrite or not [aYn]? ")
45 | if choice.upper() == "A":
46 | for i in range((idx if idx >= 0 else len(flags) + idx), len(flags)): # overwirte the current file and all the following necessary files no matter whether they exist
47 | flags[i] = True
48 | return True
49 | elif choice.upper() == "N":
50 | return False
51 | else:
52 | flags[idx] = True
53 | return True
54 | except BaseException as e:
55 | print(e)
56 | return False
57 | else:
58 | input("#")
59 | return False
60 |
61 | def execute(commandline:str) -> int|None:
62 | if isinstance(commandline, str):
63 | print("$ " + commandline)
64 | return os.system(commandline)
65 | else:
66 | return None
67 |
68 | def handleOpenSSL(flag:bool = True) -> bool|None:
69 | if isinstance(flag, bool):
70 | errorLevel = execute("openssl version")
71 | if EXIT_SUCCESS == errorLevel:
72 | return True
73 | elif flag: # can try again
74 | execute("sudo apt-get install openssl libssl-dev")
75 | return handleOpenSSL(False)
76 | else:
77 | return False
78 | else:
79 | return None
80 |
81 | def pressTheEnterKeyToExit(errorLevel:int|None = None):
82 | try:
83 | print("Please press the enter key to exit ({0}). ".format(errorLevel) if isinstance(errorLevel, int) else "Please press the enter key to exit. ")
84 | input()
85 | except:
86 | pass
87 |
88 | def main() -> int:
89 | # Parameters #
90 | failureCount = 0
91 | deviceID = "".join([choice(CHARSET) for _ in range(randint(LB, UB))]) # or specify the device ID manually like "YourDeviceID"
92 | ecPrivateKeyFilePath = "ecPrivateKey.pem"
93 | certificateFilePath = "certificate.pem"
94 | rsaPrivateKeyFilePath = "rsaPrivateKey.pem"
95 | keyboxFilePath = "keybox.xml" # None for no files written
96 | flags = [not (os.path.isfile(ecPrivateKeyFilePath) or os.path.isfile(certificateFilePath)), not os.path.isfile(rsaPrivateKeyFilePath), not os.path.isfile(keyboxFilePath)]
97 |
98 | # First-phase Generation #
99 | if flags[0] or canOverwrite(flags, 0, (ecPrivateKeyFilePath, certificateFilePath)):
100 | failureCount += execute("openssl ecparam -name prime256v1 -genkey -noout -out \"{0}\"".format(ecPrivateKeyFilePath)) != 0
101 | if flags[0] or not os.path.isfile(certificateFilePath):
102 | failureCount += execute("openssl req -new -x509 -key \"{0}\" -out {1} -days 3650 -subj \"/CN=Keybox\"".format(ecPrivateKeyFilePath, certificateFilePath)) != 0
103 | if flags[1] or canOverwrite(flags, 1, rsaPrivateKeyFilePath):
104 | failureCount += execute("openssl genrsa -out \"{0}\" 2048".format(rsaPrivateKeyFilePath)) != 0
105 | if failureCount > 0:
106 | print("Cannot generate a sample ``keybox.xml`` file since {0} PEM file{1} not generated successfully. ".format(failureCount, ("s were" if failureCount > 1 else " was")))
107 | pressTheEnterKeyToExit(11)
108 | return 11
109 |
110 | # First-phase Reading #
111 | try:
112 | with open(ecPrivateKeyFilePath, "r", encoding = "utf-8") as f:
113 | ecPrivateKey = f.read()
114 | with open(certificateFilePath, "r", encoding = "utf-8") as f:
115 | certificate = f.read()
116 | with open(rsaPrivateKeyFilePath, "r", encoding = "utf-8") as f:
117 | rsaPrivateKey = f.read()
118 | except BaseException as e:
119 | print("Failed to read one or more of the PEM files. Details are as follows. \n{0}".format(e))
120 | pressTheEnterKeyToExit(12)
121 | return 12
122 |
123 | # Second-phase Generation #
124 | if flags[1]: # only updates the key content when the original key is newly generated or updating is allowed
125 | if rsaPrivateKey.startswith("-----BEGIN PRIVATE KEY-----") and rsaPrivateKey.rstrip().endswith("-----END PRIVATE KEY-----"):
126 | print("A newer openssl version is used. The RSA private key in the PKCS8 format will be converted to that in the PKCS1 format soon. ")
127 | failureCount += execute("openssl rsa -in \"{0}\" -out \"{0}\" -traditional".format(rsaPrivateKeyFilePath))
128 | if failureCount > 0:
129 | print("Cannot convert the RSA private key in the PKCS8 format to that in the PKCS1 format. ")
130 | pressTheEnterKeyToExit(13)
131 | return 13
132 | else:
133 | print("Finished converting the RSA private key in the PKCS8 format to that in the PKCS1 format. ")
134 | try:
135 | with open(rsaPrivateKeyFilePath, "r", encoding = "utf-8") as f:
136 | rsaPrivateKey = f.read()
137 | except BaseException as e:
138 | print("Failed to update the RSA private key from \"{0}\". Details are as follows. \n{1}".format(rsaPrivateKeyFilePath, e))
139 | pressTheEnterKeyToExit(14)
140 | return 14
141 | elif rsaPrivateKey.startswith("-----BEGIN OPENSSH PRIVATE KEY-----") and rsaPrivateKey.rstrip().endswith("-----END OPENSSH PRIVATE KEY-----"):
142 | print("An OpenSSL private key is detected, which will be converted to the RSA private key soon. ")
143 | failureCount += execute("ssh-keygen -p -m PEM -f \"{0}\" -N \"\"".format(rsaPrivateKeyFilePath))
144 | if failureCount > 0:
145 | print("Cannot convert the OpenSSL private key to the RSA private key. ")
146 | pressTheEnterKeyToExit(15)
147 | return 15
148 | else:
149 | print("Finished converting the OpenSSL private key to the RSA private key. ")
150 | try:
151 | with open(rsaPrivateKeyFilePath, "r", encoding = "utf-8") as f: # the ``ssh-keygen`` overwrites the file though no obvious output filepaths specified
152 | rsaPrivateKey = f.read()
153 | except BaseException as e:
154 | print("Failed to update the RSA private key from \"{0}\". Details are as follows. \n{1}".format(rsaPrivateKeyFilePath, e))
155 | pressTheEnterKeyToExit(16)
156 | return 16
157 |
158 | # Brief Checks #
159 | if not (ecPrivateKey.startswith("-----BEGIN EC PRIVATE KEY-----") and ecPrivateKey.rstrip().endswith("-----END EC PRIVATE KEY-----")):
160 | print("An invalid EC private key is detected. Please try to use the latest key generation tools to solve this issue. ")
161 | pressTheEnterKeyToExit(17)
162 | return 17
163 | if not (certificate.startswith("-----BEGIN CERTIFICATE-----") and certificate.rstrip().endswith("-----END CERTIFICATE-----")):
164 | print("An invalid certificate is detected. Please try to use the latest key generation tools to solve this issue. ")
165 | pressTheEnterKeyToExit(18)
166 | return 18
167 | if not (rsaPrivateKey.startswith("-----BEGIN RSA PRIVATE KEY-----") and rsaPrivateKey.rstrip().endswith("-----END RSA PRIVATE KEY-----")):
168 | print("An invalid final RSA private key is detected. Please try to use the latest key generation tools to solve this issue. ")
169 | pressTheEnterKeyToExit(19)
170 | return 19
171 |
172 | # Keybox Generation #
173 | keybox = keyboxFormatter.format(deviceID, ecPrivateKey, certificate, rsaPrivateKey)
174 | print("Generated keybox with a length of {0}: ".format(len(keybox)))
175 | print(keybox)
176 | if keyboxFilePath is not None and (flags[2] or canOverwrite(flags, 2, keyboxFilePath)):
177 | try:
178 | with open(keyboxFilePath, "w", encoding = "utf-8") as f:
179 | f.write(keybox)
180 | print("Successfully wrote the keybox to \"{0}\". ".format(keyboxFilePath))
181 | pressTheEnterKeyToExit(EXIT_SUCCESS)
182 | return EXIT_SUCCESS
183 | except BaseException as e:
184 | print("Failed to write the keybox to \"{0}\". Details are as follows. \n{1}".format(keyboxFilePath, e))
185 | pressTheEnterKeyToExit(20)
186 | return 20
187 | else:
188 | print("The keybox has not been written to any files. Please refer to the text above. ")
189 | pressTheEnterKeyToExit(EXIT_FAILURE)
190 | return EXIT_FAILURE
191 |
192 |
193 |
194 | if "__main__" == __name__:
195 | exit(main())
--------------------------------------------------------------------------------
/keyboxGenerator_v2.0.py:
--------------------------------------------------------------------------------
1 | import os
2 | from random import randint, choice
3 | from base64 import b64decode
4 | try:
5 | os.chdir(os.path.abspath(os.path.dirname(__file__)))
6 | except:
7 | pass
8 | EXIT_SUCCESS = 0
9 | EXIT_FAILURE = 1
10 | EOF = (-1)
11 | LB = 2 # the lower bound of the length of the device ID
12 | UB = 12 # the upper bound of the length of the device ID
13 | CHARSET = "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz"
14 | keyboxFormatter = """
15 |
16 | 1
17 |
18 |
19 |
20 | {1}
21 |
22 | 1
23 |
24 | {2}
25 |
26 |
27 |
28 |
29 | {3}
30 |
31 |
32 |
33 | """
34 |
35 |
36 | def canOverwrite(flags:list, idx:int, prompts:str|tuple|list|set) -> bool:
37 | if isinstance(flags, list) and isinstance(idx, int) and -len(flags) <= idx < len(flags) and isinstance(prompts, (str, tuple, list, set)):
38 | try:
39 | if isinstance(prompts, str):
40 | print("\"{0}\"".format(prompts))
41 | choice = input("The file mentioned above exists. Overwrite or not [aYn]? ")
42 | else:
43 | print(prompts)
44 | choice = input("At least one of the files mentioned above exists. Overwrite or not [aYn]? ")
45 | if choice.upper() == "A":
46 | for i in range((idx if idx >= 0 else len(flags) + idx), len(flags)): # overwirte the current file and all the following necessary files no matter whether they exist
47 | flags[i] = True
48 | return True
49 | elif choice.upper() == "N":
50 | return False
51 | else:
52 | flags[idx] = True
53 | return True
54 | except BaseException as e:
55 | print(e)
56 | return False
57 | else:
58 | input("#")
59 | return False
60 |
61 | def execute(commandline:str) -> int|None:
62 | if isinstance(commandline, str):
63 | print("$ " + commandline)
64 | return os.system(commandline)
65 | else:
66 | return None
67 |
68 | def handleOpenSSL(flag:bool = True) -> bool|None:
69 | if isinstance(flag, bool):
70 | errorLevel = execute("openssl version")
71 | if EXIT_SUCCESS == errorLevel:
72 | return True
73 | elif flag: # can try again
74 | execute("sudo apt-get install openssl libssl-dev")
75 | return handleOpenSSL(False)
76 | else:
77 | return False
78 | else:
79 | return None
80 |
81 | def pressTheEnterKeyToExit(errorLevel:int|None = None):
82 | try:
83 | print("Please press the enter key to exit ({0}). ".format(errorLevel) if isinstance(errorLevel, int) else "Please press the enter key to exit. ")
84 | input()
85 | except:
86 | pass
87 |
88 | def main() -> int:
89 | # Parameters #
90 | failureCount = 0
91 | deviceID = "".join([choice(CHARSET) for _ in range(randint(LB, UB))]) # or specify the device ID manually like "YourDeviceID"
92 | ecPrivateKeyFilePath = "ecPrivateKey.pem"
93 | certificateFilePath = "certificate.pem"
94 | rsaPrivateKeyFilePath = "rsaPrivateKey.pem"
95 | keyboxFilePath = "keybox.xml" # None for no files written
96 | flags = [not (os.path.isfile(ecPrivateKeyFilePath) or os.path.isfile(certificateFilePath)), not os.path.isfile(rsaPrivateKeyFilePath), not os.path.isfile(keyboxFilePath)]
97 |
98 | # First-phase Generation #
99 | if flags[0] or canOverwrite(flags, 0, (ecPrivateKeyFilePath, certificateFilePath)):
100 | failureCount += execute("openssl ecparam -name prime256v1 -genkey -noout -out \"{0}\"".format(ecPrivateKeyFilePath)) != 0
101 | if flags[0] or not os.path.isfile(certificateFilePath):
102 | failureCount += execute("openssl req -new -x509 -key \"{0}\" -out {1} -days 3650 -subj \"/CN=Keybox\"".format(ecPrivateKeyFilePath, certificateFilePath)) != 0
103 | if flags[1] or canOverwrite(flags, 1, rsaPrivateKeyFilePath):
104 | failureCount += execute("openssl genrsa -out \"{0}\" 2048".format(rsaPrivateKeyFilePath)) != 0
105 | if failureCount > 0:
106 | print("Cannot generate a sample ``keybox.xml`` file since {0} PEM file{1} not generated successfully. ".format(failureCount, ("s were" if failureCount > 1 else " was")))
107 | pressTheEnterKeyToExit(11)
108 | return 11
109 |
110 | # First-phase Reading #
111 | try:
112 | with open(ecPrivateKeyFilePath, "r", encoding = "utf-8") as f:
113 | ecPrivateKey = f.read()
114 | with open(certificateFilePath, "r", encoding = "utf-8") as f:
115 | certificate = f.read()
116 | with open(rsaPrivateKeyFilePath, "r", encoding = "utf-8") as f:
117 | rsaPrivateKey = f.read()
118 | except BaseException as e:
119 | print("Failed to read one or more of the PEM files. Details are as follows. \n{0}".format(e))
120 | pressTheEnterKeyToExit(12)
121 | return 12
122 |
123 | # Second-phase Generation #
124 | if flags[1]: # only updates the key content when the original key is newly generated or updating is allowed
125 | if rsaPrivateKey.startswith("-----BEGIN PRIVATE KEY-----") and rsaPrivateKey.rstrip().endswith("-----END PRIVATE KEY-----"):
126 | print("A newer openssl version is used. The RSA private key in the PKCS8 format will be converted to that in the PKCS1 format soon. ")
127 | failureCount += execute("openssl rsa -in \"{0}\" -out \"{0}\" -traditional".format(rsaPrivateKeyFilePath))
128 | if failureCount > 0:
129 | print("Cannot convert the RSA private key in the PKCS8 format to that in the PKCS1 format. ")
130 | pressTheEnterKeyToExit(13)
131 | return 13
132 | else:
133 | print("Finished converting the RSA private key in the PKCS8 format to that in the PKCS1 format. ")
134 | try:
135 | with open(rsaPrivateKeyFilePath, "r", encoding = "utf-8") as f:
136 | rsaPrivateKey = f.read()
137 | except BaseException as e:
138 | print("Failed to update the RSA private key from \"{0}\". Details are as follows. \n{1}".format(rsaPrivateKeyFilePath, e))
139 | pressTheEnterKeyToExit(14)
140 | return 14
141 | elif rsaPrivateKey.startswith("-----BEGIN OPENSSH PRIVATE KEY-----") and rsaPrivateKey.rstrip().endswith("-----END OPENSSH PRIVATE KEY-----"):
142 | print("An OpenSSL private key is detected, which will be converted to the RSA private key soon. ")
143 | failureCount += execute("ssh-keygen -p -m PEM -f \"{0}\" -N \"\"".format(rsaPrivateKeyFilePath))
144 | if failureCount > 0:
145 | print("Cannot convert the OpenSSL private key to the RSA private key. ")
146 | pressTheEnterKeyToExit(15)
147 | return 15
148 | else:
149 | print("Finished converting the OpenSSL private key to the RSA private key. ")
150 | try:
151 | with open(rsaPrivateKeyFilePath, "r", encoding = "utf-8") as f: # the ``ssh-keygen`` overwrites the file though no obvious output filepaths specified
152 | rsaPrivateKey = f.read()
153 | except BaseException as e:
154 | print("Failed to update the RSA private key from \"{0}\". Details are as follows. \n{1}".format(rsaPrivateKeyFilePath, e))
155 | pressTheEnterKeyToExit(16)
156 | return 16
157 |
158 | # Brief Checks #
159 | if not (ecPrivateKey.startswith("-----BEGIN EC PRIVATE KEY-----") and ecPrivateKey.rstrip().endswith("-----END EC PRIVATE KEY-----")):
160 | print("An invalid EC private key is detected. Please try to use the latest key generation tools to solve this issue. ")
161 | pressTheEnterKeyToExit(17)
162 | return 17
163 | if not (certificate.startswith("-----BEGIN CERTIFICATE-----") and certificate.rstrip().endswith("-----END CERTIFICATE-----")):
164 | print("An invalid certificate is detected. Please try to use the latest key generation tools to solve this issue. ")
165 | pressTheEnterKeyToExit(18)
166 | return 18
167 | if not (rsaPrivateKey.startswith("-----BEGIN RSA PRIVATE KEY-----") and rsaPrivateKey.rstrip().endswith("-----END RSA PRIVATE KEY-----")):
168 | print("An invalid final RSA private key is detected. Please try to use the latest key generation tools to solve this issue. ")
169 | pressTheEnterKeyToExit(19)
170 | return 19
171 |
172 | # Keybox Generation #
173 | keybox = keyboxFormatter.format(deviceID, ecPrivateKey, certificate, rsaPrivateKey)
174 | print("Generated keybox with a length of {0}: ".format(len(keybox)))
175 | print(keybox)
176 | if keyboxFilePath is not None and (flags[2] or canOverwrite(flags, 2, keyboxFilePath)):
177 | try:
178 | with open(keyboxFilePath, "w", encoding = "utf-8") as f:
179 | f.write(keybox)
180 | print("Successfully wrote the keybox to \"{0}\". ".format(keyboxFilePath))
181 | pressTheEnterKeyToExit(EXIT_SUCCESS)
182 | return EXIT_SUCCESS
183 | except BaseException as e:
184 | print("Failed to write the keybox to \"{0}\". Details are as follows. \n{1}".format(keyboxFilePath, e))
185 | pressTheEnterKeyToExit(20)
186 | return 20
187 | else:
188 | print("The keybox has not been written to any files. Please refer to the text above. ")
189 | pressTheEnterKeyToExit(EXIT_FAILURE)
190 | return EXIT_FAILURE
191 |
192 |
193 |
194 | if "__main__" == __name__:
195 | exit(main())
--------------------------------------------------------------------------------
/LICENSE:
--------------------------------------------------------------------------------
1 | Apache License
2 | Version 2.0, January 2004
3 | http://www.apache.org/licenses/
4 |
5 | TERMS AND CONDITIONS FOR USE, REPRODUCTION, AND DISTRIBUTION
6 |
7 | 1. Definitions.
8 |
9 | "License" shall mean the terms and conditions for use, reproduction,
10 | and distribution as defined by Sections 1 through 9 of this document.
11 |
12 | "Licensor" shall mean the copyright owner or entity authorized by
13 | the copyright owner that is granting the License.
14 |
15 | "Legal Entity" shall mean the union of the acting entity and all
16 | other entities that control, are controlled by, or are under common
17 | control with that entity. For the purposes of this definition,
18 | "control" means (i) the power, direct or indirect, to cause the
19 | direction or management of such entity, whether by contract or
20 | otherwise, or (ii) ownership of fifty percent (50%) or more of the
21 | outstanding shares, or (iii) beneficial ownership of such entity.
22 |
23 | "You" (or "Your") shall mean an individual or Legal Entity
24 | exercising permissions granted by this License.
25 |
26 | "Source" form shall mean the preferred form for making modifications,
27 | including but not limited to software source code, documentation
28 | source, and configuration files.
29 |
30 | "Object" form shall mean any form resulting from mechanical
31 | transformation or translation of a Source form, including but
32 | not limited to compiled object code, generated documentation,
33 | and conversions to other media types.
34 |
35 | "Work" shall mean the work of authorship, whether in Source or
36 | Object form, made available under the License, as indicated by a
37 | copyright notice that is included in or attached to the work
38 | (an example is provided in the Appendix below).
39 |
40 | "Derivative Works" shall mean any work, whether in Source or Object
41 | form, that is based on (or derived from) the Work and for which the
42 | editorial revisions, annotations, elaborations, or other modifications
43 | represent, as a whole, an original work of authorship. For the purposes
44 | of this License, Derivative Works shall not include works that remain
45 | separable from, or merely link (or bind by name) to the interfaces of,
46 | the Work and Derivative Works thereof.
47 |
48 | "Contribution" shall mean any work of authorship, including
49 | the original version of the Work and any modifications or additions
50 | to that Work or Derivative Works thereof, that is intentionally
51 | submitted to Licensor for inclusion in the Work by the copyright owner
52 | or by an individual or Legal Entity authorized to submit on behalf of
53 | the copyright owner. For the purposes of this definition, "submitted"
54 | means any form of electronic, verbal, or written communication sent
55 | to the Licensor or its representatives, including but not limited to
56 | communication on electronic mailing lists, source code control systems,
57 | and issue tracking systems that are managed by, or on behalf of, the
58 | Licensor for the purpose of discussing and improving the Work, but
59 | excluding communication that is conspicuously marked or otherwise
60 | designated in writing by the copyright owner as "Not a Contribution."
61 |
62 | "Contributor" shall mean Licensor and any individual or Legal Entity
63 | on behalf of whom a Contribution has been received by Licensor and
64 | subsequently incorporated within the Work.
65 |
66 | 2. Grant of Copyright License. Subject to the terms and conditions of
67 | this License, each Contributor hereby grants to You a perpetual,
68 | worldwide, non-exclusive, no-charge, royalty-free, irrevocable
69 | copyright license to reproduce, prepare Derivative Works of,
70 | publicly display, publicly perform, sublicense, and distribute the
71 | Work and such Derivative Works in Source or Object form.
72 |
73 | 3. Grant of Patent License. Subject to the terms and conditions of
74 | this License, each Contributor hereby grants to You a perpetual,
75 | worldwide, non-exclusive, no-charge, royalty-free, irrevocable
76 | (except as stated in this section) patent license to make, have made,
77 | use, offer to sell, sell, import, and otherwise transfer the Work,
78 | where such license applies only to those patent claims licensable
79 | by such Contributor that are necessarily infringed by their
80 | Contribution(s) alone or by combination of their Contribution(s)
81 | with the Work to which such Contribution(s) was submitted. If You
82 | institute patent litigation against any entity (including a
83 | cross-claim or counterclaim in a lawsuit) alleging that the Work
84 | or a Contribution incorporated within the Work constitutes direct
85 | or contributory patent infringement, then any patent licenses
86 | granted to You under this License for that Work shall terminate
87 | as of the date such litigation is filed.
88 |
89 | 4. Redistribution. You may reproduce and distribute copies of the
90 | Work or Derivative Works thereof in any medium, with or without
91 | modifications, and in Source or Object form, provided that You
92 | meet the following conditions:
93 |
94 | (a) You must give any other recipients of the Work or
95 | Derivative Works a copy of this License; and
96 |
97 | (b) You must cause any modified files to carry prominent notices
98 | stating that You changed the files; and
99 |
100 | (c) You must retain, in the Source form of any Derivative Works
101 | that You distribute, all copyright, patent, trademark, and
102 | attribution notices from the Source form of the Work,
103 | excluding those notices that do not pertain to any part of
104 | the Derivative Works; and
105 |
106 | (d) If the Work includes a "NOTICE" text file as part of its
107 | distribution, then any Derivative Works that You distribute must
108 | include a readable copy of the attribution notices contained
109 | within such NOTICE file, excluding those notices that do not
110 | pertain to any part of the Derivative Works, in at least one
111 | of the following places: within a NOTICE text file distributed
112 | as part of the Derivative Works; within the Source form or
113 | documentation, if provided along with the Derivative Works; or,
114 | within a display generated by the Derivative Works, if and
115 | wherever such third-party notices normally appear. The contents
116 | of the NOTICE file are for informational purposes only and
117 | do not modify the License. You may add Your own attribution
118 | notices within Derivative Works that You distribute, alongside
119 | or as an addendum to the NOTICE text from the Work, provided
120 | that such additional attribution notices cannot be construed
121 | as modifying the License.
122 |
123 | You may add Your own copyright statement to Your modifications and
124 | may provide additional or different license terms and conditions
125 | for use, reproduction, or distribution of Your modifications, or
126 | for any such Derivative Works as a whole, provided Your use,
127 | reproduction, and distribution of the Work otherwise complies with
128 | the conditions stated in this License.
129 |
130 | 5. Submission of Contributions. Unless You explicitly state otherwise,
131 | any Contribution intentionally submitted for inclusion in the Work
132 | by You to the Licensor shall be under the terms and conditions of
133 | this License, without any additional terms or conditions.
134 | Notwithstanding the above, nothing herein shall supersede or modify
135 | the terms of any separate license agreement you may have executed
136 | with Licensor regarding such Contributions.
137 |
138 | 6. Trademarks. This License does not grant permission to use the trade
139 | names, trademarks, service marks, or product names of the Licensor,
140 | except as required for reasonable and customary use in describing the
141 | origin of the Work and reproducing the content of the NOTICE file.
142 |
143 | 7. Disclaimer of Warranty. Unless required by applicable law or
144 | agreed to in writing, Licensor provides the Work (and each
145 | Contributor provides its Contributions) on an "AS IS" BASIS,
146 | WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or
147 | implied, including, without limitation, any warranties or conditions
148 | of TITLE, NON-INFRINGEMENT, MERCHANTABILITY, or FITNESS FOR A
149 | PARTICULAR PURPOSE. You are solely responsible for determining the
150 | appropriateness of using or redistributing the Work and assume any
151 | risks associated with Your exercise of permissions under this License.
152 |
153 | 8. Limitation of Liability. In no event and under no legal theory,
154 | whether in tort (including negligence), contract, or otherwise,
155 | unless required by applicable law (such as deliberate and grossly
156 | negligent acts) or agreed to in writing, shall any Contributor be
157 | liable to You for damages, including any direct, indirect, special,
158 | incidental, or consequential damages of any character arising as a
159 | result of this License or out of the use or inability to use the
160 | Work (including but not limited to damages for loss of goodwill,
161 | work stoppage, computer failure or malfunction, or any and all
162 | other commercial damages or losses), even if such Contributor
163 | has been advised of the possibility of such damages.
164 |
165 | 9. Accepting Warranty or Additional Liability. While redistributing
166 | the Work or Derivative Works thereof, You may choose to offer,
167 | and charge a fee for, acceptance of support, warranty, indemnity,
168 | or other liability obligations and/or rights consistent with this
169 | License. However, in accepting such obligations, You may act only
170 | on Your own behalf and on Your sole responsibility, not on behalf
171 | of any other Contributor, and only if You agree to indemnify,
172 | defend, and hold each Contributor harmless for any liability
173 | incurred by, or claims asserted against, such Contributor by reason
174 | of your accepting any such warranty or additional liability.
175 |
176 | END OF TERMS AND CONDITIONS
177 |
178 | APPENDIX: How to apply the Apache License to your work.
179 |
180 | To apply the Apache License to your work, attach the following
181 | boilerplate notice, with the fields enclosed by brackets "[]"
182 | replaced with your own identifying information. (Don't include
183 | the brackets!) The text should be enclosed in the appropriate
184 | comment syntax for the file format. We also recommend that a
185 | file or class name and description of purpose be included on the
186 | same "printed page" as the copyright notice for easier
187 | identification within third-party archives.
188 |
189 | Copyright [yyyy] [name of copyright owner]
190 |
191 | Licensed under the Apache License, Version 2.0 (the "License");
192 | you may not use this file except in compliance with the License.
193 | You may obtain a copy of the License at
194 |
195 | http://www.apache.org/licenses/LICENSE-2.0
196 |
197 | Unless required by applicable law or agreed to in writing, software
198 | distributed under the License is distributed on an "AS IS" BASIS,
199 | WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
200 | See the License for the specific language governing permissions and
201 | limitations under the License.
202 |
--------------------------------------------------------------------------------