sig/src/main.rs

//! Command-line entry point for the `sig` utility.
//!
//! The binary intentionally keeps very little logic here. Clap-owned command
//! definitions live in [`cli`], while the Centauri Carbon 2 `.sig` format and
//! cryptographic details live in [`crypto`]. That split keeps argument parsing
//! separate from file-format handling so future commands can reuse the same
//! unpacking code without duplicating CLI concerns.

use std::{error::Error, fs, path::PathBuf};

use clap::Parser;

mod cli;
mod crypto;

#[cfg(test)]
mod tests;

use cli::{Cli, Command};

fn main() -> Result<(), Box<dyn Error>> {
    let cli = Cli::parse();

    match cli.command {
        Command::Strip(args) => strip(args)?,
    }

    Ok(())
}

/// Execute the `strip` subcommand.
///
/// `strip` removes the 512-byte `.sig` wrapper and writes the contained package
/// bytes. For encrypted packages, [`crypto::unpack_sig`] performs the AES-CBC
/// decryption before returning the payload.
fn strip(args: cli::StripArgs) -> Result<(), Box<dyn Error>> {
    let raw = fs::read(&args.input)?;
    let unpacked = crypto::unpack_sig(&raw)?;
    let output_path = args
        .output
        .unwrap_or_else(|| default_output_path(&args.input));

    fs::write(&output_path, unpacked)?;
    println!("wrote {}", output_path.display());

    Ok(())
}

/// Derive the default output path used by the web unpacker.
///
/// A conventional input like `firmware.zip.sig` becomes `firmware.zip`. If the
/// input does not use the `.sig` extension, the tool still writes beside the
/// original file but changes the extension to `.decrypted` to avoid overwriting
/// the input by accident.
fn default_output_path(input: &std::path::Path) -> PathBuf {
    if input.extension().is_some_and(|ext| ext == "sig") {
        input.with_extension("")
    } else {
        input.with_extension("decrypted")
    }
}
Add sig strip command 2026-05-03 17:43:37 -06:00			//! Command-line entry point for the `sig` utility.
			`//!`
			`//! The binary intentionally keeps very little logic here. Clap-owned command`
			//! definitions live in [`cli`], while the Centauri Carbon 2 `.sig` format and
			//! cryptographic details live in [`crypto`]. That split keeps argument parsing
			`//! separate from file-format handling so future commands can reuse the same`
			`//! unpacking code without duplicating CLI concerns.`

			`use std::{error::Error, fs, path::PathBuf};`

			`use clap::Parser;`

			`mod cli;`
			`mod crypto;`

			`#[cfg(test)]`
			`mod tests;`

			`use cli::{Cli, Command};`

			`fn main() -> Result<(), Box<dyn Error>> {`
			`let cli = Cli::parse();`

			`match cli.command {`
			`Command::Strip(args) => strip(args)?,`
			`}`

			`Ok(())`
			`}`

			/// Execute the `strip` subcommand.
			`///`
			/// `strip` removes the 512-byte `.sig` wrapper and writes the contained package
			/// bytes. For encrypted packages, [`crypto::unpack_sig`] performs the AES-CBC
			`/// decryption before returning the payload.`
			`fn strip(args: cli::StripArgs) -> Result<(), Box<dyn Error>> {`
			`let raw = fs::read(&args.input)?;`
			`let unpacked = crypto::unpack_sig(&raw)?;`
			`let output_path = args`
			`.output`
			`.unwrap_or_else(\|\| default_output_path(&args.input));`

			`fs::write(&output_path, unpacked)?;`
			`println!("wrote {}", output_path.display());`

			`Ok(())`
			`}`

			`/// Derive the default output path used by the web unpacker.`
			`///`
			/// A conventional input like `firmware.zip.sig` becomes `firmware.zip`. If the
			/// input does not use the `.sig` extension, the tool still writes beside the
			/// original file but changes the extension to `.decrypted` to avoid overwriting
			`/// the input by accident.`
			`fn default_output_path(input: &std::path::Path) -> PathBuf {`
			`if input.extension().is_some_and(\|ext\| ext == "sig") {`
			`input.with_extension("")`
			`} else {`
			`input.with_extension("decrypted")`
			`}`
Add test files 2026-05-03 17:23:27 -06:00			`}`