tequilaOS/platform_build
2
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity
platform_build/tools
History
Tao Bao c218a470fb Support replacing AVB signing keys. 
sign_target_files_apks.py now supports signing targets using verified
boot 2.0 (aka AVB). It allows replacing AVB signing keys for both of
chained and non-chained partitions.

An example command line looks as follows.
 $ ./build/tools/releasetools/sign_target_files_apks.py \
     --avb_vbmeta_key external/avb/test/data/testkey_rsa2048.pem \
     --avb_vbmeta_algorithm SHA256_RSA2048 \
     --avb_vbmeta_extra_args \
         "--signing_helper_with_files ./signing-helper.sh" \
     --avb_system_key external/avb/test/data/testkey_rsa4096.pem \
     --avb_system_algorithm SHA256_RSA4096 \
     --avb_system_extra_args \
         "--signing_helper_with_files ./signing-helper.sh" \
     product-target_files.eng.zip signed-product-target_files.zip

To verify the signed images:
 $ unzip signed-product-target_files.zip IMAGES/\*
 $ avbtool verify_image --image IMAGES/vbmeta.img \
     --expected_chain_partition system:1:testkey_rsa4096_pub.pem \
     --key external/avb/test/data/testkey_rsa2048.pem

Bug: 38315721
Test: sign_target_files_apks.py on AVB-enabled target w/ and w/o chained
      partitions respectively. Check the signing command lines; validate
      the signed images with 'avbtool verify_image'.
Change-Id: Ia009555b16ddb6d8ba6a0858d5ca7d983bbab887
(cherry picked from commit 639118ff4d)
2017-06-28 12:38:32 -07:00
..
acp Switch some build tools to Soong 2016-06-06 14:51:52 -07:00
apicheck Ensure prebuilt executables are executable 2016-04-11 11:21:47 -07:00
atree Fix clang-tidy performance warnings. 2016-07-27 10:28:33 -07:00
droiddoc Delete all of templates-sdk/. 2017-03-27 17:23:36 +00:00
fs_config Android.mk: clear variable at end of use 2017-05-19 20:14:27 +00:00
fs_get_stats fix device specific fs_config on build server 2015-07-10 10:55:54 -07:00
ijar Use more prebuilt build-tools 2016-06-14 13:50:38 -07:00
libhost Merge \\\\"Remove build/libs\\\\" am: fcb8a89c3b am: 3c48705b9b am: 947c5715f8 2016-06-17 18:23:07 +00:00
makeparallel Wait for children to exit in makeparallel 2017-02-21 17:53:35 -08:00
releasetools Support replacing AVB signing keys. 2017-06-28 12:38:32 -07:00
signapk Don't include the dev-key on IOT products. 2017-04-03 15:04:35 -07:00
signtos Add SignTos tool 2014-08-08 13:18:53 -07:00
zipalign fallout of cleaning-up libutils includes 2017-03-03 12:37:34 -08:00
ziptime Switch some build tools to Soong 2016-06-06 14:51:52 -07:00
adbs ADBS now uses stack_core code to parse traces. 2014-07-07 15:14:41 -07:00
Android.mk Remove unneccessary TARGET_BUILD_APPS conditional 2015-12-15 15:49:53 -08:00
brillo-clang-format Include Brillo's cannonical .clang-format file. 2016-02-16 14:29:45 -08:00
buildinfo.sh Split board-specific system properties into vendor partition 2017-02-27 13:35:37 +09:00
check_builds.sh
check_link_type.py Fix link_type checking 2016-09-15 14:40:39 -07:00
check_radio_versions.py
checkowners.py Encode special characters in email addresses. 2017-04-05 14:16:49 -07:00
compare_fileslist.py
dump-package-stats
event_log_tags.py
fat16copy.py fat16copy: Allow to copy files to an existing directory. 2017-02-13 16:00:07 +00:00
fileslist_util.py build: tools: Add json collection of installed files with hashes. 2016-10-20 10:07:13 -07:00
filter-product-graph.py
findleaves.py findleaves.py: prevent recursion into symlink loops 2016-11-03 14:29:40 -07:00
fixlinebreaks.sh
generate-enforce-rro-android-manifest.py Enforce RROs for all the build-time ROs 2017-03-30 10:43:38 +09:00
generate-notice-files.py Split vendor license notices into vendor partition 2017-05-01 22:07:50 +00:00
java-event-log-tags.py Add float support to binary event log. 2015-04-28 18:21:09 -07:00
java-layers.py
merge-event-log-tags.py
mktarball.sh fix device specific fs_config on build server 2015-07-10 10:55:54 -07:00
normalize_path.py Normalize the product makefile path in inherit-product. 2015-10-28 15:20:41 -07:00
parsedeps.py
post_process_props.py Move /default.prop to /system/etc/prop.default 2017-06-27 15:05:17 +08:00
print_module_licenses.sh
product_debug.py Remove support of factory ramdisk/bundle. 2015-02-04 11:00:01 -08:00
soong_to_convert.py Remove DBus support. 2017-03-02 18:00:21 -08:00
vendor_buildinfo.sh Split board-specific system properties into vendor partition 2017-02-27 13:35:37 +09:00
warn.py Recognize new clang and make warnings. 2017-05-18 14:29:59 -07:00