Google Git
Sign in
fuchsia / third_party / vboot_reference / 509339ce2b7499ccb90331ab6910b87d0f9889a5
commit509339ce2b7499ccb90331ab6910b87d0f9889a5[log] [tgz]
authorC Shapiro <shapiroc@chromium.org>Tue Aug 22 11:40:23 2017 -0600
committerchrome-bot <chrome-bot@chromium.org>Wed Aug 23 08:02:12 2017 -0700
treeae383dbba8fb40b45db2a3dfcf15b0cfabf7ac25
parent93f1142d7a7bbee5c1bb551d197ce1e4c2c2ef87 [diff]
[unibuild] Support for unibuild firmware signing

For design context, see go/cros-unibuild-signing

This adds support for multiple, shared firmware images from a unified
build that needs to be signed with different OEM specific keys.

It uses a signer_config.csv file (that is generated by pack_firmware.py)
to determine which images need to be signed with which keys.

BUG=b:64842314
TEST=./build_image --board=coral dev
&& ./mod_image_for_recovery.sh --board=coral
&& ~/trunk/src/platform/vboot_reference/scripts/image_signing/sign_official_build.sh
recovery ../build/images/coral/latest/recovery_image.bin
../platform/vboot_reference/tests/devkeys
BRANCH=None

Change-Id: Id3711bbe73dfe652184bc046b5f642c30b8d1627
Reviewed-on: https://chromium-review.googlesource.com/626718
Commit-Ready: C Shapiro <shapiroc@google.com>
Tested-by: C Shapiro <shapiroc@google.com>
Reviewed-by: C Shapiro <shapiroc@google.com>
1 file changed
tree: ae383dbba8fb40b45db2a3dfcf15b0cfabf7ac25
  1. bdb/
  2. cgpt/
  3. firmware/
  4. futility/
  5. host/
  6. scripts/
  7. tests/
  8. utility/
  9. .gitignore
  10. Android.mk
  11. emerge_test.sh
  12. inherit-review-settings-ok
  13. LICENSE
  14. Makefile
  15. PRESUBMIT.cfg
  16. README
  17. vboot_host.pc.in
  18. WATCHLISTS