forked from openkylin/platform_build
Fix signing on some GSI targets
GSI targets require enabling chain partition signing, which put the GSI signing in system.ing directly instead of in vbmeta.img. Some GSI targets inherit from BoardConfigGsiCommon.mk only, ex. gsi_arm64-user, do not enable chain partition signing. The patch add these settings back. On the other hand, the emulator makefiles still requires the settings at this time. Hence, we keep these settings in BoardConfigEmuCommon.mk. Bug: 150179516 Test: make gsi_arm64-user Test: make aosp_arm64-user Change-Id: Id188e4c6a31ce0cf9b134ebae36cbd5bfae19942
This commit is contained in:
SzuWei Lin
parent
7b285149a3
commit
f77e364de0
|
|
@ -33,6 +33,13 @@ BOARD_USES_METADATA_PARTITION := true
|
|||
# updating the last seen rollback index in the tamper-evident storage.
|
||||
BOARD_AVB_ROLLBACK_INDEX := 0
|
||||
|
||||
# Enable chain partition for system.
|
||||
# GSI need to sign on system.img instead of vbmeta.
|
||||
BOARD_AVB_SYSTEM_KEY_PATH := external/avb/test/data/testkey_rsa2048.pem
|
||||
BOARD_AVB_SYSTEM_ALGORITHM := SHA256_RSA2048
|
||||
BOARD_AVB_SYSTEM_ROLLBACK_INDEX := $(PLATFORM_SECURITY_PATCH_TIMESTAMP)
|
||||
BOARD_AVB_SYSTEM_ROLLBACK_INDEX_LOCATION := 1
|
||||
|
||||
# GSI specific System Properties
|
||||
ifneq (,$(filter userdebug eng,$(TARGET_BUILD_VARIANT)))
|
||||
TARGET_SYSTEM_EXT_PROP := build/make/target/board/gsi_system_ext.prop
|
||||
|
|
|
|||
Loading…
Reference in New Issue