diff options
author | Paul Spooren <mail@aparcar.org> | 2019-09-24 12:32:56 -1000 |
---|---|---|
committer | John Crispin <john@phrozen.org> | 2019-10-21 14:07:08 +0200 |
commit | 2ae5100d707057c29ed2ebdd0ae31b50a333f95b (patch) | |
tree | 794f35cfc87ec2f38590d6bae36c32e277af8706 /scripts/mkits.sh | |
parent | 4a45e69d190f72ed94878487b271ed7651dd9efa (diff) | |
download | upstream-2ae5100d707057c29ed2ebdd0ae31b50a333f95b.tar.gz upstream-2ae5100d707057c29ed2ebdd0ae31b50a333f95b.tar.bz2 upstream-2ae5100d707057c29ed2ebdd0ae31b50a333f95b.zip |
build: add script to sign packages
This script allows image signing indipendend of the actual build
process, to run on a master server after receiving freshly backed
images. Idea is to avoid storying private keys on third party builders
while still beeing to be able to sign packages.
Run ./scripts/sign_images.sh with the following env vars:
* TOP_DIR where to search for sysupgrade.bin images
* BUILD_KEY place of key-build{,.pub,.ucert}
* REMOVE_OTHER_SIGNATURES removes signatures added by e.g. buildbots
Only sysupgrade.bin files are touched as factory.bin signatures wouldn't
be evaluated on stock from.
Signed-off-by: Paul Spooren <mail@aparcar.org>
Diffstat (limited to 'scripts/mkits.sh')
0 files changed, 0 insertions, 0 deletions