Donate to e Foundation | Murena handsets with /e/OS | Own a part of Murena! Learn more

Commit b3e8ce6d authored by Alex Deymo's avatar Alex Deymo
Browse files

Replace OTA sideload verification key when signing A/B devices. 

The update-payload-key is used by update_engine_sideload from recovery
to verify an update payload.

Bug: 27178350
Change-Id: I7a0a307ae565e5e9cbf2c9b58fbcc055e87771ce
parent c6ebe9fc

tools/releasetools/sign_target_files_apks.py

+5 −0
Original line number Diff line number Diff line
@@ -255,6 +255,7 @@ def ProcessTargetFiles(input_tf_zip, output_tf_zip, misc_info, 
    elif (OPTIONS.replace_ota_keys and

          info.filename in (

              "BOOT/RAMDISK/res/keys",

              "BOOT/RAMDISK/etc/update_engine/update-payload-key.pub.pem",

              "RECOVERY/RAMDISK/res/keys",

              "SYSTEM/etc/security/otacerts.zip",

              "SYSTEM/etc/update_engine/update-payload-key.pub.pem")):
@@ -510,6 +511,10 @@ def ReplaceOtaKeys(input_tf_zip, output_tf_zip, misc_info): 
        output_tf_zip,

        "SYSTEM/etc/update_engine/update-payload-key.pub.pem",

        pubkey)

    common.ZipWriteStr(

        output_tf_zip,

        "BOOT/RAMDISK/etc/update_engine/update-payload-key.pub.pem",

        pubkey)



  return new_recovery_keys