security/hakurei.app
security/hakurei.app
2
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases 4 Wiki Activity

document generating signify key

Browse Source
This commit is contained in:
Daniel Micay 2020-03-21 22:01:31 -04:00
parent 22f43e51c3
commit ab9e464cd5
1 changed files with 11 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

11
static/build.html
View File

@ -459,6 +459,17 @@ cd ../..</pre>
<p>The <code>avb_pkmd.bin</code> file isn't needed for generating a signed release but <p>The <code>avb_pkmd.bin</code> file isn't needed for generating a signed release but
rather to set the public key used by the device to enforce verified boot.</p> rather to set the public key used by the device to enforce verified boot.</p>
<p>Generate a signify key for signing factory images:</p>
<pre>signify -G -n -p keys/factory.pub -s keys/factory.sec</pre>
<p>Remove the <code>-n</code> switch to set a passphrase. The <code>signify</code>
tool doesn't provide a way to change the passphrase without generating a new key, so
this is currently handled separately from encrypting the other keys and there will be
a separate prompt for the passphrase. In the future, expect this to be handled by the
same scripts along with the expectation of it using the same passphrase as the other
keys.</p>
<h3 id="upgrading-to-android-10"> <h3 id="upgrading-to-android-10">
<a href="#upgrading-to-android-10">Upgrading to Android 10</a> <a href="#upgrading-to-android-10">Upgrading to Android 10</a>
</h3> </h3>