From 866fdde63a2b8f0f766848018e80df25ae7cc2c3 Mon Sep 17 00:00:00 2001 From: Nick Bofferding Date: Thu, 29 Jun 2017 16:34:21 -0500 Subject: [PATCH] Support open signing tool when inserting a zeroed partition Change-Id: I043f740fdcb529af81a3c74e01d84613fb1769b0 RTC: 174017 Reviewed-on: http://ralgit01.raleigh.ibm.com/gerrit1/42626 Tested-by: Jenkins Server Reviewed-by: Stephen M. Cprek Tested-by: Jenkins OP Build CI Reviewed-by: Michael Baiocchi Tested-by: Jenkins OP HW Tested-by: FSP CI Jenkins Reviewed-by: Daniel M. Crowell --- src/build/buildpnor/genPnorImages.pl | 15 ++++++++++++--- 1 file changed, 12 insertions(+), 3 deletions(-) diff --git a/src/build/buildpnor/genPnorImages.pl b/src/build/buildpnor/genPnorImages.pl index b2cf01d1ec9..19e6c47799e 100755 --- a/src/build/buildpnor/genPnorImages.pl +++ b/src/build/buildpnor/genPnorImages.pl @@ -845,9 +845,18 @@ sub manipulateImages if ($secureboot && $secureSupported) { $callerHwHdrFields{configure} = 1; - # @TODO RTC:155374 Remove when official signing - # supported - run_command("$SIGNING_DIR/build -good -if $secureboot_hdr -of $tempImages{PAD_PHASE} -bin $tempImages{TEMP_BIN} $SIGN_BUILD_PARAMS"); + if($openSigningTool) + { + run_command("$CUR_OPEN_SIGN_REQUEST " + . "--protectedPayload $tempImages{TEMP_BIN} " + . "--out $tempImages{PAD_PHASE}"); + } + else + { + # @TODO RTC:155374 Remove when official signing + # supported + run_command("$SIGNING_DIR/build -good -if $secureboot_hdr -of $tempImages{PAD_PHASE} -bin $tempImages{TEMP_BIN} $SIGN_BUILD_PARAMS"); + } setCallerHwHdrFields(\%callerHwHdrFields, $tempImages{PAD_PHASE}); }