Skip to content

ItsVixano/android_vendor_lineage-priv_keys

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

16 Commits
.data
.data
 
 
.gitignore
.gitignore
 
 
Android.bp
Android.bp
 
 
BUILD.bazel
BUILD.bazel
 
 
README.md
README.md
 
 
gen_keys
gen_keys
 
 
keys.mk
keys.mk
 
 
nfc.pk8
nfc.pk8
 
 
nfc.x509.pem
nfc.x509.pem
 
 
signed.x509.pem
signed.x509.pem
 
 

Repository files navigation

android_vendor_lineage-priv_keys

A cool template for signing LineageOS 20.0 > builds with dev-keys.

Usage

  1. Make sure you have android-tools installed on your machine.
  2. Clone this repo to vendor/lineage-priv/keys (on your synced ROM rootdir) and cd to it.
  3. Edit both subject vars on gen_keys script to reflect your data [ref].
  4. Run it:
$ ./gen_keys

It will generate the certificates (defined in the .data/ folder) in vendor/lineage-priv/keys, the actual keys used to generate the certificates in ~/.android-certs/, and regenerate the makefiles as new entries are added.

Backup AT ALL COSTS your ~/.android-certs/ and vendor/lineage-priv/keys folders AND NEVER LEAK THOSE. Losing these keys could prevent you from updating your LineageOS builds with the same keys, so formatting data would be required. Leakage of these keys can compromise the security and authenticity of your builds, requiring a new pair of keys to be generated.

Bonus step

You can generate a public key which can be used to verify the authenticity of your builds:

  1. Fork and clone LineageOS/update_verifier
  2. Run this command:
$ openssl rsa -in ~/.android-certs/releasekey.pem -pubout -out lineageos_pubkey
  1. Push the changes to your fork.

About

Template for signing LineageOS 20.0 > builds with `dev-keys`

Resources

Readme
Activity

Stars

21 stars

Watchers

3 watching

Forks

4 forks
Report repository

Releases

No releases published

Packages

No packages published

Contributors 4

  •  
  •  
  •  
  •  

Languages