UbiquitousOS
/
OpenCloudOS-Kernel
mirror of https://gitee.com/OpenCloudOS/OpenCloudOS-Kernel.git
11
0
Fork 0
Code Issues Projects Releases Wiki Activity

dist: tk: enable keypkg by default 

For non-tagged build, keypkg contains the build time key. Non-tagged
build are not suppose to be used for production servers so this only
making debugging easier.

For tagged koji build, keypkg contains a dummy empty key, sign-file is
hooked by tencent-kernel-signer so it's safe to do so too.

If for some special purpose the keypkg shouldn't be exposed to users,
just don't add the kernel-signing-keys to repo.

Signed-off-by: Kairui Song <kasong@tencent.com>
This commit is contained in:
Kairui Song 2024-07-18 11:19:05 +08:00 committed by frankjpliu
parent 88b5699fee
commit 85c40d2d2c
1 changed files with 2 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

4
dist/Makefile vendored
View File

@ -118,8 +118,8 @@ ifeq ($(MODSIGN), 0)
override DISABLED := modsign $(DISABLED)
endif
# Disable private key pkg by default
KEYPKG=0
# Enable private key pkg by default
KEYPKG=1
ifeq ($(KEYPKG), 0)
override DISABLED := keypkg $(DISABLED)
endif