| commit | 230169c55497ed20bc90b8d662f39d4a73d4b254 | [log] [tgz] |
|---|---|---|
| author | Angel Adetula <angeladetula@google.com> | Thu Sep 11 21:04:48 2025 +0000 |
| committer | Angel Adetula <angeladetula@google.com> | Fri Sep 19 09:30:28 2025 -0700 |
| tree | 1b2ba3697fdeca5ea2de40f78a09b3e83fb264a0 | |
| parent | a26de4d3c6abdf6037cd64dc12638ce9e2b13fc9 [diff] |
cos-dkms: Add support for cloud kms signing. This allows using a kms asymmetric signing key to sign modules during the build process. If option --cloud-kms-key is specified with the kms key resource name, then Build would use the provided key and a local ceritficate to sign the modules in the dkms package. BUG=b/443086020 TEST=presubmit, cos-dkms build my-module/1.0 --install-build-dependencies --make-variables=cos-default --build-id=19126.0.0 --kernel-version=cos-default --cloud-kms-key="projects/my-project/locations/global/keyRings/my-keyring/cryptoKeys/my-key/cryptoKeyVersions/1" RELEASE_NOTE=None Change-Id: I9961041a91c5e6a64ac8ae92ba67f15bc9e3a09f Reviewed-on: https://cos-review.googlesource.com/c/cos/tools/+/111116 Cloud-Build: GCB Service account <228075978874@cloudbuild.gserviceaccount.com> Reviewed-by: Kevin Berry <kpberry@google.com> Tested-by: Angel Adetula <angeladetula@google.com>
This is a repository of various tools developed for Container-Optimized OS. Examples include cos-gpu-installer, cos-toolbox, etc.
See CONTRIBUTING.md for how to contribute.