image_type_phosphor: Support single signature for the tarball contents Currently the contents of the code update tarball are individually signed and signature files for each file are created. In order to ensure that the contents of the tarball are the expected ones as a full package, it is necessary to create an additional single signature file bashed on the individual signature files. Signed-off-by: George Liu <liuxiwei@inspur.com> Change-Id: Ib8e04127722aee2069191bfea1faab1a45c7d9d2

commit: 80b9baede615563bc15e5218cb051f57ae451b8d [log] [tgz]
author: George Liu <liuxiwei@inspur.com> Tue Dec 15 09:46:10 2020 +0800
committer: George Liu <liuxiwei1013@outlook.com> Thu Jan 14 07:01:55 2021 +0000
tree: 221b4364ad821f2023545877f09353d6066c05ef
parent: 9af5efe029421b7723e8be3a386a6b67c6fc0707 [diff]
diff --git a/classes/image_types_phosphor.bbclass b/classes/image_types_phosphor.bbclass
index e466347..fa5d319 100644
--- a/classes/image_types_phosphor.bbclass
+++ b/classes/image_types_phosphor.bbclass

@@ -332,6 +332,14 @@
 		openssl dgst -sha256 -sign ${SIGNING_KEY} -out "${file}.sig" $file
 		signature_files="${signature_files} ${file}.sig"
 	done
+
+	if [ -n "$signature_files" ]; then
+		sort_signature_files=`echo "$signature_files" | tr ' ' '\n' | sort | tr '\n' ' '`
+		cat $sort_signature_files > image-full
+		openssl dgst -sha256 -sign ${SIGNING_KEY} -out image-full.sig image-full
+		signature_files="${signature_files} image-full.sig"
+		rm -rf image-full
+	fi
 }
 
 do_generate_static_alltar() {
commit	80b9baede615563bc15e5218cb051f57ae451b8d	[log] [tgz]
author	George Liu <liuxiwei@inspur.com>	Tue Dec 15 09:46:10 2020 +0800
committer	George Liu <liuxiwei1013@outlook.com>	Thu Jan 14 07:01:55 2021 +0000
tree	221b4364ad821f2023545877f09353d6066c05ef
parent	9af5efe029421b7723e8be3a386a6b67c6fc0707 [diff]