[jira] [Updated] (MYNEWT-720) Newt: manipulate image signatures

2017-06-13 Thread Marko Kiiskila (JIRA) 

 [ 
https://issues.apache.org/jira/browse/MYNEWT-720?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
 ]

Marko Kiiskila updated MYNEWT-720:
--
Fix Version/s: v1_1_0_rel

> Newt: manipulate image signatures
> -
>
> Key: MYNEWT-720
> URL: https://issues.apache.org/jira/browse/MYNEWT-720
> Project: Mynewt
>  Issue Type: New Feature
>  Security Level: Public(Viewable by anyone) 
>  Components: Newt
>Affects Versions: v1_0_0_rel
>Reporter: Simon Ratner
>Assignee: Marko Kiiskila
>Priority: Minor
> Fix For: v1_1_0_rel
>
>
> Ability to manipulate image signatures should be independent of creating the 
> image. Suggesting a new command:
> {noformat}
> newt sign-image  
> {noformat}
> Useful operations:
> * strip a signature from an existing image,
> * sign an existing unsigned image,
> * re-sign an existing image with a different key.
> In all cases, the rest of the image besides the signature should remain 
> byte-for-byte identical.
> Motivating use cases:
> * dev images are promoted to qa, prod; qa and prod keys are kept separate, 
> but the promoted image should not be rebuilt from source, to eliminate any 
> possibility that an untested configuration is deployed due to differences in 
> build environment.
> * distinct keys for different customers, used to sign the same image.



--
This message was sent by Atlassian JIRA
(v6.4.14#64029)

[jira] [Updated] (MYNEWT-720) Newt: manipulate image signatures

2017-06-05 Thread Sheela (JIRA) 

 [ 
https://issues.apache.org/jira/browse/MYNEWT-720?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
 ]

Sheela updated MYNEWT-720:
--
Priority: Minor  (was: Major)

> Newt: manipulate image signatures
> -
>
> Key: MYNEWT-720
> URL: https://issues.apache.org/jira/browse/MYNEWT-720
> Project: Mynewt
>  Issue Type: New Feature
>  Security Level: Public(Viewable by anyone) 
>  Components: Newt
>Affects Versions: v1_0_0_rel
>Reporter: Simon Ratner
>Assignee: Sterling Hughes
>Priority: Minor
>
> Ability to manipulate image signatures should be independent of creating the 
> image. Suggesting a new command:
> {noformat}
> newt sign-image  
> {noformat}
> Useful operations:
> * strip a signature from an existing image,
> * sign an existing unsigned image,
> * re-sign an existing image with a different key.
> In all cases, the rest of the image besides the signature should remain 
> byte-for-byte identical.
> Motivating use cases:
> * dev images are promoted to qa, prod; qa and prod keys are kept separate, 
> but the promoted image should not be rebuilt from source, to eliminate any 
> possibility that an untested configuration is deployed due to differences in 
> build environment.
> * distinct keys for different customers, used to sign the same image.



--
This message was sent by Atlassian JIRA
(v6.3.15#6346)