From acd886f3cdc80213464275c086819baab8cd3212 Mon Sep 17 00:00:00 2001 From: yeyuning Date: Wed, 20 Dec 2023 16:48:07 +0800 Subject: [PATCH] add oh release cert path sign hap py path Signed-off-by: yeyuning Change-Id: I26bc37f006745b8d00624b5977186221dfdce7c4 --- services/key_enable/BUILD.gn | 6 +- .../trusted_cert_path_test.json | 90 +++++++++++++++++++ 2 files changed, 95 insertions(+), 1 deletion(-) create mode 100644 services/key_enable/config/not_sign_hap_py_path/trusted_cert_path_test.json diff --git a/services/key_enable/BUILD.gn b/services/key_enable/BUILD.gn index 3a5d642..581e4eb 100644 --- a/services/key_enable/BUILD.gn +++ b/services/key_enable/BUILD.gn @@ -71,7 +71,11 @@ ohos_prebuilt_etc("trusted_cert_path") { } ohos_prebuilt_etc("trusted_cert_path_test") { - source = "config/trusted_cert_path_test.json" + if (defined(sign_hap_py_path)) { + source = "config/trusted_cert_path_test.json" + } else { + source = "config/not_sign_hap_py_path/trusted_cert_path_test.json" + } part_name = "code_signature" subsystem_name = "security" relative_install_dir = "security" diff --git a/services/key_enable/config/not_sign_hap_py_path/trusted_cert_path_test.json b/services/key_enable/config/not_sign_hap_py_path/trusted_cert_path_test.json new file mode 100644 index 0000000..a5c3bb3 --- /dev/null +++ b/services/key_enable/config/not_sign_hap_py_path/trusted_cert_path_test.json @@ -0,0 +1,90 @@ +{ + "trust-profile-path":[ + { + "mode":"developer", + "type":"", + "subject":"C=CN, O=Huawei, OU=HOS AppGallery, CN=HOS Profile Management", + "issuer":"C=CN, O=Huawei, OU=Huawei CBG, CN=Huawei CBG Software Signing Service CA Test", + "max-certs-path":3 + }, + { + "mode":"developer", + "type":"", + "subject":"C=CN, O=Huawei CBG, OU=HOS Development Team, CN=HOS Application Provision Profile Release", + "issuer":"C=CN, O=Huawei, OU=Huawei CBG, CN=Huawei CBG Software Signing Service CA Test", + "max-certs-path":3 + }, + { + "mode":"debug", + "type":"", + "subject":"C=CN, O=Huawei, OU=HOS AppGallery, CN=HOS Profile Management Debug", + "issuer":"C=CN, O=Huawei, OU=Huawei CBG, CN=Huawei CBG Software Signing Service CA Test", + "max-certs-path":3 + }, + { + "mode":"debug", + "type":"", + "subject":"C=CN, O=Huawei CBG, OU=HOS Development Team, CN=HOS Application Provision Profile Release_Debug", + "issuer":"C=CN, O=Huawei, OU=Huawei CBG, CN=Huawei CBG Software Signing Service CA Test", + "max-certs-path":3 + } + ], + "trust-cert-path":[ + { + "mode":"Release", + "type":"Authed", + "subject":"C=CN, O=Huawei, OU=HOS AppGallery, CN=HOS AppGallery Application Release", + "issuer":"C=CN, O=Huawei, OU=Huawei CBG, CN=Huawei CBG Software Signing Service CA Test", + "max-certs-path":3 + }, + { + "mode":"Release", + "type":"Authed", + "subject":"ALL", + "issuer":"C=CN, O=Huawei, OU=Huawei CBG, CN=Huawei CBG Software Signing Service CA Test", + "max-certs-path":3 + }, + { + "mode":"Release", + "type":"Authed", + "subject":"C=CN, O=OpenHarmony, OU=OpenHarmony Team, CN=OpenHarmony Application Release", + "issuer":"C=CN, O=OpenHarmony, OU=OpenHarmony Team, CN=OpenHarmony Application CA", + "max-certs-path":3 + }, + { + "mode":"Release", + "type":"Block", + "subject":"C=CN, O=Huawei, OU=Huawei CBG, CN=HOS Application Provision Debug V2", + "issuer":"C=CN, O=Huawei, OU=Huawei CBG, CN=Huawei CBG Software Signing Service CA Test", + "max-certs-path":3 + }, + { + "mode":"Release", + "type":"Block", + "subject":"", + "issuer":"", + "max-certs-path":3 + }, + { + "mode":"Dev", + "type":"Platform", + "subject":"C=CN, O=Huawei, OU=Huawei CBG, CN=HOS Application Provision Debug V2", + "issuer":"C=CN, O=Huawei, OU=Huawei CBG, CN=Huawei CBG Software Signing Service CA Test", + "max-certs-path":3 + }, + { + "mode":"Dev", + "type":"Debug", + "subject":"", + "issuer":"", + "max-certs-path":3 + }, + { + "mode":"Dev", + "type":"Authed", + "subject":"C=CN, O=Organization, OU=Unit, CN=ide_demo_app", + "issuer":"C=CN, O=OpenHarmony, OU=OpenHarmony Team, CN=OpenHarmony Application CA", + "max-certs-path":3 + } + ] +} \ No newline at end of file -- Gitee