| Name | Date | Size | #Lines | LOC | ||
|---|---|---|---|---|---|---|
| .. | - | - | ||||
| README.md | D | 06-Sep-2024 | 1.1 KiB | 17 | 14 | |
| generate_digest.py | D | 06-Sep-2024 | 2.8 KiB | 91 | 43 | |
| stitch_ta.py | D | 06-Sep-2024 | 3.2 KiB | 105 | 54 |
README.md
1# Microsoft Production TA Signing Scripts 2 3##### The Python scripts `generate_digest.py` and `stitch_ta.py` are used to production sign Microsoft-built TAs. 4 5## Usage 6 71. Compile the TAs as usual. 82. Take the `*.stripped.elf` file (TA with no signature), and run the following Python script. 9This script will generate the digest (hash) for the unsigned TA. The digest will be stored in `6b51f84e-a93d-456c-ab0e29ad8f264a47.dig` in the same folder as the TA. The digest will be in ASCII Base64 format. 10``` 11c:\Python34\python.exe "generate_digest.py" --in "6b51f84e-a93d-456c-ab0e29ad8f264a47.stripped.elf" 12``` 133. Send the `*.dig` file to the Security team for them to sign. They will return a `*.dig.signed` file. 144. Run the following Python script to generate the final Production-signed TA (`6b51f84e-a93d-456c-ab0e29ad8f264a47_signed.ta`): 15``` 16c:\Python34\python.exe "stitch_ta.py" --in "6b51f84e-a93d-456c-ab0e29ad8f264a47.stripped.elf" --dig "6b51f84e-a93d-456c-ab0e29ad8f264a47.dig" --sig "6b51f84e-a93d-456c-ab0e29ad8f264a47.dig.signed" --out "6b51f84e-a93d-456c-ab0e29ad8f264a47_signed.ta" 17```