Replace OTA sideload verification key when signing A/B devices. The update-payload-key is used by update_engine_sideload from recovery to verify an update payload. Bug: 27178350 Change-Id: I7a0a307ae565e5e9cbf2c9b58fbcc055e87771ce

commit: b3e8ce6d1d936cddb6eb4a5052de8ed7ba85d68e [log] [tgz]
author: Alex Deymo <deymo@google.com> Thu Aug 04 16:06:12 2016 -0700
committer: Alex Deymo <deymo@google.com> Thu Aug 04 16:06:12 2016 -0700
tree: 55e430d73950d99be49a417ff6011311eeac2b23
parent: c6ebe9fcd7ca0c991f5ae0e711a251959d0d41f4 [diff]
diff --git a/tools/releasetools/sign_target_files_apks.py b/tools/releasetools/sign_target_files_apks.py
index b11225c..3ab4a2c 100755
--- a/tools/releasetools/sign_target_files_apks.py
+++ b/tools/releasetools/sign_target_files_apks.py

@@ -255,6 +255,7 @@
     elif (OPTIONS.replace_ota_keys and
           info.filename in (
               "BOOT/RAMDISK/res/keys",
+              "BOOT/RAMDISK/etc/update_engine/update-payload-key.pub.pem",
               "RECOVERY/RAMDISK/res/keys",
               "SYSTEM/etc/security/otacerts.zip",
               "SYSTEM/etc/update_engine/update-payload-key.pub.pem")):
@@ -510,6 +511,10 @@
         output_tf_zip,
         "SYSTEM/etc/update_engine/update-payload-key.pub.pem",
         pubkey)
+    common.ZipWriteStr(
+        output_tf_zip,
+        "BOOT/RAMDISK/etc/update_engine/update-payload-key.pub.pem",
+        pubkey)
 
   return new_recovery_keys
commit	b3e8ce6d1d936cddb6eb4a5052de8ed7ba85d68e	[log] [tgz]
author	Alex Deymo <deymo@google.com>	Thu Aug 04 16:06:12 2016 -0700
committer	Alex Deymo <deymo@google.com>	Thu Aug 04 16:06:12 2016 -0700
tree	55e430d73950d99be49a417ff6011311eeac2b23
parent	c6ebe9fcd7ca0c991f5ae0e711a251959d0d41f4 [diff]