1. 21 Mar, 2014 2 commits
    • Heiko Schocher's avatar
      tools, fit_check_sign: verify a signed fit image · 29a23f9d
      Heiko Schocher authored
      add host tool "fit_check_sign" which verifies, if a fit image is
      signed correct.
      Signed-off-by: default avatarHeiko Schocher <hs@denx.de>
      Cc: Simon Glass <sjg@chromium.org>
      29a23f9d
    • Heiko Schocher's avatar
      rsa: add sha256-rsa2048 algorithm · 646257d1
      Heiko Schocher authored
      based on patch from andreas@oetken.name:
      
      http://patchwork.ozlabs.org/patch/294318/
      commit message:
      I currently need support for rsa-sha256 signatures in u-boot and found out that
      the code for signatures is not very generic. Thus adding of different
      hash-algorithms for rsa-signatures is not easy to do without copy-pasting the
      rsa-code. I attached a patch for how I think it could be better and included
      support for rsa-sha256. This is a fast first shot.
      
      aditionally work:
      - removed checkpatch warnings
      - removed compiler warnings
      - rebased against current head
      Signed-off-by: default avatarHeiko Schocher <hs@denx.de>
      Cc: andreas@oetken.name
      Cc: Simon Glass <sjg@chromium.org>
      646257d1
  2. 24 Jul, 2013 1 commit
  3. 26 Jun, 2013 1 commit
    • Simon Glass's avatar
      Add verified boot information and test · 041bca5b
      Simon Glass authored
      Add a description of how to implement verified boot using signed FIT images,
      and a simple test which verifies operation on sandbox.
      
      The test signs a FIT image and verifies it, then signs a FIT configuration
      and verifies it. Then it corrupts the signature to check that this is
      detected.
      Signed-off-by: default avatarSimon Glass <sjg@chromium.org>
      041bca5b