image: Add support for signing of FIT configurations
authorSimon Glass <sjg@chromium.org>
Thu, 13 Jun 2013 22:10:09 +0000 (15:10 -0700)
committerTom Rini <trini@ti.com>
Wed, 26 Jun 2013 14:18:56 +0000 (10:18 -0400)
commit4d0985295bbb50a952f4312c0a818cd89b8ee7aa
tree44414eb8dfd6309ba56a21a8d8982a5d8f938f2b
parent3e06cd1f97792b4bc3882de1ac99f031fb0eaa80
image: Add support for signing of FIT configurations

While signing images is useful, it does not provide complete protection
against several types of attack. For example, it it possible to create a
FIT with the same signed images, but with the configuration changed such
that a different one is selected (mix and match attack). It is also possible
to substitute a signed image from an older FIT version into a newer FIT
(roll-back attack).

Add support for signing of FIT configurations using the libfdt's region
support.

Please see doc/uImage.FIT/signature.txt for more information.

Signed-off-by: Simon Glass <sjg@chromium.org>
common/image-sig.c
doc/uImage.FIT/sign-configs.its [new file with mode: 0644]
doc/uImage.FIT/signature.txt
include/image.h
tools/image-host.c