mirror of
https://github.com/u-boot/u-boot.git
synced 2024-12-05 10:33:42 +08:00
include: image.h: add key info to image_sign_info
For FIT verification, all the properties of a public key come from "control fdt" pointed to by fdt_blob. In UEFI secure boot, on the other hand, a public key is located and retrieved from dedicated signature database stored as UEFI variables. Added two fields may hold values of a public key if fdt_blob is NULL, and will be used in rsa_verify_with_pkey() to verify a signature in UEFI sub-system. Signed-off-by: AKASHI Takahiro <takahiro.akashi@linaro.org> Reviewed-by: Simon Glass <sjg@chromium.org>
This commit is contained in:
parent
dd89f5b0fd
commit
a8fc3df8b9
@ -1170,6 +1170,13 @@ struct image_sign_info {
|
||||
int required_keynode; /* Node offset of key to use: -1=any */
|
||||
const char *require_keys; /* Value for 'required' property */
|
||||
const char *engine_id; /* Engine to use for signing */
|
||||
/*
|
||||
* Note: the following two fields are always valid even w/o
|
||||
* RSA_VERIFY_WITH_PKEY in order to make sure this structure is
|
||||
* the same on target and host. Otherwise, vboot test may fail.
|
||||
*/
|
||||
const void *key; /* Pointer to public key in DER */
|
||||
int keylen; /* Length of public key */
|
||||
};
|
||||
|
||||
/* A part of an image, used for hashing */
|
||||
|
Loading…
Reference in New Issue
Block a user