From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: X-Spam-Checker-Version: SpamAssassin 3.4.0 (2014-02-07) on aws-us-west-2-korg-lkml-1.web.codeaurora.org Received: from phobos.denx.de (phobos.denx.de [85.214.62.61]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by smtp.lore.kernel.org (Postfix) with ESMTPS id C5A06C433FE for ; Fri, 3 Dec 2021 10:29:56 +0000 (UTC) Received: from h2850616.stratoserver.net (localhost [IPv6:::1]) by phobos.denx.de (Postfix) with ESMTP id 4A9AC80202; Fri, 3 Dec 2021 11:29:54 +0100 (CET) Authentication-Results: phobos.denx.de; dmarc=none (p=none dis=none) header.from=softathome.com Authentication-Results: phobos.denx.de; spf=pass smtp.mailfrom=u-boot-bounces@lists.denx.de Authentication-Results: phobos.denx.de; dkim=pass (2048-bit key; unprotected) header.d=softathome1.onmicrosoft.com header.i=@softathome1.onmicrosoft.com header.b="X+4FdEfZ"; dkim-atps=neutral Received: by phobos.denx.de (Postfix, from userid 109) id EA5428015E; Fri, 3 Dec 2021 11:29:51 +0100 (CET) Received: from FRA01-MR2-obe.outbound.protection.outlook.com (mail-mr2fra01on0600.outbound.protection.outlook.com [IPv6:2a01:111:f400:7e19::600]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by phobos.denx.de (Postfix) with ESMTPS id 2C556811D9 for ; Fri, 3 Dec 2021 11:29:47 +0100 (CET) Authentication-Results: phobos.denx.de; dmarc=none (p=none dis=none) header.from=softathome.com Authentication-Results: phobos.denx.de; spf=pass smtp.mailfrom=philippe.reynes@softathome.com ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=O5FwY+GyczqxdXsDMAUUsEvzHMQEURUstsvisMtgf6PXv+r45Q8Q/v31+S0POoR2grmOTpO8asHHUV/11V6QuwwHM6eydfidlUoMB0wPa8THnyh5Z4obkTruDP6TUNjgXX72FwNdB7ggQehCy15gjZ+K/OHYGslb9EeQFtaOLkh16z9vZhle2XDxOJHTJy/ONG9W1GgwPe/MgihuXDmSzzj2/GY6225cDzisli0BiIMOkmjF6MaSDFTh2koIWkxUNtIbl7HkSISDJT8cL9WLdPPv1FCGl0yeaGZ5ZBdlWwubfjGVqLmKDivdpD9Grh1SMSsSaWVDEE6DNbLVqvaAvw== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=oyvYfTmIX/o5GwJjfZ+NGxt38WnRSTVfB+Y17v10d6Q=; b=oMlhOS5MxuMTp+drksekoOpPKP4JSVaWMvFIx6+9KMXcMHsJmUd/KStXOJt5ZPSv0XN2Gm4EA5fKvc2ppl5NjY/+oMkgSf4dev8TP+HizM0981Lsrawwd1yfGDdzl+0wFvJWHK9gWBOW5jnjZ8AiPX3QtahD6M8tVeZQHDspDn29xhaXR0FkRaUbk4pmBB76s62l9Hz7cpMtwfgU3rp5d6nM0kWKwN7k0iWJOSNawkI0RKl57zHudVPcEuFa41hJaNnAL48BSLSjW+5zTYmqOGCh+5wBkj3oilnkSgE3zO4eLYw7fIJeMyriwFDhRdtQAMp/fyoyS6w62qxNbAE+VA== ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=softathome.com; dmarc=pass action=none header.from=softathome.com; dkim=pass header.d=softathome.com; arc=none DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=softathome1.onmicrosoft.com; s=selector1-softathome1-onmicrosoft-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=oyvYfTmIX/o5GwJjfZ+NGxt38WnRSTVfB+Y17v10d6Q=; b=X+4FdEfZPbuAJ6DY9MZDrhBnhtMJC5OT1jjZ4saF6Q8Ji+UdO0Jvw+LCd0Bbv8pJIHreJ6iiSJz0o3FSIbZf8c7NTQcmKXkHXFKWFDB10Ql0dQMYEuJ+za1iJL6yQRz6sUFgVlyvjSfLZzopNgoX3Vr3zDnvqmhCSrqxLYV4iXlG52DOApQHjh01aKzfAVtQW02LXsCo/tzBhfCPvvLY1+hFRy8KcJnruzIULfxla6fxdKuHqX6BWgwuTMkJJDuFzysuzMOkBFihovvRD8gkw3wpY9+8Mw/uqOQTJqQGnhu3SfXJQiiWjpqfMm0VByvaXjc8fCWlNMkNYf0dhp8OlQ== Authentication-Results: dkim=none (message not signed) header.d=none;dmarc=none action=none header.from=softathome.com; Received: from PR0P264MB2741.FRAP264.PROD.OUTLOOK.COM (2603:10a6:102:1d0::9) by PR0P264MB1596.FRAP264.PROD.OUTLOOK.COM (2603:10a6:102:167::5) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.4734.23; Fri, 3 Dec 2021 10:29:45 +0000 Received: from PR0P264MB2741.FRAP264.PROD.OUTLOOK.COM ([fe80::7d78:b0f1:3f80:46df]) by PR0P264MB2741.FRAP264.PROD.OUTLOOK.COM ([fe80::7d78:b0f1:3f80:46df%9]) with mapi id 15.20.4755.016; Fri, 3 Dec 2021 10:29:45 +0000 Subject: Re: [RFC PATCH v3 7/8] mkimage: add public key for image pre-load stage To: Simon Glass Cc: mr.nuke.me@gmail.com, joel.peshkin@broadcom.com, u-boot@lists.denx.de References: <20211117175215.24262-1-philippe.reynes@softathome.com> <20211117175215.24262-8-philippe.reynes@softathome.com> From: Philippe REYNES Message-ID: <8425097c-7b3b-2d77-eff1-90e4706b0617@softathome.com> Date: Fri, 3 Dec 2021 11:29:43 +0100 User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:78.0) Gecko/20100101 Thunderbird/78.14.0 In-Reply-To: Content-Type: text/plain; charset=utf-8; format=flowed Content-Transfer-Encoding: quoted-printable Content-Language: en-US X-ClientProxiedBy: MR2P264CA0149.FRAP264.PROD.OUTLOOK.COM (2603:10a6:501:1::12) To PR0P264MB2741.FRAP264.PROD.OUTLOOK.COM (2603:10a6:102:1d0::9) MIME-Version: 1.0 Received: from [IPv6:2a01:cb08:151:d800:cc30:c94d:358c:c58] (2a01:cb08:151:d800:cc30:c94d:358c:c58) by MR2P264CA0149.FRAP264.PROD.OUTLOOK.COM (2603:10a6:501:1::12) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.4755.16 via Frontend Transport; Fri, 3 Dec 2021 10:29:44 +0000 X-MS-PublicTrafficType: Email X-MS-Office365-Filtering-Correlation-Id: 629ecd5c-ab29-49de-85b8-08d9b647d2f1 X-MS-TrafficTypeDiagnostic: PR0P264MB1596: X-Microsoft-Antispam-PRVS: X-MS-Oob-TLC-OOBClassifiers: OLM:1417; X-MS-Exchange-SenderADCheck: 1 X-MS-Exchange-AntiSpam-Relay: 0 X-Microsoft-Antispam: BCL:0; X-Microsoft-Antispam-Message-Info: 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 X-Forefront-Antispam-Report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:PR0P264MB2741.FRAP264.PROD.OUTLOOK.COM; PTR:; CAT:NONE; SFS:(4636009)(366004)(6916009)(86362001)(31696002)(82960400001)(2906002)(4326008)(2616005)(66574015)(31686004)(316002)(66556008)(36756003)(66476007)(83380400001)(66946007)(8676002)(8936002)(6486002)(38100700002)(5660300002)(186003)(508600001)(45980500001)(43740500002); DIR:OUT; SFP:1101; X-MS-Exchange-AntiSpam-MessageData-ChunkCount: 1 X-MS-Exchange-AntiSpam-MessageData-0: =?utf-8?B?dW5JejRRaGUxMm5lNkp1UmNrWjl2RFpaREpRMm9Ndy9tK2pTNkpoa1Y0Q0tD?= =?utf-8?B?dnRkRzByWXhmOXJhUUpLcWQva3FGVWdZaUxMbHJsSnY3SzAyN0w2Uy9qNGFx?= =?utf-8?B?VlZIaGFTS09XL2xzb1VNUGNKenpFNmxQS2d4VE5HNzZjMHQwaFlncDI0K0ZB?= =?utf-8?B?dWUxaklleWJhZ2hQZU9icit5WHVkSUdPeWdodUY3SzhKQnplTThad1hRY083?= =?utf-8?B?Mlc1Vm1SQ2M4cGgrUEtnRW9VR09TNEk4ZldTMmdtTGwrMmJOUVRMa0ZSRVlu?= =?utf-8?B?SzM0RnFabkJGdjUvbG04NUxNRFhpMnJyWndua1BIamRvZWkybkNubmtYVlZH?= =?utf-8?B?c09aZ2ZsMmc2YnVpMy9TZGQ1L3dya21FdFJqNGI0QVVPSGFIdXk0Wm9IOWR4?= =?utf-8?B?aXZoOVJ3cE1EeGU2bDlvN3l5UURhYUthZzdteTZ5enNrMEVDTFh0aUFjd1hH?= =?utf-8?B?U0tnMmNzSkNHS2k1NERGMlVPN1ptaVo5cXVuajk3QklPRC9NWWEyYTM1NGtX?= =?utf-8?B?djgzTkxNNDl5dlAxZVFwb0ZGOHplcnJJVTZEL1NJbHUrUjRYVkRxOVBwbTlj?= =?utf-8?B?cENwT05HQkN6bENPWUlMWTZrZG5yUU0wSHM0SVU5aDBjbXI5bndMWTdjY3V0?= =?utf-8?B?Z0R3Vm5pYTZXaWNVdjBQK2JnaVNmb0pPNktPNnlicG95emxPdVlLcFZGMGla?= =?utf-8?B?MjBabFpqdTRXNjVuMWREK0c1NDRocitkWTN0SURlVWlDU2tuU0V6NnVsUmU4?= =?utf-8?B?M0xCMmt0QVRPNksrUEdKckpxMFRwU2dsMWZEVERxZmZmUzRWalhQcFlZbWE1?= =?utf-8?B?bTJna3d0eXovcENYVHphWkJWTEhrKzRvd295ZTdUbVdvOGY0VStLR2svNmQ0?= =?utf-8?B?QWE0ajhFT1U1S25HRDNjTnl1SjBPTWkxZ3NqUHZKSnd0OTVGU1V1WDh1bGZ2?= =?utf-8?B?UWhFV2thUlkvOFpXd2RGWWxNWmFoRm9RV2RyS3EraFVjRmhmVFVlUWIzRWpP?= =?utf-8?B?TlZXRXNWZThYZ0ZrcWx2a2l3aE9Ncm0zWWhsQ216TmRBRUhtTEs4RzZlZjdH?= =?utf-8?B?QmpiK00vdC9qYkZXdnliSklrR1JKdnpYOGlHRUllbllMbkZJOFFaYjhCKzV1?= =?utf-8?B?ZWJKdVpDYXZjT3ljYncybTZTTHFhcGNYYklTUE96N1ZMa3p5NUdRRmFDa0Yr?= =?utf-8?B?UWt0bVFaS05MTi9TUm9hRVNxZmNNYTVXd0poNy9sVHNQMHJrV0RUanFmY1pX?= =?utf-8?B?TzVsNzBUVW42dGxVdXRnb2VKNVdmUkY1RmsxRzlFNEMvMkJYQUJORHF4K1I5?= =?utf-8?B?NzBjbGVYaTd6VStzU3liY0FWM0xIT1I5NkNIL3JoMkh1eS9aYVNwekxXVEN0?= =?utf-8?B?cXdSVnRRbXlnRWdvaTV1cEJMQkRINW5jMnFUMG1EcGZvSDhYSDVZdmxrT1Y0?= =?utf-8?B?VWxjdVp5VlZBRGh3MFpBdTZHMlZRK0FoZXZyYjhJMm16aWFEVHpwdVJZeENB?= =?utf-8?B?cktyMklBU29rTlRoNm85MzBoZEFxMDZHcmxyeXRNWVozMkoxNXBoQXdkZVRr?= =?utf-8?B?TE1aaWdkR0N3SjNPdHRwaXVkQS9BVmMySE14eE9PYWhpRllqTE1tbDF4R2I2?= =?utf-8?B?cWNWQ015aUUzcysrajhSUVloSUhjZGxOWEJmRGNYVUdLK0lBS0FqVnIzSHlW?= =?utf-8?B?TnlMZTdvVy9lSjNQTEsyMHdNcDc5aW1HMGhTeFRrMlBZK2lBeDlMSkg1TFhC?= =?utf-8?B?NXlyY0xDOFpMVXVrOWlpcm9VWVZQR1pTVVF5azBhem9Nb290a0RRZzNGMGpV?= =?utf-8?B?aDcycnV2UlAxcEVMNHJKTTA4dElJUTRzbThoODh1WjdpanU3Tk44eldQUWlB?= =?utf-8?B?Qk5OVm1hTG1NUVI1MVlUcnJrZzB0QWZDVlFiYmI0b21Bb0grODArUUJZaUJs?= =?utf-8?B?VUVhNjJGUkRXd0s0U2pTZmJ3QTgyMzJybk4xZExrdndObVJlbExBT2pOQVBO?= =?utf-8?B?ZkNuSGh2TzYwVjlaNGNlSE5DWStuTmYxbHMyNmlDdXIxaFJaQlZ5c09kUlAy?= =?utf-8?B?a3c0aHViSmkzYmg5dlNoVUJhRU16K1lpcVpaRG8zZjBpV1AwbFVqb21sRW84?= =?utf-8?B?TFUwME1tVDgySkdRaGZkYUtkMGdQQzRrNHhqZXlKdjY3WGNlK3NnQldCUFhn?= =?utf-8?B?UnY1d2tKVDRld0pnUlorM1lTRVRrUXJZclk4VzA0RUhQazQ2dVZiUDdqV3g2?= =?utf-8?B?Tm9jYW15czc5bzBBRWRMWFFheER3VWZRb2lQYWFuZ285bXZqOURRcmtPSENp?= =?utf-8?B?Qzk0TURGdU1FMnViQkwyeWZ6dzMwYUpQdHhOTmxNNEhSbERvZ2dvUT09?= X-OriginatorOrg: softathome.com X-MS-Exchange-CrossTenant-Network-Message-Id: 629ecd5c-ab29-49de-85b8-08d9b647d2f1 X-MS-Exchange-CrossTenant-AuthSource: PR0P264MB2741.FRAP264.PROD.OUTLOOK.COM X-MS-Exchange-CrossTenant-AuthAs: Internal X-MS-Exchange-CrossTenant-OriginalArrivalTime: 03 Dec 2021 10:29:44.8727 (UTC) X-MS-Exchange-CrossTenant-FromEntityHeader: Hosted X-MS-Exchange-CrossTenant-Id: aa10e044-e405-4c10-8353-36b4d0cce511 X-MS-Exchange-CrossTenant-MailboxType: HOSTED X-MS-Exchange-CrossTenant-UserPrincipalName: FqMOp1F1uJS4WkwKZv0rB7fkoLyfEtOo67QcBfE74a2Yfrq9+kv7YiZxLwovUNZM23SBxbaZUWq/eN//BfR1TwfXUi51FxDYGk9jpweP6yY= X-MS-Exchange-Transport-CrossTenantHeadersStamped: PR0P264MB1596 X-BeenThere: u-boot@lists.denx.de X-Mailman-Version: 2.1.38 Precedence: list List-Id: U-Boot discussion List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: u-boot-bounces@lists.denx.de Sender: "U-Boot" X-Virus-Scanned: clamav-milter 0.103.2 at phobos.denx.de X-Virus-Status: Clean Hi Simon, Le 25/11/2021 =C3=A0 01:13, Simon Glass a =C3=A9crit : > Hi Philippe, > > On Wed, 17 Nov 2021 at 10:52, Philippe Reynes > wrote: >> This commit enhances mkimage to update the node >> /image/pre-load/sig with the public key. >> >> Signed-off-by: Philippe Reynes >> --- >> include/image.h | 15 ++++++ >> tools/fit_image.c | 3 ++ >> tools/image-host.c | 116 +++++++++++++++++++++++++++++++++++++++++++++ >> 3 files changed, 134 insertions(+) > I'm a bit unsure about the format of the key here. Is it different > from the normal one used by U-Boot? The format used by pkey is the der format without the first 24 bytes. For example, to create this key in a shell, I use the following commands : openssl rsa -in private.pem -pubout -outform der -out public.der dd if=3Dpublic.der of=3Dpublic.raw bs=3D24 skip=3D1 As described in the comment line 340 in the file test/lib/asn1.c. > Regards, > Simon Regards, Philippe -- This message and any attachments herein are confidential, intended solel= y for the addressees and are SoftAtHome=E2=80=99s ownership. Any unauthoriz= ed use or dissemination is prohibited. If you are not the intended addresse= e of this message, please cancel it immediately and inform the sender.