mirror of
https://github.com/AsahiLinux/u-boot
synced 2024-11-28 15:41:40 +00:00
fit: Fix verification of images with external data
The "-E" option to mkimage generates a FIT with external data using the data-size and data-offset properties which must both be ignored when verifying a signature. Add "data-offset" to the list of excluded properties for signature verification; since the line is now too long, re-format the list to one-per-line and make it static since the data is constant. Signed-off-by: John Keeping <john@metanate.com> Reviewed-by: Simon Glass <sjg@chromium.org>
This commit is contained in:
parent
66217225f7
commit
8edecd3110
1 changed files with 7 additions and 1 deletions
|
@ -245,7 +245,13 @@ static int fit_config_check_sig(const void *fit, int noffset,
|
||||||
int required_keynode, int conf_noffset,
|
int required_keynode, int conf_noffset,
|
||||||
char **err_msgp)
|
char **err_msgp)
|
||||||
{
|
{
|
||||||
char * const exc_prop[] = {"data", "data-size", "data-position"};
|
static char * const exc_prop[] = {
|
||||||
|
"data",
|
||||||
|
"data-size",
|
||||||
|
"data-position",
|
||||||
|
"data-offset"
|
||||||
|
};
|
||||||
|
|
||||||
const char *prop, *end, *name;
|
const char *prop, *end, *name;
|
||||||
struct image_sign_info info;
|
struct image_sign_info info;
|
||||||
const uint32_t *strings;
|
const uint32_t *strings;
|
||||||
|
|
Loading…
Reference in a new issue