mirror of
https://github.com/AsahiLinux/u-boot
synced 2024-12-25 20:43:32 +00:00
0c2c1c9415
Add HABv4 documentation extension for SPL targets covering the following topics: - How to sign an securely boot an flash.bin container image. - How to extend the root of trust for additional boot images. - Add SPL and fitImage CSF examples. - Add signature generation script example. Signed-off-by: Marek Vasut <marex@denx.de> Cc: Breno Lima <breno.lima@nxp.com> Cc: Fabio Estevam <festevam@denx.de> Cc: Heiko Schocher <hs@denx.de> Cc: Peng Fan <peng.fan@nxp.com> Cc: Stefano Babic <sbabic@denx.de> Cc: Utkarsh Gupta <utkarsh.gupta@nxp.com> Cc: Ye Li <ye.li@nxp.com>
33 lines
768 B
Text
33 lines
768 B
Text
[Header]
|
|
Version = 4.3
|
|
Hash Algorithm = sha256
|
|
Engine = CAAM
|
|
Engine Configuration = 0
|
|
Certificate Format = X509
|
|
Signature Format = CMS
|
|
|
|
[Install SRK]
|
|
# FIXME: Adjust path here
|
|
File = "/path/to/cst-3.3.1/crts/SRK_1_2_3_4_table.bin"
|
|
Source index = 0
|
|
|
|
[Install CSFK]
|
|
# FIXME: Adjust path here
|
|
File = "/path/to/cst-3.3.1/crts/CSF1_1_sha256_4096_65537_v3_usr_crt.pem"
|
|
|
|
[Authenticate CSF]
|
|
|
|
[Unlock]
|
|
Engine = CAAM
|
|
Features = MID
|
|
|
|
[Install Key]
|
|
Verification index = 0
|
|
Target Index = 2
|
|
# FIXME: Adjust path here
|
|
File = "/path/to/cst-3.3.1/crts/IMG1_1_sha256_4096_65537_v3_usr_crt.pem"
|
|
|
|
[Authenticate Data]
|
|
Verification index = 2
|
|
# FIXME: Adjust start (first column) and size (third column) here
|
|
Blocks = 0x7e0fc0 0x0 0x306f0 "flash.bin"
|