Unnamed repository; edit this file 'description' to name the repository. http://cgit.235523.xyz/u-boot.git/atom/lib/rsa?h=v2021.10 2021-09-14T15:46:48Z 2021-09-14T15:46:48Z Alexandru Gagniuc mr.nuke.me@gmail.com 2021-08-18T22:49:02Z urn:sha1:de41f0ee0d68bcdf7d97018fdfe4bfe9fe3e53a2 We are not guaranteed to have the padding_pkcs_15_verify symbol since commit 92c960bc1d ("lib: rsa: Remove #ifdefs from rsa.h"), and commit 61416fe9df ("Kconfig: FIT_SIGNATURE should not select RSA_VERIFY") The padding_algos only make sense with RSA verification, which can now be disabled in lieu of ECDSA. In fact this will lead to build failures because of the missing symbol mentioned earlier. To resolve this, move the padding_algos to a linker list, with declarations moved to rsa_verify.c. This is consistent with commit 6909edb4ce ("image: rsa: Move verification algorithm to a linker list") One could argue that the added #ifdef USE_HOSTCC is ugly, and should be hidden within the U_BOOT_PADDING_ALGO() macro. However, this would be inconsistent with the "cryptos" list. This logic for was not previously explored: Without knowledge of the U_BOOT_PADDING_ALGO() macro, its use is similar to something being declared. However, should #ifndef USE_HOSTCC be part of the macro, it would not be obvious that it behaves differently on host code and target code. Having the #ifndef outside the macro makes this obvious. Also, the #ifdef is not always necessary. For example ecda-verify makes use of U_BOOT_CRYPTO_ALGO() without any accompanying #ifdefs. The fundamental issue is a lack of separation of host and target code in rsa_verify. Therefore, the declaration of a padding algo with the external #ifdef is more readable and consistent. Signed-off-by: Alexandru Gagniuc <mr.nuke.me@gmail.com> 2021-09-14T13:07:18Z Heinrich Schuchardt xypron.glpk@gmx.de 2021-08-28T10:13:05Z urn:sha1:d607dfd878700648a7cc07ab40b2faf77df29acd If keydir is not provided but name is we want to use name as key_id. But with the current coding name is only used on its own if it is NULL and keydir is provided which never occurs. Fixes: 824ee745fbca ("lib/rsa: Use the 'keyfile' argument from mkimage") Signed-off-by: Heinrich Schuchardt <xypron.glpk@gmx.de> Reviewed-by: Simon Glass <sjg@chromium.org> 2021-07-29T00:46:34Z Marc Kleine-Budde mkl@pengutronix.de 2021-07-23T20:17:50Z urn:sha1:62b27a561c2868d95445905ad554297e43cc0f2b This patch adds the possibility to pass the PIN the OpenSSL Engine used during signing via the environment variable MKIMAGE_SIGN_PIN. This follows the approach used during kernel module signing ("KBUILD_SIGN_PIN") or UBIFS image signing ("MKIMAGE_SIGN_PIN"). Signed-off-by: Marc Kleine-Budde <mkl@pengutronix.de> 2021-07-29T00:46:34Z Chan, Donald hoiho@lab126.com 2021-07-19T16:18:54Z urn:sha1:6d59ace988fdc1bb9f52ab70e21af0d40380c3f3 *sig_size isn't set until later so use the correct variables. Signed-off-by: Donald Chan <hoiho@lab126.com> Reviewed-by: Simon Glass <sjg@chromium.org> 2021-07-29T00:46:34Z Thomas Perrot thomas.perrot@bootlin.com 2021-07-19T14:04:44Z urn:sha1:0eadb2b2da9ef7fccd39b22487a1de581f37330a Signed-off-by: Thomas Perrot <thomas.perrot@bootlin.com> 2021-07-16T19:38:49Z Alexandru Gagniuc mr.nuke.me@gmail.com 2021-07-14T22:05:40Z urn:sha1:6909edb4cedf90c7a1fb68302dc2cec6291a0fcd Move the RSA verification crytpo_algo structure out of the crypto_algos array, and into a linker list. Although it appears we are adding an #ifdef to rsa-verify.c, the gains outweigh this small inconvenience. This is because rsa_verify() is defined differently based on #ifdefs. This change allows us to have a single definition of rsa_verify(). Signed-off-by: Alexandru Gagniuc <mr.nuke.me@gmail.com> Reviewed-by: Simon Glass <sjg@chromium.org> 2021-07-16T16:58:55Z Simon Glass sjg@chromium.org 2021-07-14T22:05:31Z urn:sha1:ad74aed11e1dfe39b7f32dd855859abaf51d33f0 Drop the ENABLE and SUPPORT parts of this, which are redundant. Signed-off-by: Simon Glass <sjg@chromium.org> Reviewed-by: Alexandru Gagniuc <mr.nuke.me@gmail.com> Signed-off-by: Alexandru Gagniuc <mr.nuke.me@gmail.com> 2021-04-14T21:45:04Z Chan, Donald hoiho@lab126.com 2021-04-01T22:42:36Z urn:sha1:fbc777429fa35312a9ea5f106692172d3153e659 Most modern OpenSSL engines have methods overridden at the EVP level rather than at RSA level, to make these engines work properly with mkimage, the RSA signing code needs to switch to using EVP_* APIs as much as possible. Signed-off-by: Donald Chan <hoiho@lab126.com> [trini: Rebase on top of keyfile changes] Signed-off-by: Tom Rini <trini@konsulko.com> 2021-04-14T19:23:01Z Alexandru Gagniuc mr.nuke.me@gmail.com 2021-02-19T18:45:18Z urn:sha1:824ee745fbcaa73ad74a30f992aaf2e732a5a325 Keys can be derived from keydir, and the "key-name-hint" property of the FIT. They can also be specified ad-literam via 'keyfile'. Update the RSA signing path to use the appropriate one. Signed-off-by: Alexandru Gagniuc <mr.nuke.me@gmail.com> Reviewed-by: Simon Glass <sjg@chromium.org> 2021-04-14T19:06:08Z Alexandru Gagniuc mr.nuke.me@gmail.com 2021-02-19T18:45:11Z urn:sha1:4c17e5f69170bf033df7b4f1a2b87fa72f18aaf5 fdt_add_bignum() is useful for algorithms other than just RSA. To allow its use for ECDSA, move it to a common file under lib/. The new file is suffixed with '-libcrypto' because it has a direct dependency on openssl. This is due to the use of the "BIGNUM *" type. Signed-off-by: Alexandru Gagniuc <mr.nuke.me@gmail.com> Reviewed-by: Simon Glass <sjg@chromium.org>