image: Add RSA support for image signing RSA provides a public key encryption facility which is ideal for image signing and verification. Images are signed using a private key by mkimage. Then at run-time, the images are verified using a private key. This implementation uses openssl for the host part (mkimage). To avoid bringing large libraries into the U-Boot binary, the RSA public key is encoded using a simple numeric representation in the device tree. Signed-off-by: Simon Glass <sjg@chromium.org>

commit: 19c402afa2e1190f596f35a84ac049b10d814f1f [log] [tgz]
author: Simon Glass <sjg@chromium.org> Thu Jun 13 15:10:02 2013 -0700
committer: Tom Rini <trini@ti.com> Wed Jun 26 10:18:56 2013 -0400
tree: 4f4d2302f4b6fa01e9a2214dee6bfe75e220a010
parent: 56518e71041fafdfd7af3a24f263b0a22efbeda9 [diff] [blame]
diff --git a/README b/README
index d3e03d7..0f417b5 100644
--- a/README
+++ b/README

@@ -2581,6 +2581,16 @@
 		Note: There is also a sha1sum command, which should perhaps
 		be deprecated in favour of 'hash sha1'.
 
+- Signing support:
+		CONFIG_RSA
+
+		This enables the RSA algorithm used for FIT image verification
+		in U-Boot. See doc/uImage/signature for more information.
+
+		The signing part is build into mkimage regardless of this
+		option.
+
+
 - Show boot progress:
 		CONFIG_SHOW_BOOT_PROGRESS
commit	19c402afa2e1190f596f35a84ac049b10d814f1f	[log] [tgz]
author	Simon Glass <sjg@chromium.org>	Thu Jun 13 15:10:02 2013 -0700
committer	Tom Rini <trini@ti.com>	Wed Jun 26 10:18:56 2013 -0400
tree	4f4d2302f4b6fa01e9a2214dee6bfe75e220a010
parent	56518e71041fafdfd7af3a24f263b0a22efbeda9 [diff] [blame]