image: Combine image_sig_algo with image_sign_info Remove the need to explicitly add SHA/RSA pairings. Invalid SHA/RSA pairings will still fail on verify operations when the hash length is longer than the key length. Follow the same naming scheme "checksum,crytpo" without explicitly defining the string. Indirectly adds support for "sha1,rsa4096" signing/verification. Signed-off-by: Andrew Duda <aduda@meraki.com> Signed-off-by: aduda <aduda@meraki.com> Reviewed-by: Simon Glass <sjg@chromium.org>

commit: 83dd98e012b55b494ac2bf1f9a5d66f684bfbbe8 [log] [tgz]
author: Andrew Duda <aduda@meraki.com> Tue Nov 08 18:53:41 2016 +0000
committer: Tom Rini <trini@konsulko.com> Mon Nov 21 14:07:31 2016 -0500
tree: 8c4e069f185d6ca6d5afaba1945b7a3ab954a6cc
parent: 0c1d74fda7c0063eeca4d8d9fa8674e6ec2ef685 [diff] [blame]
diff --git a/lib/rsa/rsa-sign.c b/lib/rsa/rsa-sign.c
index c26f741..9a09280 100644
--- a/lib/rsa/rsa-sign.c
+++ b/lib/rsa/rsa-sign.c

@@ -244,7 +244,7 @@
 	ret = rsa_get_priv_key(info->keydir, info->keyname, &rsa);
 	if (ret)
 		goto err_priv;
-	ret = rsa_sign_with_key(rsa, info->algo->checksum, region,
+	ret = rsa_sign_with_key(rsa, info->checksum, region,
 				region_count, sigp, sig_len);
 	if (ret)
 		goto err_sign;
@@ -508,7 +508,7 @@
 	}
 	if (!ret) {
 		ret = fdt_setprop_string(keydest, node, FIT_ALGO_PROP,
-					 info->algo->name);
+					 info->name);
 	}
 	if (!ret && info->require_keys) {
 		ret = fdt_setprop_string(keydest, node, "required",
commit	83dd98e012b55b494ac2bf1f9a5d66f684bfbbe8	[log] [tgz]
author	Andrew Duda <aduda@meraki.com>	Tue Nov 08 18:53:41 2016 +0000
committer	Tom Rini <trini@konsulko.com>	Mon Nov 21 14:07:31 2016 -0500
tree	8c4e069f185d6ca6d5afaba1945b7a3ab954a6cc
parent	0c1d74fda7c0063eeca4d8d9fa8674e6ec2ef685 [diff] [blame]