08 Jan, 2020
1 commit
-
This patch adds an example FIT image description file demonstrating
the usage of bootm command to securely launch UEFI binaries.Signed-off-by: Cristian Ciocaltea
Reviewed-by: Heinrich Schuchardt
14 Dec, 2019
1 commit
-
Describe that a signature node can be added to a binary device tree using
the mkimage tool.Provide an example device tree node.
Signed-off-by: Heinrich Schuchardt
03 Dec, 2019
1 commit
-
Signed-off-by: Thomas Hebb
29 Jul, 2019
1 commit
-
This patch adds support for an optional optimization to compatible
string matching where the compatible string property from the root node
of the kernel FDT can be copied into the configuration node of the FIT
image. This is most useful when using compressed FDTs or when using FDT
overlays, where the traditional extraction of the compatible string from
the kernel FDT itself is not easily possible.Signed-off-by: Julius Werner
Reviewed-by: Simon Glass
25 Jul, 2019
2 commits
-
Add missing newline before title and subtitle.
Signed-off-by: Mickaël Tansorier
-
Increment conf id to avoid to have two same conf name
into one configuration description.Signed-off-by: Mickaël Tansorier
18 Jul, 2019
1 commit
-
There are multiple other openssl engines used by HSMs that can be used to
sign FIT images instead of forcing users to use pkcs11 type of service.Relax engine selection so that other openssl engines can be specified and
use generic key id definition formula.Signed-off-by: Vesa Jääskeläinen
Cc: Tom Rini
12 Jul, 2019
1 commit
-
The name CONFIG_LEGACY_IMAGE_FORMAT reads slightly better along with
allowing us to avoid a rather nasty Kbuild/Kconfig issue down the line
with CONFIG_IS_ENABLED(IMAGE_FORMAT_LEGACY). In a few places outside of
cmd/ switch to using CONFIG_IS_ENABLED() to test what is set.Signed-off-by: Tom Rini
03 Dec, 2018
1 commit
-
Signed-off-by: Philippe Reynes
Reviewed-by: Simon Glass
20 Aug, 2018
1 commit
-
Fix typo in beaglebone verified boot documentation.
Signed-off-by: Pierre-Jean Texier
11 Aug, 2018
1 commit
-
Compressed images should have their compression property
set to "none" if U-Boot should leave them compressed.This is especially the case for compressed ramdisks that
should be uncompressed by the kernel only.Signed-off-by: Simon Goldschmidt
09 May, 2018
1 commit
-
Enable support for multiple loadable images in SEC firmware FIT image.
Also add example "sec_firmware_ppa.its" file.Signed-off-by: Sumit Garg
Reviewed-by: York Sun
16 Jan, 2018
2 commits
-
The DT spec demands a unit-address of a node name to match the "reg"
property in that node. Newer dtc versions will throw warnings if this is
not the case.
Fix all occurences in the FIT image example files where this was not
observed, to not give bad examples to the reader.Signed-off-by: Andre Przywara
-
The DT spec demands a unit-address in a node name to match the "reg"
property in that node. Newer dtc versions will throw warnings if this is
not the case.
Fix all occurences in the FIT image documentation files where this was not
observed, to not give bad examples to the reader.Signed-off-by: Andre Przywara
13 Dec, 2017
1 commit
-
For external data, FIT has a optional property "data-position" which
can set the external data to a fixed offset to FIT beginning.
Add the support for this property in SPL FIT.Signed-off-by: Ye Li
Signed-off-by: Peng Fan
Reviewed-by: Simon Glass
Reviewed-by: Tomas Melin
Cc: Pantelis Antoniou
Cc: "Andrew F. Davis"
Cc: Igor Grinberg
Cc: "tomas.melin@vaisala.com"
Cc: Kever Yang
Cc: Andre Przywara
Cc: York Sun
Cc: Lokesh Vutla
Cc: "Cooper Jr., Franklin"
Cc: George McCollister
Cc: Tuomas Tynkkynen
Cc: Jean-Jacques Hiblot
Cc: Rick Altherr
Cc: Tom Rini
Reviewed-by: Lokesh Vutla
Reviewed-by: York Sun
24 Oct, 2017
1 commit
-
As you see in crypto_algos in common/image-sig.c, the algorithm
should be either "rsa2048" or "rsa4096". "rs2048" is a typo.Signed-off-by: Masahiro Yamada
Reviewed-by: Simon Glass
15 Sep, 2017
2 commits
-
Pull some information regarding overlays from commit messages and
put them directly within the documentation. Also add some information
regarding required dtc version to properly use overlays.Signed-off-by: Franklin S Cooper Jr
Acked-by: Simon Glass -
Signed-off-by: Pantelis Antoniou
Reviewed-by: Łukasz Majewski
Acked-by: Simon Glass
11 Sep, 2017
2 commits
-
If CONFIG_SPL_OS_BOOT is enabled, boot OS if kernel image is found
in FIT structure.Signed-off-by: York Sun
Reviewed-by: Tom Rini
Reviewed-by: Simon Glass -
SPL supports U-Boot image in FIT format which has data outside of
FIT structure. This adds support for embedded data for normal FIT
images.Signed-off-by: York Sun
Reviewed-by: Tom Rini
Reviewed-by: Simon Glass
27 Aug, 2017
1 commit
-
Signed-off-by: Masahiro Yamada
26 Jul, 2017
1 commit
-
In the source_file_format.txt file we talk about how to construct a
valid FIT image. While it already says to look at the source for the
full list, add kernel_noload to the explicit list of types. This is
arguably the most important type to use as most often we are including a
kernel that will run from wherever it is loaded into memory and execute.This for example, allows you to create a single FIT image for Linux that
can be used on both OMAP and i.MX devices as the kernel will not need to
be moved in memory.Signed-off-by: Tom Rini
18 May, 2017
1 commit
-
So far we were not using the FIT image format to its full potential:
The SPL FIT loader was just loading the first image from the /images
node plus one of the listed DTBs.
Now with the refactored loader code it's easy to load an arbitrary
number of images in addition to the two mentioned above.
As described in the FIT image source file format description, iterate
over all images listed at the "loadables" property in the configuration
node and load every image at its desired location.
This allows to load any kind of images:
- firmware images to execute before U-Boot proper (for instance
ARM Trusted Firmware (ATF))
- firmware images for management processors (SCP, arisc, ...)
- firmware images for devices like WiFi controllers
- bit files for FPGAs
- additional configuration data
- kernels and/or ramdisks
The actual usage of this feature would be platform and/or board specific.Also update the FIT documentation to mention the new SPL feature and
provide an example .its file to demonstrate its features.Signed-off-by: Andre Przywara
Reviewed-by: Lokesh Vutla
Reviewed-by: Simon Glass
Tested-by: Heiko Stuebner
Reviewed-by: Kever Yang
Tested-by: Kever Yang
Tested-by: Jagan Teki
Reviewed-by: Jagan Teki
15 Jan, 2017
1 commit
-
Add support for signing with the pkcs11 engine. This allows FIT images
to be signed with keys securely stored on a smartcard, hardware security
module, etc without exposing the keys.Support for other engines can be added in the future by modifying
rsa_engine_get_pub_key() and rsa_engine_get_priv_key() to construct
correct key_id strings.Signed-off-by: George McCollister
04 Dec, 2016
1 commit
-
To help automate the loading of custom image types we add the ability
to define custom handlers for the loadable section types. When we find
a compatible type while loading a "loadable" image from a FIT image we
run its associated handlers to perform any additional steps needed for
loading this image.Signed-off-by: Andrew F. Davis
Reviewed-by: Simon Glass
16 Aug, 2016
1 commit
-
The README indicates that this is not supported, but this is no-longer true.
Update the text to indicate this and describe the FIT changes required.Signed-off-by: Simon Glass
Reviewed-by: Bin Meng
25 Jun, 2016
1 commit
-
When building a FIT with external data (-E), U-Boot proper may require
absolute positioning for executing the external firmware. To acheive this
use the (-p) switch, which will replace the amended 'data-offset' with
'data-position' indicating the absolute position of external data.It is considered an error if the requested absolute position overlaps with the
initial data required for the compact FIT.Signed-off-by: Teddy Reed
24 May, 2016
1 commit
-
Add FIT_FPGA_PROP that user can identify an optional
entry for fpga.Signed-off-by: Michal Simek
Reviewed-by: Simon Glass
02 Apr, 2016
2 commits
-
Add some basic clarification that the dev.key file generated by OpenSSL
contains both the public and private key, and further highlight that
the certificate generated here contains the public key only.Signed-off-by: Andreas Dannenberg
-
Different sections in the document suggest flattened image tree blob
files have a file name extension of .itb. Fix the list of file extensions
to reflect that.Signed-off-by: Andreas Dannenberg
15 Mar, 2016
1 commit
-
One limitation of FIT is that all the data is 'inline' within it, using a
'data' property in each image node. This means that to find out what is in
the FIT it is necessary to scan the entire file. Once loaded it can be
scanned and then the images can be copied to the correct place in memory.In SPL it can take a significant amount of time to copy images around in
memory. Also loading data that does not end up being used is wasteful. It
would be useful if the FIT were small, acting as a directory, with the
actual data stored elsewhere.This allows SPL to load the entire FIT, without the images, then load the
images it wants later.Add a -E option to mkimage to request that it output an 'external' FIT.
Signed-off-by: Simon Glass
06 Feb, 2016
1 commit
-
Correct spelling of "U-Boot" shall be used in all written text
(documentation, comments in source files etc.).Signed-off-by: Bin Meng
Reviewed-by: Heiko Schocher
Reviewed-by: Simon Glass
Reviewed-by: Minkyu Kang
28 May, 2015
1 commit
-
Added FIT_LOADABLE_PROP, so the user can identify an optional entry
named "loadables" in their .its configuration. "loadables" is a comma
separated list in the .itsDocumentation can be found in doc/uImage.FIT/source_file_format.txt and
doc/uImage.Fit/multi-with-loadables.itsSigned-off-by: Karl Apsite
Reviewed-by: Simon Glass
30 Jan, 2015
2 commits
-
Signed-off-by: Guilherme Maciel Ferreira
-
According to fit_image_print(), the "os" property from "image" node is required
also when "type=ramdisk".Signed-off-by: Guilherme Maciel Ferreira
22 Oct, 2014
2 commits
-
Add a new setup@ section to the FIT which can be used to provide a setup
binary for booting Linux on x86. This makes it possible to boot x86 from
a FIT.Signed-off-by: Simon Glass
-
This uses cfg instead of conf, and img instead of image. Fix these and
update in a few other places.Signed-off-by: Simon Glass
09 Aug, 2014
1 commit
-
Remove the verified boot limitation that only allows a single
RSA public exponent of 65537 (F4). This change allows use with
existing PKI infrastructure and has been tested with HSM-based
PKI.Change the configuration OF tree format to store the RSA public
exponent as a 64 bit integer and implement backward compatibility
for verified boot configuration trees without this extra field.Parameterise vboot_test.sh to test different public exponents.
Mathematics and other hard work by Andrew Bott.
Tested with the following public exponents: 3, 5, 17, 257, 39981,
50457, 65537 and 4294967297.Signed-off-by: Andrew Bott
Signed-off-by: Andrew Wishart
Signed-off-by: Neil Piercy
Signed-off-by: Michael van der Westhuizen
Cc: Simon Glass
19 Jun, 2014
2 commits
-
As an example of an end-to-end process for using verified boot in U-Boot,
add a detailed description of the steps to be used for a Beaglebone
Black.Signed-off-by: Simon Glass
-
At present this tool only checks the configuration signing. Have it also
look at each of the images in the configuration and confirm that they
verify.Signed-off-by: Simon Glass
Acked-by: Heiko Schocher (v1)