summaryrefslogtreecommitdiff
path: root/doc/uImage.FIT/sign-configs.its
Commit message (Collapse)AuthorAgeLines
* image: Add support for signing of FIT configurationsSimon Glass2013-06-26-0/+45
While signing images is useful, it does not provide complete protection against several types of attack. For example, it it possible to create a FIT with the same signed images, but with the configuration changed such that a different one is selected (mix and match attack). It is also possible to substitute a signed image from an older FIT version into a newer FIT (roll-back attack). Add support for signing of FIT configurations using the libfdt's region support. Please see doc/uImage.FIT/signature.txt for more information. Signed-off-by: Simon Glass <sjg@chromium.org>