Skip to content

Commit

Permalink
bootutil: Add SIG_PURE TLV
Browse files Browse the repository at this point in the history
The commit adds SIG_PURE TLV that should be used as TLV indicating
that the signature attached to image has been calculated over
entire image, rather than digest of image.

This is generic flag as the "pure" usage may be applied to, potentially,
any signature algorithm.

Signed-off-by: Dominik Ermel <[email protected]>
  • Loading branch information
de-nordic committed Oct 3, 2024
1 parent 8f759f2 commit 30bcd46
Show file tree
Hide file tree
Showing 2 changed files with 4 additions and 0 deletions.
3 changes: 3 additions & 0 deletions boot/bootutil/include/bootutil/image.h
Original file line number Diff line number Diff line change
Expand Up @@ -102,6 +102,9 @@ struct flash_area;
#define IMAGE_TLV_ECDSA_SIG 0x22 /* ECDSA of hash output */
#define IMAGE_TLV_RSA3072_PSS 0x23 /* RSA3072 of hash output */
#define IMAGE_TLV_ED25519 0x24 /* ed25519 of hash output */
#define IMAGE_TLV_SIG_PURE 0x25 /* Indicator that attached signature has been prepared
* over image rather than its digest.
*/
#define IMAGE_TLV_ENC_RSA2048 0x30 /* Key encrypted with RSA-OAEP-2048 */
#define IMAGE_TLV_ENC_KW 0x31 /* Key encrypted with AES-KW 128 or 256*/
#define IMAGE_TLV_ENC_EC256 0x32 /* Key encrypted with ECIES-EC256 */
Expand Down
1 change: 1 addition & 0 deletions scripts/imgtool/image.py
Original file line number Diff line number Diff line change
Expand Up @@ -72,6 +72,7 @@
'ECDSASIG': 0x22,
'RSA3072': 0x23,
'ED25519': 0x24,
'SIG_PURE': 0x25,
'ENCRSA2048': 0x30,
'ENCKW': 0x31,
'ENCEC256': 0x32,
Expand Down

0 comments on commit 30bcd46

Please sign in to comment.