FAQs
English (US) 日本語 | Japanese 中文 | Chinese (Simplified)

signed uboot script (boot.scr) authentication

cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
SOLVED
Jump to solution

signed uboot script (boot.scr) authentication

Jump to solution
‎09-06-2021 11:58 AM
1,288 Views
shufi
Contributor I

Hi All,

I wanted to switch kernel and rootfs partition with uboot script instead of environment variable for security concerns.

So it is possible to authenticate(signature verification) of boot script first before execution, like we are authenticating kernel FIT image.

I have created a signed boot script similar to FIT image, so now I have a kernel FIT image and signed boot script.
Uboot can authenticate the kernel FIT image but how to authenticate signed boot.scr before FIT image.?

Thanks.

0 Kudos
Reply
1 Solution

Jump to solution
‎09-16-2021 04:45 AM
1,264 Views
shufi
Contributor I

Thanks @Yuri 
Yes, I already did this by modifying source command.

View solution in original post

0 Kudos
Reply
2 Replies

Jump to solution
‎09-16-2021 04:45 AM
1,265 Views
shufi
Contributor I

Thanks @Yuri 
Yes, I already did this by modifying source command.

0 Kudos
Reply

Jump to solution
‎09-15-2021 10:04 PM
1,268 Views
Yuri
NXP Employee
NXP Employee

@shufi 
Hello,

   generally it is possible to authenticate boot script  before execution, like kernel image,
but the script should be loaded to memory first. Perhaps U-boot command "source"
can be used here.

Regards,
Yuri.

0 Kudos
Reply