We are in the process of integrating an HSM with NXP's Code Signing Tool (CST). We replaced the libbackend.a with calls for our HSM.
We were able to get the CST to sign successfully using our HSM.
Is there a way to verify the output of the CST executable? We did not see one. Ideally we would be able to verify our image without having to load it on an i.MX6SX processor every time. We would like to automate the signing/verifying process and manually having to load it on the i.MX6SX processor would slow that down.