I am considering to remove sample sign.sh because 1. It is kind of hacking. 2. Reversing byte order operation can be removed from sample two but not sign.sh If you agree, I will remove sign.sh and then rename sign-by-update.sh to sign.sh > -----Original Message----- > From: Stephen Warren [mailto:swarren@xxxxxxxxxxxxx] > Sent: Thursday, October 08, 2015 7:09 PM > To: Jimmy Zhang > Cc: Allen Martin; Stephen Warren; linux-tegra@xxxxxxxxxxxxxxx > Subject: Re: [cbootimage PATCH v3 5/5] Add two sample scripts to do rsa > signing for T210 bootimage > > On 10/08/2015 08:00 PM, Jimmy Zhang wrote: > > Stephen Warren wrote at Thursday, October 08, 2015 1:58 PM: > >> On 10/08/2015 01:38 PM, Jimmy Zhang wrote: > >>> sign.sh runs openssl and other linux utilities to generate rsa-pss > >>> signatures for a prebuilt bootimage and inject signatures and rsa > >>> modulus into bct directly. > >>> > >>> Syntax: sign.sh <bootimage> <rsa_key.pem> > >>> > >>> sign-by-update.sh is similar to sign.sh. The difference is the > >>> signatures update are done by cbootimage with configuration keywords > >>> "RsaKeyModulusFile", "RsaPssSigBlFile", and "RsaPssSigBctFile". > >>> Comparing to sign.sh, this script is relatively simple to be ported > >>> to T124/T114. > >>> > >>> Syntax: sign-by-update.sh <bootimage> <rsa_key.pem> > > >>> diff --git a/sign-by-update.sh b/sign-by-update.sh > >> > >> Let's put these example files in an examples directory or something like > that. > >> > >> Should we update the Makefile to install the examples into some doc > >> directory? > > > > I am not sure how to change Makefile. > > I'm sure Allen can give you an example quickly, although just having the files > in the source distribution (in a sub-dir) is probably fine for now. > OK. > >>> +$DD bs=1 if=$KEY_FILE.mod of=$KEY_FILE.mod.tmp skip=8 count=512 > >> > >> I'd suggest using cut for that in case the prefix changes; `cut -d= f2`. > > > > Not sure how to use 'cut'. Instead, will use 'sed' > > You can can just use the cut command I gave, this maps to this as the entire > replacement for dd: > > cut -d= -f2 < $KEY_FILE.mod > $KEY_FILE.mod.tmp OK. -- To unsubscribe from this list: send the line "unsubscribe linux-tegra" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
