On Fri, Mar 04, 2016 at 03:44:44PM -0800, Jimmy Zhang wrote: > Add the support code needed to sign the RCM messages with RSA-PSS as > needed to communicate with secured production devices. This mode is > enabled by passing a key via the --pkc command line argument. If such > a key is set the RCM messages will be signed with it as well as the > bootloader. > > Signed-off-by: Alban Bedel <alban.bedel@...> > --- > diff --git a/src/main.c b/src/main.c > index 3db0ed8be506..fedeab2e1402 100644 > --- a/src/main.c > +++ b/src/main.c > @@ -123,6 +126,10 @@ static void usage(char *progname) > fprintf(stderr, "\t\tminiloader\n"); > fprintf(stderr, "\t--miniloader_entry=<mlentry>\n"); > fprintf(stderr, "\t\tSpecify the entry point for the miniloader\n"); > + fprintf(stderr, "\t--pkc=<key.ber>\n"); .der? Also "--pkcs" might be more accurate, or even better "--rsa-pss" Please update man page as well > +extern "C" int rsa_pss_sign_file(const char *key_file, const char *msg_file, > + unsigned char *sig_buf) Make this function a wrapper around rsa_pss_sign() to avoid the code duplication. -Allen -- To unsubscribe from this list: send the line "unsubscribe linux-tegra" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
