WolfSSL
/
wolfBoot
mirror of https://github.com/wolfSSL/wolfBoot.git
1
0
Fork 0
Code Issues Releases Wiki Activity

For signing with HSM add step for putting the right public key into bootloader for root of trust.

pull/218/head
David Garske 2022-07-15 08:34:47 -07:00 committed by Daniele Lacamera
parent 2790986844
commit fd167e1afc
1 changed files with 3 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

3
docs/Signing.md
View File

@ -191,6 +191,9 @@ Steps for manually signing firmware using an external key source.
# Create file with Public Key # Create file with Public Key
openssl rsa -inform DER -outform DER -in rsa2048.der -out rsa2048_pub.der -pubout openssl rsa -inform DER -outform DER -in rsa2048.der -out rsa2048_pub.der -pubout
# Create .c file with public key for wolfBoot root of trust
./lib/wolfssl/scripts/dertoc.pl rsa2048_pub.der rsa2048_pub_key src/rsa2048_pub_key.c
# Generate Hash to Sign # Generate Hash to Sign
./tools/keytools/sign --rsa2048 --sha-only --sha256 test-app/image.bin rsa2048_pub.der 1 ./tools/keytools/sign --rsa2048 --sha-only --sha256 test-app/image.bin rsa2048_pub.der 1
# OR # OR