[PATCH 0/2] Binman: fix signing an encrypted FIT with a
Tom Rini
trini at konsulko.com
Thu Jun 26 16:33:14 CEST 2025
On Mon, Jun 02, 2025 at 04:52:26PM +0200, yan wang wrote:
> When running the test case testPreLoadEncryptedFit, mkimage has been called
> multiple times. Each call to Entry_fit's GetData falls into Entry_fit's
> BuildSectionData then mkimage is called. The last mkimage is called after
> the image has been signed with the preload key. As mkimage uses a random
> IV for encryption and the timestamps may differ, There is a
> mismatch between the previously calculated signature and the
> final fit included in the image.
>
> During ProcessImage, how can one tell when exactly a fit is well generated,
> and stop the useless mkimage afterwards?
>
> Paul HENRYS (1):
> tools: binman: Test signing an encrypted FIT with a preload header
This fails CI with:
ERROR: binman.ftest.TestFunctional.testPreLoadEncryptedFit (subunit.RemotedTestCase)
binman.ftest.TestFunctional.testPreLoadEncryptedFit
----------------------------------------------------------------------
testtools.testresult.real._StringException: TypeError: can't multiply sequence by non-int of ty
pe 'NoneType'
--
Tom
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 659 bytes
Desc: not available
URL: <https://lists.denx.de/pipermail/u-boot/attachments/20250626/74e40a0b/attachment.sig>
More information about the U-Boot
mailing list