[PATCH v2 0/5] rsa: fix dependency, rename and relocate RSASSA PSS symbols
Tom Rini
trini at konsulko.com
Tue Nov 11 23:16:31 CET 2025
On Fri, 31 Oct 2025 18:08:19 +0100, Quentin Schulz wrote:
> While historically signature verification is mostly done for FIT such
> FIT_SIGNATURE dependency for signature algorithm makes sense, it isn't
> the only kind of file we can verify signatures of. It can also be done
> manually with rsa_verify_hash() with an embedded public key.
>
> Considering the impacted code is guarded by RSA_VERIFY, let's make the
> symbol depend on that otherwise selecting it without RSA_VERIFY won't do
> anything. The FIT_SIGNATURE dependency wasn't also enough before as it
> only implied RSA_VERIFY.
>
> [...]
Applied to u-boot/next, thanks!
[1/5] boot: fix incorrect dependency of FIT_RSASSA_PSS
commit: 63686bf6e02b57a259e6e08d6439a7d1e154f5cc
[2/5] boot: remove duplicate config entry for VPL_FIT
commit: 013033a2f9bd2bc634688bbaa0fbd91eb729d108
[3/5] boot: group SPL_FIT symbols together
commit: 973019000c2734ae560e5f4f5a58c9cdf85cffbb
[4/5] rsa: rename FIT_RSASSA_PSS to RSASSA_PSS and move symbols under lib/rsa
commit: 360dd89b361dde2a0bbad65763538e1eea7d3c94
[5/5] rsa: update doxygen doc for RSA signature verification to mention PSS
commit: c50f6b11b3242adba0c8a3a6a50082a2eca01772
--
Tom
More information about the U-Boot
mailing list