Whitebox
/
u-boot
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity

doc: clarify openssl-based key and certificate generation process

Browse Source 
Add some basic clarification that the dev.key file generated by OpenSSL
contains both the public and private key, and further highlight that
the certificate generated here contains the public key only.

Signed-off-by: Andreas Dannenberg <dannenberg@ti.com>
master
Andreas Dannenberg 9 years ago committed by Tom Rini
parent 486c39c2e9
commit 4c1d5c29b5
1 changed files with 4 additions and 4 deletions
Show all changes Ignore whitespace when comparing lines Ignore changes in amount of whitespace Ignore changes in whitespace at EOL
Show Stats Download Patch File Download Diff File
  1. 8
      doc/uImage.FIT/signature.txt

8
doc/uImage.FIT/signature.txt
Unescape View File

@ -62,14 +62,14 @@ placed alongside rsa.c, and its functions added to the table in image-sig.c
also.
Creating an RSA key and certificate
-----------------------------------
To create a new public key, size 2048 bits:
Creating an RSA key pair and certificate
----------------------------------------
To create a new public/private key pair, size 2048 bits:
$ openssl genpkey -algorithm RSA -out keys/dev.key \
-pkeyopt rsa_keygen_bits:2048 -pkeyopt rsa_keygen_pubexp:65537
To create a certificate for this:
To create a certificate for this containing the public key:
$ openssl req -batch -new -x509 -key keys/dev.key -out keys/dev.crt

Write Preview
Loading…
Cancel
Save