On Mon, Jan 20, 2014 at 8:46 PM, Detlev Zundel dzu@denx.de wrote:

Hi Rakesh,

...

I have a beagle board and want to create a u-boot that verifies the kernel and rootfs before booting it. Any pointers on how it can be achieved will be appreciated.

You can start here by reading the provided documentation:

http://git.denx.de/?p=u-boot.git;a=blob;f=doc/uImage.FIT/signature.txt;hb=HE...

There's also a ELCE 2013 presentation by Simon Glass:

http://events.linuxfoundation.org/sites/events/files/slides/chromeos_and_diy...

And a paper by Jagan Teki from the U-Boot Mini Summit

http://www.denx.de/wiki/pub/U-Boot/MiniSummitELCE2013/U-Boot_verified_RSA_bo...

The mailing list is surely the right place for further questions ;)

One more paper to Detlev pointers! http://www.denx.de/wiki/pub/U-Boot/OpenSourceIndia2013/Multi_image_booting_s...

+Tom

Hi,

On 20 January 2014 11:47, Marek Vasut marex@denx.de wrote:

On Monday, January 20, 2014 at 01:40:52 PM, rakesh ranjan wrote:

...

Hi,

I have a beagle board and want to create a u-boot that verifies the

kernel

...

and rootfs before booting it. Any pointers on how it can be achieved will be appreciated.

Rakesh

See doc/uImage.FIT/verified-boot.txt and doc/uImage.FIT/signature.txt in the source tree .

Final suggestion - also see this post:

https://plus.google.com/103658573279088224166/posts/NDgYtMnmAge

The actual patches did not make it into the release, but hopefully next time.

Regards, Simon