On Wed, Sep 16, 2020 at 11:40:08AM +, Joakim Tjernlund wrote:
> On Wed, 2020-09-16 at 13:14 +0200, Heinrich Schuchardt wrote:
> > CAUTION: This email originated from outside of the organization. Do not
> > click links or open attachments unless you recognize the sender and know
> > the
On Wed, Sep 16, 2020 at 02:44:45PM +0200, Heinrich Schuchardt wrote:
> On 16.09.20 14:05, Joakim Tjernlund wrote:
> > On Wed, 2020-09-16 at 13:55 +0200, Heinrich Schuchardt wrote:
> >> On 16.09.20 13:40, Joakim Tjernlund wrote:
> >>> On Wed, 2020-09-16 at 13:14 +0200, Heinrich Schuchardt wrote:
>
On Wed, Sep 16, 2020 at 01:14:56PM +0200, Heinrich Schuchardt wrote:
> On 16.09.20 10:13, AKASHI Takahiro wrote:
> > On Wed, Sep 16, 2020 at 01:19:03AM +0200, Heinrich Schuchardt wrote:
> >> On 9/11/20 7:26 PM, Andrii Voloshyn wrote:
> >>> Hi there,
> >>>
> >>> Does U-boot take into account
Hi Heinrich,
> On 9/11/20 7:26 PM, Andrii Voloshyn wrote:
>> Hi there,
>>
>> Does U-boot take into account certificate expiration date when verifying
>> signed
>> images in FIT? In other words, is date stored along with the public key in
>> DTB
>> file?
>>
>> Cheers,
>> Andy
>>
>
> Hello
On Wed, Sep 16, 2020 at 02:44:45PM +0200, Heinrich Schuchardt wrote:
> On 16.09.20 14:05, Joakim Tjernlund wrote:
> > On Wed, 2020-09-16 at 13:55 +0200, Heinrich Schuchardt wrote:
> >> On 16.09.20 13:40, Joakim Tjernlund wrote:
> >>> On Wed, 2020-09-16 at 13:14 +0200, Heinrich Schuchardt wrote:
>
Hi there
I don't think it would make sense to check for expiration (even in case we
would have full certificates like PKCS#7 verifiy)
At our point of the boot process we normally do not have access to a trusted
time/date, so any check could be simply spoofed or even worse fails, because
On 16.09.20 14:05, Joakim Tjernlund wrote:
> On Wed, 2020-09-16 at 13:55 +0200, Heinrich Schuchardt wrote:
>> On 16.09.20 13:40, Joakim Tjernlund wrote:
>>> On Wed, 2020-09-16 at 13:14 +0200, Heinrich Schuchardt wrote:
CAUTION: This email originated from outside of the organization. Do not
On Wed, 2020-09-16 at 13:55 +0200, Heinrich Schuchardt wrote:
> On 16.09.20 13:40, Joakim Tjernlund wrote:
> > On Wed, 2020-09-16 at 13:14 +0200, Heinrich Schuchardt wrote:
> > > CAUTION: This email originated from outside of the organization. Do not
> > > click links or open attachments unless
On 16.09.20 13:40, Joakim Tjernlund wrote:
> On Wed, 2020-09-16 at 13:14 +0200, Heinrich Schuchardt wrote:
>> CAUTION: This email originated from outside of the organization. Do not
>> click links or open attachments unless you recognize the sender and know the
>> content is safe.
>>
>>
>> On
On Wed, 2020-09-16 at 13:14 +0200, Heinrich Schuchardt wrote:
> CAUTION: This email originated from outside of the organization. Do not click
> links or open attachments unless you recognize the sender and know the
> content is safe.
>
>
> On 16.09.20 10:13, AKASHI Takahiro wrote:
> > On Wed,
On 16.09.20 10:13, AKASHI Takahiro wrote:
> On Wed, Sep 16, 2020 at 01:19:03AM +0200, Heinrich Schuchardt wrote:
>> On 9/11/20 7:26 PM, Andrii Voloshyn wrote:
>>> Hi there,
>>>
>>> Does U-boot take into account certificate expiration date when
>>> verifying signed images in FIT? In other
On Wed, Sep 16, 2020 at 01:19:03AM +0200, Heinrich Schuchardt wrote:
> On 9/11/20 7:26 PM, Andrii Voloshyn wrote:
> > Hi there,
> >
> > Does U-boot take into account certificate expiration date when
> > verifying signed images in FIT? In other words, is date stored along with
> > the public
On 9/11/20 7:26 PM, Andrii Voloshyn wrote:
> Hi there,
>
> Does U-boot take into account certificate expiration date when verifying
> signed images in FIT? In other words, is date stored along with the public
> key in DTB file?
>
> Cheers,
> Andy
>
Hello Philippe,
looking at
Hi there,
Does U-boot take into account certificate expiration date when verifying
signed images in FIT? In other words, is date stored along with the public key
in DTB file?
Cheers,
Andy
14 matches
Mail list logo