doc/uImage.FIT/signature.txt

45 At present only one class of algorithms is supported: SHA1 hashing with RSA.
53 For this reason the RSA image verification uses pre-processed public keys
59 another RSA variant is needed, then it can be added to the table in
61 placed alongside rsa.c, and its functions added to the table in image-sig.c
65 Creating an RSA key pair and certificate
69 $ openssl genpkey -algorithm RSA -out keys/dev.key \
78 $ openssl rsa -in keys/dev.key -pubout
97 - value: The signature data (e.g. 256 bytes for 2048-bit RSA)
162 For RSA the following are mandatory:
164 - rsa,num-bits: Number of key bits (e.g. 2048)
165 - rsa,modulus: Modulus (N) as a big-endian multi-word integer
166 - rsa,exponent: Public exponent (E) as a 64 bit unsigned integer
167 - rsa,r-squared: (2^num-bits)^2 as a big-endian multi-word integer
168 - rsa,n0-inverse: -1 / modulus[0] mod 2^32
334 CONFIG_RSA - enable RSA algorithm for signing
543 - Add support for other RSA/SHA variants, such as rsa4096,sha512.
544 - Other algorithms besides RSA