boot: bootutil: add option to disable cryptographic check of the image - If MCUBOOT_SIGN_RSA, MCUBOOT_SIGN_EC, MCUBOOT_SIGN_EC256 are not defined cryptographic signature check is skipped during validation. sha256 check is still retained. This reduces the binary size, at the expense of greatly reduced security. However this can be acceptable in some scenarios where cryptographic check is not required. Signed-off-by: Arvin Farahmand <arvinf@ip-logix.com>

commit: f8240199562f8d2af11939343a71a0169f345ad3 [log] [tgz]
author: Arvin Farahmand <arvinf@ip-logix.com> Tue May 05 11:43:52 2020 -0400
committer: David Brown <davidb@davidb.org> Fri May 15 12:07:20 2020 -0600
tree: a3825c30fd3d64eb865a65ce7432f6f4f5f1ce10
parent: 16d7b73cd231c06dac48e8eae3de53c8883ef6b0 [diff] [blame]
diff --git a/boot/bootutil/src/image_validate.c b/boot/bootutil/src/image_validate.c
index 7e0af0d..7071d7d 100644
--- a/boot/bootutil/src/image_validate.c
+++ b/boot/bootutil/src/image_validate.c

@@ -48,7 +48,10 @@
 #if defined(MCUBOOT_SIGN_EC) || defined(MCUBOOT_SIGN_EC256)
 #include "mbedtls/ecdsa.h"
 #endif
+#if defined(MCUBOOT_ENC_IMAGES) || defined(MCUBOOT_SIGN_RSA) || \
+    defined(MCUBOOT_SIGN_EC) || defined(MCUBOOT_SIGN_EC256)
 #include "mbedtls/asn1.h"
+#endif
 
 #include "bootutil_priv.h"
commit	f8240199562f8d2af11939343a71a0169f345ad3	[log] [tgz]
author	Arvin Farahmand <arvinf@ip-logix.com>	Tue May 05 11:43:52 2020 -0400
committer	David Brown <davidb@davidb.org>	Fri May 15 12:07:20 2020 -0600
tree	a3825c30fd3d64eb865a65ce7432f6f4f5f1ce10
parent	16d7b73cd231c06dac48e8eae3de53c8883ef6b0 [diff] [blame]