diff options
| author | Dmitry Kasatkin | 2011-10-14 14:25:16 +0200 |
|---|---|---|
| committer | Dmitry Kasatkin | 2011-11-09 11:10:37 +0100 |
| commit | 051dbb918c7fb7da8e64a2cd0d804ba73399709f (patch) | |
| tree | 34d547e74ef6edb7feeda4a8291b221cc016c393 /lib/Kconfig | |
| parent | crypto: GnuPG based MPI lib - additional sources (part 4) (diff) | |
| download | kernel-qcow2-linux-051dbb918c7fb7da8e64a2cd0d804ba73399709f.tar.gz kernel-qcow2-linux-051dbb918c7fb7da8e64a2cd0d804ba73399709f.tar.xz kernel-qcow2-linux-051dbb918c7fb7da8e64a2cd0d804ba73399709f.zip | |
crypto: digital signature verification support
This patch implements RSA digital signature verification using GnuPG library.
The format of the signature and the public key is defined by their respective
headers. The signature header contains version information, algorithm,
and keyid, which was used to generate the signature.
The key header contains version and algorythim type.
The payload of the signature and the key are multi-precision integers.
The signing and key management utilities evm-utils provide functionality
to generate signatures and load keys into the kernel keyring.
When the key is added to the kernel keyring, the keyid defines the name
of the key.
Signed-off-by: Dmitry Kasatkin <dmitry.kasatkin@intel.com>
Acked-by: Mimi Zohar <zohar@us.ibm.com>
Diffstat (limited to 'lib/Kconfig')
| -rw-r--r-- | lib/Kconfig | 8 |
1 files changed, 8 insertions, 0 deletions
diff --git a/lib/Kconfig b/lib/Kconfig index d411de53be4f..c1a89185fe6b 100644 --- a/lib/Kconfig +++ b/lib/Kconfig @@ -293,4 +293,12 @@ config MPILIB_EXTRA This code in unnecessary for RSA digital signature verification, and can be compiled if needed. +config DIGSIG + tristate "In-kernel signature checker" + depends on CRYPTO + select MPILIB + help + Digital signature verification. Currently only RSA is supported. + Implementation is done using GnuPG MPI library + endmenu |