On Wed, Jan 27, 2021 at 09:03:59AM -0500, Mimi Zohar wrote:
> [Cc'ing linux-integrity]
>
> On Wed, 2021-01-27 at 11:46 +, David Howells wrote:
> > Jarkko Sakkinen wrote:
> >
> > > > I suppose a user space tool could be created. But wouldn’t what is
> > > > currently done in the kernel in thi
From: Saulo Alessandre
* crypto/ecc.c
- ecc_get_curve - modified to recognize NIST_P384 and NISTP521;
- vli_rshift - created for use on vli_mmod_fast_521 for ecdsa;
- vli_mod_add - exported for use on ecdsa.c;
- vli_mmod_fast_384 - implements fast elliptic curve nist p384 [4];
- vli_mmo
From: Saulo Alessandre
* Documentation/admin-guide/module-signing.rst
- Documents how to generate certificate and signature for (ECDSA).
* crypto/Kconfig
- ECDSA added into kernel Public-key cryptography section.
* crypto/Makefile
- add ECDSA objects and asn1 params to compile.
* crypto
From: Saulo Alessandre
* crypto/ecc_curve_defs.h
- nist_p384_(x,y,p,n,z,b) and nist_p384 added curve params added;
- nist_p521_(x,y,p,n,z,b) and nist_p521 added curve params added;
* include/crypto/ecdh.h
- ECC_CURVE_NIST_P384, ECC_CURVE_NIST_P521 - added new curves
* lib/oid_registry.c
-
From: Saulo Alessandre
* crypto/asymmetric_keys/pkcs7_parser.c
- pkcs7_sig_note_pkey_algo - changed to recognize
OID_id_ecdsa_with_sha(1,256,384,512).
* crypto/asymmetric_keys/pkcs7_verify.c
- pkcs7_digest - added warning when the summary has an unsupported algorithm,
to avoid let others w
From: Saulo Alessandre
Why ECDSA on kernel:
I work on Brazilian Supreme Electoral Court [http://www.tse.jus.br], we are
using ECDSA for module and elf32 binaries verification including shared
libraries on about 450k T-DRE voting machines [5].
This is the first part of our try to contribution,
On Fri, Jan 29, 2021 at 10:03:52AM -0500, Stefan Berger wrote:
>
> + .cra_name = "ecdsa-nist-p256",
> + .cra_driver_name = "ecdsa-nist-p256",
The driver name should have a "-generic" suffix in case a driver
provides this algorithm too.
Cheers,
--
Email: Herbert Xu
Home P
On Wed, Jan 27, 2021 at 6:41 PM Uwe Kleine-König wrote:
>
> The driver core ignores the return value of struct bus_type::remove()
> because there is only little that can be done. To simplify the quest to
> make this function return void, let struct vio_driver::remove() return
> void, too. All user
On 1/27/21 1:50 PM, Uwe Kleine-König wrote:
> The driver core ignores the return value of struct bus_type::remove()
> because there is only little that can be done. To simplify the quest to
> make this function return void, let struct vio_driver::remove() return
> void, too. All users already uncon
