mirror of
				https://github.com/smaeul/u-boot.git
				synced 2025-10-24 17:48:14 +01:00 
			
		
		
		
	The file, pkcs7_verify.c, will now be imported from linux code (crypto/asymmetric_keys/pkcs7_verify.c in 5.7) and modified to fit into U-Boot environment. In particular, pkcs7_verify_one() function will be used in a later patch to rework signature verification logic aiming to support intermediate certificates in "chain of trust." Signed-off-by: AKASHI Takahiro <takahiro.akashi@linaro.org>
		
			
				
	
	
		
			56 lines
		
	
	
		
			1.7 KiB
		
	
	
	
		
			Plaintext
		
	
	
	
	
	
			
		
		
	
	
			56 lines
		
	
	
		
			1.7 KiB
		
	
	
	
		
			Plaintext
		
	
	
	
	
	
| menuconfig ASYMMETRIC_KEY_TYPE
 | |
| 	bool "Asymmetric (public-key cryptographic) key Support"
 | |
| 	help
 | |
| 	  This option provides support for a key type that holds the data for
 | |
| 	  the asymmetric keys used for public key cryptographic operations such
 | |
| 	  as encryption, decryption, signature generation and signature
 | |
| 	  verification.
 | |
| 
 | |
| if ASYMMETRIC_KEY_TYPE
 | |
| 
 | |
| config ASYMMETRIC_PUBLIC_KEY_SUBTYPE
 | |
| 	bool "Asymmetric public-key crypto algorithm subtype"
 | |
| 	help
 | |
| 	  This option provides support for asymmetric public key type handling.
 | |
| 	  If signature generation and/or verification are to be used,
 | |
| 	  appropriate hash algorithms (such as SHA-1) must be available.
 | |
| 	  ENOPKG will be reported if the requisite algorithm is unavailable.
 | |
| 
 | |
| config RSA_PUBLIC_KEY_PARSER
 | |
| 	bool "RSA public key parser"
 | |
| 	depends on ASYMMETRIC_PUBLIC_KEY_SUBTYPE
 | |
| 	select ASN1_DECODER
 | |
| 	select ASN1_COMPILER
 | |
| 	select OID_REGISTRY
 | |
| 	help
 | |
| 	  This option provides support for parsing a blob containing RSA
 | |
| 	  public key data and provides the ability to instantiate a public
 | |
| 	  key.
 | |
| 
 | |
| config X509_CERTIFICATE_PARSER
 | |
| 	bool "X.509 certificate parser"
 | |
| 	depends on ASYMMETRIC_PUBLIC_KEY_SUBTYPE
 | |
| 	select ASN1_DECODER
 | |
| 	select ASN1_COMPILER
 | |
| 	select OID_REGISTRY
 | |
| 	select LIB_DATE
 | |
| 	help
 | |
| 	  This option provides support for parsing X.509 format blobs for key
 | |
| 	  data and provides the ability to instantiate a crypto key from a
 | |
| 	  public key packet found inside the certificate.
 | |
| 
 | |
| config PKCS7_MESSAGE_PARSER
 | |
| 	bool "PKCS#7 message parser"
 | |
| 	depends on X509_CERTIFICATE_PARSER
 | |
| 	select ASN1_DECODER
 | |
| 	select ASN1_COMPILER
 | |
| 	select OID_REGISTRY
 | |
| 	help
 | |
| 	  This option provides support for parsing PKCS#7 format messages for
 | |
| 	  signature data and provides the ability to verify the signature.
 | |
| 
 | |
| config PKCS7_VERIFY
 | |
| 	bool
 | |
| 
 | |
| endif # ASYMMETRIC_KEY_TYPE
 |