AKASHI Takahiro | cbb1007 | 2019-11-13 09:44:58 +0900 | [diff] [blame] | 1 | menuconfig ASYMMETRIC_KEY_TYPE |
| 2 | bool "Asymmetric (public-key cryptographic) key Support" |
Tomas Paukrt | 164332f | 2024-08-27 19:38:09 +0200 | [diff] [blame] | 3 | depends on FIT_SIGNATURE || RSA_VERIFY_WITH_PKEY |
AKASHI Takahiro | cbb1007 | 2019-11-13 09:44:58 +0900 | [diff] [blame] | 4 | help |
| 5 | This option provides support for a key type that holds the data for |
| 6 | the asymmetric keys used for public key cryptographic operations such |
| 7 | as encryption, decryption, signature generation and signature |
| 8 | verification. |
| 9 | |
| 10 | if ASYMMETRIC_KEY_TYPE |
| 11 | |
Philippe Reynes | ef06469 | 2022-03-28 22:56:57 +0200 | [diff] [blame] | 12 | config SPL_ASYMMETRIC_KEY_TYPE |
| 13 | bool "Asymmetric (public-key cryptographic) key Support within SPL" |
| 14 | depends on SPL |
| 15 | help |
| 16 | This option provides support for a key type that holds the data for |
| 17 | the asymmetric keys used for public key cryptographic operations such |
| 18 | as encryption, decryption, signature generation and signature |
| 19 | verification in the SPL. |
| 20 | |
AKASHI Takahiro | cbb1007 | 2019-11-13 09:44:58 +0900 | [diff] [blame] | 21 | config ASYMMETRIC_PUBLIC_KEY_SUBTYPE |
| 22 | bool "Asymmetric public-key crypto algorithm subtype" |
| 23 | help |
| 24 | This option provides support for asymmetric public key type handling. |
| 25 | If signature generation and/or verification are to be used, |
| 26 | appropriate hash algorithms (such as SHA-1) must be available. |
| 27 | ENOPKG will be reported if the requisite algorithm is unavailable. |
| 28 | |
Philippe Reynes | ef06469 | 2022-03-28 22:56:57 +0200 | [diff] [blame] | 29 | config SPL_ASYMMETRIC_PUBLIC_KEY_SUBTYPE |
| 30 | bool "Asymmetric public-key crypto algorithm subtype within SPL" |
Tom Rini | 0a83cc2 | 2022-06-10 23:03:09 -0400 | [diff] [blame] | 31 | depends on ASYMMETRIC_PUBLIC_KEY_SUBTYPE && SPL |
Philippe Reynes | ef06469 | 2022-03-28 22:56:57 +0200 | [diff] [blame] | 32 | help |
| 33 | This option provides support for asymmetric public key type handling in the SPL. |
| 34 | If signature generation and/or verification are to be used, |
| 35 | appropriate hash algorithms (such as SHA-1) must be available. |
| 36 | ENOPKG will be reported if the requisite algorithm is unavailable. |
| 37 | |
AKASHI Takahiro | 4214284 | 2019-11-13 09:44:59 +0900 | [diff] [blame] | 38 | config RSA_PUBLIC_KEY_PARSER |
| 39 | bool "RSA public key parser" |
| 40 | depends on ASYMMETRIC_PUBLIC_KEY_SUBTYPE |
| 41 | select ASN1_DECODER |
| 42 | select ASN1_COMPILER |
| 43 | select OID_REGISTRY |
| 44 | help |
| 45 | This option provides support for parsing a blob containing RSA |
| 46 | public key data and provides the ability to instantiate a public |
| 47 | key. |
| 48 | |
Philippe Reynes | ef06469 | 2022-03-28 22:56:57 +0200 | [diff] [blame] | 49 | config SPL_RSA_PUBLIC_KEY_PARSER |
| 50 | bool "RSA public key parser within SPL" |
Tom Rini | 0a83cc2 | 2022-06-10 23:03:09 -0400 | [diff] [blame] | 51 | depends on ASYMMETRIC_PUBLIC_KEY_SUBTYPE && SPL |
Philippe Reynes | ef06469 | 2022-03-28 22:56:57 +0200 | [diff] [blame] | 52 | select SPL_ASN1_DECODER |
| 53 | select ASN1_COMPILER |
| 54 | select SPL_OID_REGISTRY |
| 55 | help |
| 56 | This option provides support for parsing a blob containing RSA |
| 57 | public key data and provides the ability to instantiate a public |
| 58 | key in the SPL. |
| 59 | |
AKASHI Takahiro | 591535c | 2019-11-13 09:45:00 +0900 | [diff] [blame] | 60 | config X509_CERTIFICATE_PARSER |
| 61 | bool "X.509 certificate parser" |
| 62 | depends on ASYMMETRIC_PUBLIC_KEY_SUBTYPE |
| 63 | select ASN1_DECODER |
| 64 | select ASN1_COMPILER |
| 65 | select OID_REGISTRY |
| 66 | select LIB_DATE |
| 67 | help |
| 68 | This option provides support for parsing X.509 format blobs for key |
| 69 | data and provides the ability to instantiate a crypto key from a |
| 70 | public key packet found inside the certificate. |
| 71 | |
AKASHI Takahiro | 5ace6ff | 2019-11-13 09:45:01 +0900 | [diff] [blame] | 72 | config PKCS7_MESSAGE_PARSER |
| 73 | bool "PKCS#7 message parser" |
| 74 | depends on X509_CERTIFICATE_PARSER |
| 75 | select ASN1_DECODER |
| 76 | select ASN1_COMPILER |
| 77 | select OID_REGISTRY |
| 78 | help |
| 79 | This option provides support for parsing PKCS#7 format messages for |
| 80 | signature data and provides the ability to verify the signature. |
| 81 | |
AKASHI Takahiro | ab837f2 | 2020-07-21 19:35:19 +0900 | [diff] [blame] | 82 | config PKCS7_VERIFY |
| 83 | bool |
| 84 | |
AKASHI Takahiro | fea4c84 | 2022-07-05 14:48:11 +0900 | [diff] [blame] | 85 | config MSCODE_PARSER |
| 86 | bool "MS authenticode parser" |
| 87 | select ASN1_DECODER |
| 88 | select ASN1_COMPILER |
| 89 | select OID_REGISTRY |
| 90 | help |
| 91 | This option provides support for parsing MicroSoft's Authenticode |
| 92 | in pkcs7 message. |
| 93 | |
AKASHI Takahiro | cbb1007 | 2019-11-13 09:44:58 +0900 | [diff] [blame] | 94 | endif # ASYMMETRIC_KEY_TYPE |