Received: by 2002:ac0:b08d:0:0:0:0:0 with SMTP id l13csp3171499imc;
        Sat, 23 Feb 2019 22:12:59 -0800 (PST)
X-Google-Smtp-Source: AHgI3IbYLrrTMI6MfRS8OcOou27fChoSisXMWfud4o1UTFlQdibxZXbCbnEwU5mE2+MQ464FdNyL
X-Received: by 2002:a17:902:e409:: with SMTP id ci9mr12249189plb.221.1550988779390;
        Sat, 23 Feb 2019 22:12:59 -0800 (PST)
ARC-Seal: i=1; a=rsa-sha256; t=1550988779; cv=none;
        d=google.com; s=arc-20160816;
        b=WriTgnlLFLUZACJ2kkH5vcRYFfMdrlHv0XPG6v6dackwiu8pUJEW3qbtzw/xSRC+oe
         Scp92Lo9sJXzxoQJmh+LlEFfHuQ5zc/22Il7z9LVMXYNl0wnJm9TFqc0FiOEOHRcotms
         w5tWVP5kYfYoktx1Rg517IySnQy+da8QkXFVCKqODecVi3v1r478SZVS+UsvFDEWBrHc
         AEvtX2mzj2+F+REL9oRllUyn2k/fGPTI0AhEThT0u6Uqv8LEQuygu041AfwqVruajDcn
         XSQEMZ/Vq4Fq+85TXPZpIbuGXwc+QN6LAbERcOcxNKgM3H52Xn+7vmecDw185g2C2oMc
         /oYg==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816;
        h=list-id:precedence:sender:content-transfer-encoding:mime-version
         :message-id:date:subject:to:from;
        bh=E11VQR7mHkMSBfNaV8r2VvKiNxW+Q3tJHzvfZOtzCig=;
        b=gMnfxpUwJ7G6TS1wV3LDBAYVTPUmbeKS3pHVC9AxYyS9Grv0b+dbflLLkNBIa1WRLb
         uYS9zrZno++IhlFwpcNxeYvJ0MPzn1Phxnp/ng1AiDDqN4JyOFxCLjPa+U18pAm4se1o
         lhfzrTlnKV+qgbJSKuGZyJJhizF2F3kMIxkBu1e9BaNa8j4IK1RBa8N1qzLyZF+p9Vva
         zjYb62/AQqKSQpG6PbaZ7mfzXpHjPxiai6qgoi66iDAJN0ST/Nj5hLrpHnO9DxMrNbhN
         yF1rHWHykJiTqHB728Vnfd5ZJ1jNUSWsAwOSmw4ebWVNSYHO2mKaCjaHSbsis/HdhxFa
         hjUw==
ARC-Authentication-Results: i=1; mx.google.com;
       spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org
Return-Path: <linux-kernel-owner@vger.kernel.org>
Received: from vger.kernel.org (vger.kernel.org. [209.132.180.67])
        by mx.google.com with ESMTP id e17si5003357pgv.452.2019.02.23.22.12.44;
        Sat, 23 Feb 2019 22:12:59 -0800 (PST)
Received-SPF: pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) client-ip=209.132.180.67;
Authentication-Results: mx.google.com;
       spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org
Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand
        id S1726508AbfBXGIy (ORCPT <rfc822;gklkml16@gmail.com> + 99 others);
        Sun, 24 Feb 2019 01:08:54 -0500
Received: from vmicros1.altlinux.org ([194.107.17.57]:43620 "EHLO
        vmicros1.altlinux.org" rhost-flags-OK-OK-OK-OK) by vger.kernel.org
        with ESMTP id S1725817AbfBXGIy (ORCPT
        <rfc822;linux-kernel@vger.kernel.org>);
        Sun, 24 Feb 2019 01:08:54 -0500
Received: from imap.altlinux.org (imap.altlinux.org [194.107.17.38])
        by vmicros1.altlinux.org (Postfix) with ESMTP id CD3D872CCAC;
        Sun, 24 Feb 2019 09:08:50 +0300 (MSK)
Received: from beacon.altlinux.org (unknown [185.6.174.98])
        by imap.altlinux.org (Postfix) with ESMTPSA id 9FF554A4AE7;
        Sun, 24 Feb 2019 09:08:50 +0300 (MSK)
From:   Vitaly Chikunov <vt@altlinux.org>
To:     Herbert Xu <herbert@gondor.apana.org.au>,
        David Howells <dhowells@redhat.com>,
        Mimi Zohar <zohar@linux.ibm.com>,
        linux-integrity@vger.kernel.org, keyrings@vger.kernel.org,
        linux-crypto@vger.kernel.org, linux-kernel@vger.kernel.org
Subject: [PATCH v5 00/10] crypto: add EC-RDSA (GOST 34.10) algorithm
Date:   Sun, 24 Feb 2019 09:08:18 +0300
Message-Id: <20190224060828.2527-1-vt@altlinux.org>
X-Mailer: git-send-email 2.11.0
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit
Sender: linux-kernel-owner@vger.kernel.org
Precedence: bulk
List-ID: <linux-kernel.vger.kernel.org>
X-Mailing-List: linux-kernel@vger.kernel.org

This patchset changes akcipher API to support ECDSA style signature
verification, augments x509 parser to make it work with EC-RDSA certificates,
and, finally, implements EC-RDSA (GOST 34.10) signature verification and its
integration with IMA.

Changes since RFC (v1-v4):
- akcipher set_max_size, encrypt, decrypt, sign, verify callbacks may be
  undefined by the drivers, so their crypto_akcipher_* frontends check for
  their presence before passing the call.
- supported_ops flags are set for keyctl, based on the presence of implemented
  akcipher callbacks.
- Transition to verify2 API is abandoned because raw RSA does not need
  sign/verify ops at all, and we can switch to the new verify in one step.
  For this RSA backends have sign/verify ops removed as they should only
  be used (and actually used only) via PKCS1 driver.
- Verify callback requires digest as the input parameter in src SGL, as
  suggested by Herbert Xu, (instead of a separate parameter, as it was in
  verify2).
- For verify op signature is moved into kmalloc'd memory as suggested by
  Herbert Xu.
- set_params API should be called before set_{pub,priv}_key, thus set_*_key
  knows everything it needs to set they key properly. Also, set_params made
  optional for back compatibility with RSA drivers.
- Public-key cryptography section is created in Kconfig.
- ecc.c is made into separate module object, to be used together by ECDH and
  EC-RDSA.
- EC-RDSA parameters and public key are parsed using asn1_ber_decoder as
  suggested by Stephan Mueller and David Howells.
- Test vectors are added and tests are passing.
- Curves/parameters definitions are split from ecrdsa.c into ecrdsa_defs.h.
- Integration with IMA in asymmetric_verify(). Userspace ima-evm-utils already
  have a patch in the queue to support this. Tested on x86_64.

---
Vitaly Chikunov (10):
  KEYS: report to keyctl only actually supported key ops
  crypto: akcipher - check the presence of callback before the call
  crypto: rsa - unimplement sign/verify for raw RSA backends
  crypto: akcipher - new verify API for public key algorithms
  X.509: parse public key parameters from x509 for akcipher
  crypto: Kconfig - create Public-key cryptography section
  crypto: ecc - make ecc into separate module
  crypto: ecrdsa - add EC-RDSA (GOST 34.10) algorithm
  crypto: ecrdsa - add EC-RDSA test vectors to testmgr
  integrity: support EC-RDSA signatures for asymmetric_verify

 crypto/Kconfig                                |  63 ++--
 crypto/Makefile                               |  10 +-
 crypto/asymmetric_keys/asym_tpm.c             |  34 +--
 crypto/asymmetric_keys/public_key.c           |  63 ++--
 crypto/asymmetric_keys/x509.asn1              |   2 +-
 crypto/asymmetric_keys/x509_cert_parser.c     |  57 +++-
 crypto/ecc.c                                  | 417 +++++++++++++++++++++++++-
 crypto/ecc.h                                  | 153 +++++++++-
 crypto/ecc_curve_defs.h                       |  15 -
 crypto/ecrdsa.c                               | 297 ++++++++++++++++++
 crypto/ecrdsa_defs.h                          | 225 ++++++++++++++
 crypto/rsa-pkcs1pad.c                         |  33 +-
 crypto/rsa.c                                  | 109 -------
 crypto/testmgr.c                              |  60 ++--
 crypto/testmgr.h                              | 157 ++++++++++
 drivers/crypto/caam/caampkc.c                 |   2 -
 drivers/crypto/ccp/ccp-crypto-rsa.c           |   2 -
 drivers/crypto/qat/qat_common/qat_asym_algs.c |   2 -
 include/crypto/akcipher.h                     |  97 ++++--
 include/crypto/public_key.h                   |   4 +
 include/linux/oid_registry.h                  |  18 ++
 security/integrity/digsig_asymmetric.c        |   9 +-
 22 files changed, 1545 insertions(+), 284 deletions(-)
 create mode 100644 crypto/ecrdsa.c
 create mode 100644 crypto/ecrdsa_defs.h

-- 
2.11.0