10de7b5429
When support for ECDSA keys was added, constraints for data & signature
sizes were never updated. This makes it impossible to use such keys via
keyctl API from userspace.
Update constraint on max_data_size to 64 bytes in order to support
SHA512-based signatures. Also update the signature length constraints
per ECDSA signature encoding described in RFC 5480.
Fixes:
|
||
---|---|---|
.. | ||
Kconfig | ||
Makefile | ||
asymmetric_keys.h | ||
asymmetric_type.c | ||
mscode.asn1 | ||
mscode_parser.c | ||
pkcs7.asn1 | ||
pkcs7_key_type.c | ||
pkcs7_parser.c | ||
pkcs7_parser.h | ||
pkcs7_trust.c | ||
pkcs7_verify.c | ||
pkcs8.asn1 | ||
pkcs8_parser.c | ||
public_key.c | ||
restrict.c | ||
selftest.c | ||
signature.c | ||
verify_pefile.c | ||
verify_pefile.h | ||
x509.asn1 | ||
x509_akid.asn1 | ||
x509_cert_parser.c | ||
x509_loader.c | ||
x509_parser.h | ||
x509_public_key.c |