From patchwork Sun Oct 22 18:22:06 2023
Content-Type: text/plain; charset="utf-8"
MIME-Version: 1.0
Content-Transfer-Encoding: 7bit
X-Patchwork-Submitter: Dimitri John Ledkov <dimitri.ledkov@canonical.com>
X-Patchwork-Id: 13432041
Return-Path: <keyrings-owner@vger.kernel.org>
X-Spam-Checker-Version: SpamAssassin 3.4.0 (2014-02-07) on
	aws-us-west-2-korg-lkml-1.web.codeaurora.org
Received: from vger.kernel.org (vger.kernel.org [23.128.96.18])
	by smtp.lore.kernel.org (Postfix) with ESMTP id A2085CDB474
	for <keyrings@archiver.kernel.org>; Sun, 22 Oct 2023 18:22:53 +0000 (UTC)
Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand
        id S232462AbjJVSWw (ORCPT <rfc822;keyrings@archiver.kernel.org>);
        Sun, 22 Oct 2023 14:22:52 -0400
Received: from lindbergh.monkeyblade.net ([23.128.96.19]:59138 "EHLO
        lindbergh.monkeyblade.net" rhost-flags-OK-OK-OK-OK) by vger.kernel.org
        with ESMTP id S232403AbjJVSWq (ORCPT
        <rfc822;keyrings@vger.kernel.org>); Sun, 22 Oct 2023 14:22:46 -0400
Received: from smtp-relay-internal-0.canonical.com
 (smtp-relay-internal-0.canonical.com [185.125.188.122])
        by lindbergh.monkeyblade.net (Postfix) with ESMTPS id 75A05D5D
        for <keyrings@vger.kernel.org>; Sun, 22 Oct 2023 11:22:44 -0700 (PDT)
Received: from mail-wr1-f70.google.com (mail-wr1-f70.google.com
 [209.85.221.70])
        (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits)
         key-exchange X25519 server-signature RSA-PSS (2048 bits)
 server-digest SHA256)
        (No client certificate requested)
        by smtp-relay-internal-0.canonical.com (Postfix) with ESMTPS id
 4488E3FA6A
        for <keyrings@vger.kernel.org>; Sun, 22 Oct 2023 18:22:43 +0000 (UTC)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=canonical.com;
        s=20210705; t=1697998963;
        bh=eYf+t+El9qBlaiw5wPUd9OUTW1C9eNGz0+xZv0WFeT0=;
        h=From:To:Cc:Subject:Date:Message-Id:In-Reply-To:References:
         MIME-Version;
        b=eoBwSQAV2jc9lvUuO6XuUtM11av8szafNo8pPQIx/9niJJ06BJvUx67ZWWIHUdN5b
         KReGpTAMppQ0Jymn8IIrI12jPjitKciaaJmEHWPki5FXbTImei0RvZm0RnccooW4zf
         A7bPrhqSC236gg6E23fi4YiUBnzyreLJ5zKXHlWNkIANrrXGx5nzuYll27oDgk5X96
         2N2PZZa/Z7Y9lFW5k+LktnsFZQZIgx4eWHml114KLQKjQ7iN9HB9zEA2KEsBJUzc3n
         7AzmdBaIzHYw+UxrrUgWJqOO+pxlDFh0W7SbKrcYpb9PGeTrsBR4UrZdBXusOIxr8L
         XNH8XgUO6DulQ==
Received: by mail-wr1-f70.google.com with SMTP id
 ffacd0b85a97d-32de95ec119so896842f8f.2
        for <keyrings@vger.kernel.org>; Sun, 22 Oct 2023 11:22:43 -0700 (PDT)
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=1e100.net; s=20230601; t=1697998963; x=1698603763;
        h=content-transfer-encoding:mime-version:references:in-reply-to
         :message-id:date:subject:cc:to:from:x-gm-message-state:from:to:cc
         :subject:date:message-id:reply-to;
        bh=eYf+t+El9qBlaiw5wPUd9OUTW1C9eNGz0+xZv0WFeT0=;
        b=EoJ0cylz+rJ+0wd0mxroJBR6NWj9nXwgHgCuYyHXAGBN0COZUd+UxlhzGrsi/sFZ61
         yyf7uy/W5AHEEpfaSX5frpoYoksXw8ECiwaJWPzI3yTO1PfukRNqdg6KFwHWkxtWTlUN
         rnOpA9v+oE/4x8GfBOZ1YolmVNgCIA8bX0Xo7m4bOuRKOdAdPYmBZrD/4xHnHn5DknZo
         64pQMXhQBPLd2FJWDc3aHJO6wkDdj0vi1kiH7Ol5FZJ7YMH7XTA1QKVUbg6lFMbqbMKx
         nBBCBswV8rAr8S1xRu6fQsqNc/5Jdn6eEzu2n2CVKcRW54Cvf4ZTj0DgSOB82EEIA0v6
         Z4Kw==
X-Gm-Message-State: AOJu0YxOEnGReF6ZxjRD4YmPd5MBQfG+u/f1B5ihG1tx6MG5zj9WzI2i
        A3O/QxsnkQSroIIZr6+sLcj7oJnuO0t8U66SKcuvPZcosJiwIQaEh5cZBG497cDDN+e91tyT1R4
        FHQ3cKIbzrpq6MSJUqtfBThHDpz1Ufj02P6sp
X-Received: by 2002:a05:6000:1183:b0:313:f463:9d40 with SMTP id
 g3-20020a056000118300b00313f4639d40mr3828254wrx.65.1697998962876;
        Sun, 22 Oct 2023 11:22:42 -0700 (PDT)
X-Google-Smtp-Source: 
 AGHT+IH7qAP+4YfSJntn9JV5vYJgPooPDtZyiLr3U9fc40TZZa0J1KRatDzDmqR1M8L1F9Pg36Jk5w==
X-Received: by 2002:a05:6000:1183:b0:313:f463:9d40 with SMTP id
 g3-20020a056000118300b00313f4639d40mr3828248wrx.65.1697998962650;
        Sun, 22 Oct 2023 11:22:42 -0700 (PDT)
Received: from localhost ([2001:67c:1560:8007::aac:c15c])
        by smtp.gmail.com with ESMTPSA id
 y5-20020adff145000000b0031fd849e797sm6100729wro.105.2023.10.22.11.22.42
        (version=TLS1_3 cipher=TLS_AES_256_GCM_SHA384 bits=256/256);
        Sun, 22 Oct 2023 11:22:42 -0700 (PDT)
From: Dimitri John Ledkov <dimitri.ledkov@canonical.com>
To: herbert@gondor.apana.org.au, David Howells <dhowells@redhat.com>,
        "David S. Miller" <davem@davemloft.net>
Cc: linux-crypto@vger.kernel.org, linux-kernel@vger.kernel.org,
        keyrings@vger.kernel.org
Subject: [PATCH 4/6] crypto: x509 pkcs7 - allow FIPS 202 SHA-3 signatures
Date: Sun, 22 Oct 2023 19:22:06 +0100
Message-Id: <20231022182208.188714-5-dimitri.ledkov@canonical.com>
X-Mailer: git-send-email 2.34.1
In-Reply-To: <20231022182208.188714-1-dimitri.ledkov@canonical.com>
References: <20231022182208.188714-1-dimitri.ledkov@canonical.com>
MIME-Version: 1.0
Precedence: bulk
List-ID: <keyrings.vger.kernel.org>
X-Mailing-List: keyrings@vger.kernel.org

Add FIPS 202 SHA-3 hash signature support in x509 certificates, pkcs7
signatures, and authenticode signatures. Supports hashes of size 256
and up, as 224 is too weak for any practical purposes.

Signed-off-by: Dimitri John Ledkov <dimitri.ledkov@canonical.com>
---
 crypto/asymmetric_keys/mscode_parser.c    |  9 +++++++++
 crypto/asymmetric_keys/pkcs7_parser.c     | 12 ++++++++++++
 crypto/asymmetric_keys/public_key.c       |  5 ++++-
 crypto/asymmetric_keys/x509_cert_parser.c | 24 +++++++++++++++++++++++
 4 files changed, 49 insertions(+), 1 deletion(-)

diff --git a/crypto/asymmetric_keys/mscode_parser.c b/crypto/asymmetric_keys/mscode_parser.c
index 855cbc46a9..05402ef896 100644
--- a/crypto/asymmetric_keys/mscode_parser.c
+++ b/crypto/asymmetric_keys/mscode_parser.c
@@ -84,6 +84,15 @@ int mscode_note_digest_algo(void *context, size_t hdrlen,
 	case OID_sha512:
 		ctx->digest_algo = "sha512";
 		break;
+	case OID_sha3_256:
+		ctx->digest_algo = "sha3-256";
+		break;
+	case OID_sha3_384:
+		ctx->digest_algo = "sha3-384";
+		break;
+	case OID_sha3_512:
+		ctx->digest_algo = "sha3-512";
+		break;
 
 	case OID__NR:
 		sprint_oid(value, vlen, buffer, sizeof(buffer));
diff --git a/crypto/asymmetric_keys/pkcs7_parser.c b/crypto/asymmetric_keys/pkcs7_parser.c
index ab647cb4d7..5b08c50722 100644
--- a/crypto/asymmetric_keys/pkcs7_parser.c
+++ b/crypto/asymmetric_keys/pkcs7_parser.c
@@ -248,6 +248,15 @@ int pkcs7_sig_note_digest_algo(void *context, size_t hdrlen,
 	case OID_gost2012Digest512:
 		ctx->sinfo->sig->hash_algo = "streebog512";
 		break;
+	case OID_sha3_256:
+		ctx->sinfo->sig->hash_algo = "sha3-256";
+		break;
+	case OID_sha3_384:
+		ctx->sinfo->sig->hash_algo = "sha3-384";
+		break;
+	case OID_sha3_512:
+		ctx->sinfo->sig->hash_algo = "sha3-512";
+		break;
 	default:
 		printk("Unsupported digest algo: %u\n", ctx->last_oid);
 		return -ENOPKG;
@@ -273,6 +282,9 @@ int pkcs7_sig_note_pkey_algo(void *context, size_t hdrlen,
 	case OID_id_ecdsa_with_sha256:
 	case OID_id_ecdsa_with_sha384:
 	case OID_id_ecdsa_with_sha512:
+	case OID_id_ecdsa_with_sha3_256:
+	case OID_id_ecdsa_with_sha3_384:
+	case OID_id_ecdsa_with_sha3_512:
 		ctx->sinfo->sig->pkey_algo = "ecdsa";
 		ctx->sinfo->sig->encoding = "x962";
 		break;
diff --git a/crypto/asymmetric_keys/public_key.c b/crypto/asymmetric_keys/public_key.c
index 5bf0452c17..8eeab38a3d 100644
--- a/crypto/asymmetric_keys/public_key.c
+++ b/crypto/asymmetric_keys/public_key.c
@@ -119,7 +119,10 @@ software_key_determine_akcipher(const struct public_key *pkey,
 		if (strcmp(hash_algo, "sha224") != 0 &&
 		    strcmp(hash_algo, "sha256") != 0 &&
 		    strcmp(hash_algo, "sha384") != 0 &&
-		    strcmp(hash_algo, "sha512") != 0)
+		    strcmp(hash_algo, "sha512") != 0 &&
+		    strcmp(hash_algo, "sha3-256") != 0 &&
+		    strcmp(hash_algo, "sha3-384") != 0 &&
+		    strcmp(hash_algo, "sha3-512") != 0)
 			return -EINVAL;
 	} else if (strcmp(pkey->pkey_algo, "sm2") == 0) {
 		if (strcmp(encoding, "raw") != 0)
diff --git a/crypto/asymmetric_keys/x509_cert_parser.c b/crypto/asymmetric_keys/x509_cert_parser.c
index 68ef1ffbbe..487204d394 100644
--- a/crypto/asymmetric_keys/x509_cert_parser.c
+++ b/crypto/asymmetric_keys/x509_cert_parser.c
@@ -214,6 +214,18 @@ int x509_note_sig_algo(void *context, size_t hdrlen, unsigned char tag,
 		ctx->cert->sig->hash_algo = "sha224";
 		goto rsa_pkcs1;
 
+	case OID_id_rsassa_pkcs1_v1_5_with_sha3_256:
+		ctx->cert->sig->hash_algo = "sha3-256";
+		goto rsa_pkcs1;
+
+	case OID_id_rsassa_pkcs1_v1_5_with_sha3_384:
+		ctx->cert->sig->hash_algo = "sha3-384";
+		goto rsa_pkcs1;
+
+	case OID_id_rsassa_pkcs1_v1_5_with_sha3_512:
+		ctx->cert->sig->hash_algo = "sha3-512";
+		goto rsa_pkcs1;
+
 	case OID_id_ecdsa_with_sha224:
 		ctx->cert->sig->hash_algo = "sha224";
 		goto ecdsa;
@@ -230,6 +242,18 @@ int x509_note_sig_algo(void *context, size_t hdrlen, unsigned char tag,
 		ctx->cert->sig->hash_algo = "sha512";
 		goto ecdsa;
 
+	case OID_id_ecdsa_with_sha3_256:
+		ctx->cert->sig->hash_algo = "sha3-256";
+		goto ecdsa;
+
+	case OID_id_ecdsa_with_sha3_384:
+		ctx->cert->sig->hash_algo = "sha3-384";
+		goto ecdsa;
+
+	case OID_id_ecdsa_with_sha3_512:
+		ctx->cert->sig->hash_algo = "sha3-512";
+		goto ecdsa;
+
 	case OID_gost2012Signature256:
 		ctx->cert->sig->hash_algo = "streebog256";
 		goto ecrdsa;

From patchwork Sun Oct 22 18:22:07 2023
Content-Type: text/plain; charset="utf-8"
MIME-Version: 1.0
Content-Transfer-Encoding: 7bit
X-Patchwork-Submitter: Dimitri John Ledkov <dimitri.ledkov@canonical.com>
X-Patchwork-Id: 13432042
Return-Path: <keyrings-owner@vger.kernel.org>
X-Spam-Checker-Version: SpamAssassin 3.4.0 (2014-02-07) on
	aws-us-west-2-korg-lkml-1.web.codeaurora.org
Received: from vger.kernel.org (vger.kernel.org [23.128.96.18])
	by smtp.lore.kernel.org (Postfix) with ESMTP id 0982BCDB474
	for <keyrings@archiver.kernel.org>; Sun, 22 Oct 2023 18:23:27 +0000 (UTC)
Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand
        id S232401AbjJVSX1 (ORCPT <rfc822;keyrings@archiver.kernel.org>);
        Sun, 22 Oct 2023 14:23:27 -0400
Received: from lindbergh.monkeyblade.net ([23.128.96.19]:51926 "EHLO
        lindbergh.monkeyblade.net" rhost-flags-OK-OK-OK-OK) by vger.kernel.org
        with ESMTP id S232845AbjJVSXQ (ORCPT
        <rfc822;keyrings@vger.kernel.org>); Sun, 22 Oct 2023 14:23:16 -0400
Received: from smtp-relay-internal-1.canonical.com
 (smtp-relay-internal-1.canonical.com [185.125.188.123])
        by lindbergh.monkeyblade.net (Postfix) with ESMTPS id 1F10AD51
        for <keyrings@vger.kernel.org>; Sun, 22 Oct 2023 11:23:05 -0700 (PDT)
Received: from mail-wm1-f69.google.com (mail-wm1-f69.google.com
 [209.85.128.69])
        (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits)
         key-exchange X25519 server-signature RSA-PSS (2048 bits)
 server-digest SHA256)
        (No client certificate requested)
        by smtp-relay-internal-1.canonical.com (Postfix) with ESMTPS id
 411D53FFEC
        for <keyrings@vger.kernel.org>; Sun, 22 Oct 2023 18:22:54 +0000 (UTC)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=canonical.com;
        s=20210705; t=1697998974;
        bh=IXDb03/nMdyFNBY2tplz4IHYZT3E0MOfqPsaAJS0POs=;
        h=From:To:Cc:Subject:Date:Message-Id:In-Reply-To:References:
         MIME-Version;
        b=gxF/q9dIJmNHEBrPgbc3LQRf/9wzk3C/rYmp49aNNPLJufgV9mGouI2B4caHFCbxR
         gtgln0cHHcTtLdS5/nHwKNMsF/gsEG5pPV85kPUeR2K64Q6kwOz+g0cq/1c5iZ+60f
         qUFC1/GB/1fZcL712M7lKhD1q7GcPQro+WmL0uIe+rHeG9isrEDUgtXBLymqXXSNL0
         2McvVE0xQwW/0qs9eaPhCtSJpoOvcVSZHABlmwpvtQPkOqV7OlltCNx8J03Tc+rER4
         L2vxUtVxc29FcNucMsMn6wsMcoNJNOvQ9Mc0kQujbJR1t2+tID7xxcOlKGHOAPvomv
         YtMnNjTfsXM5g==
Received: by mail-wm1-f69.google.com with SMTP id
 5b1f17b1804b1-4083c9b426fso16331195e9.2
        for <keyrings@vger.kernel.org>; Sun, 22 Oct 2023 11:22:54 -0700 (PDT)
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=1e100.net; s=20230601; t=1697998968; x=1698603768;
        h=content-transfer-encoding:mime-version:references:in-reply-to
         :message-id:date:subject:cc:to:from:x-gm-message-state:from:to:cc
         :subject:date:message-id:reply-to;
        bh=IXDb03/nMdyFNBY2tplz4IHYZT3E0MOfqPsaAJS0POs=;
        b=t4mY15dgUWrp32Qdia92KRMmI/vgb9+29q8PqF6Un9yfpWGqZGYWCn58vLrrM5vG8J
         lwk2I6DTqJ0knTIcAHSPyyEvUK+vsiRGU4hBw/HqnhdDQ2qWpEdKYqL5vElmbSUmyScX
         nnDsu7Hn/3OD6yL4fyJiUwMYSS/vuT7Wr9dGYjw1lqER6eVan0Bd2SoqPjYRJdd3Ucc7
         +0h4AfeFo1P3ImXrnyh0ZDV/oACrCNuyvnDd/zkJajPi0Ba3GiPW9x8BTtKoJP3kjWF7
         aDXyc4o8txuvTH7N+rh+crglmQijPPeROfmmTGtmIv5hse3sJibUkm49DFFrl5WDPWuY
         EIUw==
X-Gm-Message-State: AOJu0YyX5hc4MNTt67L99tz0YN+Uk8lxY0fhy/QqJrkGoO+K0/FfHax9
        /u3aiDtG2Tw9+atBnY2to8GNTsbrViLjd+SDs8vgUiXcpha8RbrEv2QCqzuAHx9JVYbWHtkAlNI
        g6/j4hx2giJ/oXjj6TMGaJ5ldmsxA3nh5KolH
X-Received: by 2002:a5d:560d:0:b0:32d:14a4:ab3 with SMTP id
 l13-20020a5d560d000000b0032d14a40ab3mr5517343wrv.24.1697998967929;
        Sun, 22 Oct 2023 11:22:47 -0700 (PDT)
X-Google-Smtp-Source: 
 AGHT+IE/0bMnZy9mCLBpToURwimakYan3VdjSehyT8XH+oOQxh7REkiQ/VkF0T8NR4g8/MPoJc/nFg==
X-Received: by 2002:a5d:560d:0:b0:32d:14a4:ab3 with SMTP id
 l13-20020a5d560d000000b0032d14a40ab3mr5517338wrv.24.1697998967586;
        Sun, 22 Oct 2023 11:22:47 -0700 (PDT)
Received: from localhost ([2001:67c:1560:8007::aac:c15c])
        by smtp.gmail.com with ESMTPSA id
 b14-20020a5d550e000000b0032d9caeab0fsm6080826wrv.77.2023.10.22.11.22.47
        (version=TLS1_3 cipher=TLS_AES_256_GCM_SHA384 bits=256/256);
        Sun, 22 Oct 2023 11:22:47 -0700 (PDT)
From: Dimitri John Ledkov <dimitri.ledkov@canonical.com>
To: herbert@gondor.apana.org.au, David Howells <dhowells@redhat.com>,
        David Woodhouse <dwmw2@infradead.org>,
        Luis Chamberlain <mcgrof@kernel.org>
Cc: linux-crypto@vger.kernel.org, linux-kernel@vger.kernel.org,
        keyrings@vger.kernel.org, linux-modules@vger.kernel.org
Subject: [PATCH 5/6] crypto: enable automatic module signing with FIPS 202
 SHA-3
Date: Sun, 22 Oct 2023 19:22:07 +0100
Message-Id: <20231022182208.188714-6-dimitri.ledkov@canonical.com>
X-Mailer: git-send-email 2.34.1
In-Reply-To: <20231022182208.188714-1-dimitri.ledkov@canonical.com>
References: <20231022182208.188714-1-dimitri.ledkov@canonical.com>
MIME-Version: 1.0
Precedence: bulk
List-ID: <keyrings.vger.kernel.org>
X-Mailing-List: keyrings@vger.kernel.org

Add Kconfig options to use SHA-3 for kernel module signing. 256 size
for RSA only, and higher sizes for RSA and NIST P-384.

Signed-off-by: Dimitri John Ledkov <dimitri.ledkov@canonical.com>
---
 certs/Kconfig         |  2 +-
 kernel/module/Kconfig | 15 +++++++++++++++
 2 files changed, 16 insertions(+), 1 deletion(-)

diff --git a/certs/Kconfig b/certs/Kconfig
index 84582de66b..69d192a32d 100644
--- a/certs/Kconfig
+++ b/certs/Kconfig
@@ -30,7 +30,7 @@ config MODULE_SIG_KEY_TYPE_RSA
 config MODULE_SIG_KEY_TYPE_ECDSA
 	bool "ECDSA"
 	select CRYPTO_ECDSA
-	depends on MODULE_SIG_SHA384 || MODULE_SIG_SHA512
+	depends on !(MODULE_SIG_SHA256 || MODULE_SIG_SHA3_256)
 	help
 	 Use an elliptic curve key (NIST P384) for module signing. Use
 	 a strong hash of same or higher bit length, i.e. sha384 or
diff --git a/kernel/module/Kconfig b/kernel/module/Kconfig
index 9d7d45525f..0ea1b2970a 100644
--- a/kernel/module/Kconfig
+++ b/kernel/module/Kconfig
@@ -248,6 +248,18 @@ config MODULE_SIG_SHA512
 	bool "Sign modules with SHA-512"
 	select CRYPTO_SHA512
 
+config MODULE_SIG_SHA3_256
+	bool "Sign modules with SHA3-256"
+	select CRYPTO_SHA3
+
+config MODULE_SIG_SHA3_384
+	bool "Sign modules with SHA3-384"
+	select CRYPTO_SHA3
+
+config MODULE_SIG_SHA3_512
+	bool "Sign modules with SHA3-512"
+	select CRYPTO_SHA3
+
 endchoice
 
 config MODULE_SIG_HASH
@@ -256,6 +268,9 @@ config MODULE_SIG_HASH
 	default "sha256" if MODULE_SIG_SHA256
 	default "sha384" if MODULE_SIG_SHA384
 	default "sha512" if MODULE_SIG_SHA512
+	default "sha3-256" if MODULE_SIG_SHA3_256
+	default "sha3-384" if MODULE_SIG_SHA3_384
+	default "sha3-512" if MODULE_SIG_SHA3_512
 
 choice
 	prompt "Module compression mode"

From patchwork Sun Oct 22 18:22:08 2023
Content-Type: text/plain; charset="utf-8"
MIME-Version: 1.0
Content-Transfer-Encoding: 7bit
X-Patchwork-Submitter: Dimitri John Ledkov <dimitri.ledkov@canonical.com>
X-Patchwork-Id: 13432043
Return-Path: <keyrings-owner@vger.kernel.org>
X-Spam-Checker-Version: SpamAssassin 3.4.0 (2014-02-07) on
	aws-us-west-2-korg-lkml-1.web.codeaurora.org
Received: from vger.kernel.org (vger.kernel.org [23.128.96.18])
	by smtp.lore.kernel.org (Postfix) with ESMTP id 886D7C00A8F
	for <keyrings@archiver.kernel.org>; Sun, 22 Oct 2023 18:23:27 +0000 (UTC)
Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand
        id S232817AbjJVSX1 (ORCPT <rfc822;keyrings@archiver.kernel.org>);
        Sun, 22 Oct 2023 14:23:27 -0400
Received: from lindbergh.monkeyblade.net ([23.128.96.19]:59260 "EHLO
        lindbergh.monkeyblade.net" rhost-flags-OK-OK-OK-OK) by vger.kernel.org
        with ESMTP id S232642AbjJVSXT (ORCPT
        <rfc822;keyrings@vger.kernel.org>); Sun, 22 Oct 2023 14:23:19 -0400
Received: from smtp-relay-internal-1.canonical.com
 (smtp-relay-internal-1.canonical.com [185.125.188.123])
        by lindbergh.monkeyblade.net (Postfix) with ESMTPS id 2CCC2D68
        for <keyrings@vger.kernel.org>; Sun, 22 Oct 2023 11:23:05 -0700 (PDT)
Received: from mail-wm1-f72.google.com (mail-wm1-f72.google.com
 [209.85.128.72])
        (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits)
         key-exchange X25519 server-signature RSA-PSS (2048 bits)
 server-digest SHA256)
        (No client certificate requested)
        by smtp-relay-internal-1.canonical.com (Postfix) with ESMTPS id
 84A253F21F
        for <keyrings@vger.kernel.org>; Sun, 22 Oct 2023 18:22:57 +0000 (UTC)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=canonical.com;
        s=20210705; t=1697998977;
        bh=PFQQQyGHvq4Vgum/xnVjVuElfTVJmiceygKugibWkQQ=;
        h=From:To:Cc:Subject:Date:Message-Id:In-Reply-To:References:
         MIME-Version;
        b=a3RT6//ufrepZSLtIsYCV31Ms4uGfbxfMe2AWt0FJkeZP3Ww5nV6IL/QiLxiirFjb
         IjFtOiV4mjAJ1IRHhHeGnuFSgaWe45jPkYhu90XFSBpUQhpWWD1Rbbcv7+2AIBeWXG
         JErGCeJOJvI+kmm9j0JSJ5wsFhwFAw19dncW5stUOM4lBFzBttDI3/7xteDvvPMzN5
         xqfW+RotwzTfZcGBl1GL/rwhdFuOSN2KQ250BAV7kw422itqzlZhvfiRyYOiFfKM5i
         ev3hZuzwVX2lNBrzJxr1eWJjy/WIkQOf7StbGLtBov9PebTPLCcoKSRaOOzDN3uayI
         AG60zlqXafC4w==
Received: by mail-wm1-f72.google.com with SMTP id
 5b1f17b1804b1-408524e2368so12905125e9.0
        for <keyrings@vger.kernel.org>; Sun, 22 Oct 2023 11:22:57 -0700 (PDT)
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=1e100.net; s=20230601; t=1697998971; x=1698603771;
        h=content-transfer-encoding:mime-version:references:in-reply-to
         :message-id:date:subject:cc:to:from:x-gm-message-state:from:to:cc
         :subject:date:message-id:reply-to;
        bh=PFQQQyGHvq4Vgum/xnVjVuElfTVJmiceygKugibWkQQ=;
        b=osDRl863JJg2pqIXN2teNhXOusj/mGYYGm/81btMKEy6AA95bVKrS5sSwZeZYYUAOw
         Izwv2Xu0zECNSkqQ0MOqsvg6D7eFSZeTEdHsxNJJHakb/BX7xJWuJv9Q5hE7yJww7fs5
         +8rQuDHXmr7HxTZEXg+UAErgpz1u2Ao6RbsY7jKaubwTQdCV7kmLL7xhyJEhSUkHmLIN
         VKN1ZsFwuHyzfY93j3IqzHbWp7pgYaNf43Zpgk+6LEd395e/ePTC1lo8LdDiR4K7bT8l
         BPHOv8+Lpuz49NhshRWBc8QC+qIMgbuluqPvpOErYsoYHFBVN50Mv5aKNvLMnn/GzaSI
         93YA==
X-Gm-Message-State: AOJu0YxPimY6iH8sGFacQJG908ZyftTLjzj6qdmQF5uRrllrp3I3vyLO
        i+7KyVprSVFFgzLhiKD3oy3JOJSJQtvydc/NKhQuzRKCWfA66AOnlpLcE+ufclzO4jTu8MQJxcR
        +VWezdJH4hWVZdDHpB0i1n+SnTBWuYEVx6Dnk
X-Received: by 2002:a05:600c:3d87:b0:405:7b92:4558 with SMTP id
 bi7-20020a05600c3d8700b004057b924558mr5636478wmb.38.1697998971511;
        Sun, 22 Oct 2023 11:22:51 -0700 (PDT)
X-Google-Smtp-Source: 
 AGHT+IEJQIKtMn/SYn1WUGMKRheSfZ+Femytgt+MFX4tUeo2/oPl9EgWulzTC+YwAtcdViA0qd/tCA==
X-Received: by 2002:a05:600c:3d87:b0:405:7b92:4558 with SMTP id
 bi7-20020a05600c3d8700b004057b924558mr5636467wmb.38.1697998971268;
        Sun, 22 Oct 2023 11:22:51 -0700 (PDT)
Received: from localhost ([2001:67c:1560:8007::aac:c15c])
        by smtp.gmail.com with ESMTPSA id
 p12-20020a05600c358c00b00401b242e2e6sm12360739wmq.47.2023.10.22.11.22.50
        (version=TLS1_3 cipher=TLS_AES_256_GCM_SHA384 bits=256/256);
        Sun, 22 Oct 2023 11:22:51 -0700 (PDT)
From: Dimitri John Ledkov <dimitri.ledkov@canonical.com>
To: herbert@gondor.apana.org.au, David Howells <dhowells@redhat.com>,
        David Woodhouse <dwmw2@infradead.org>,
        Jonathan Corbet <corbet@lwn.net>
Cc: linux-crypto@vger.kernel.org, linux-kernel@vger.kernel.org,
        keyrings@vger.kernel.org, linux-doc@vger.kernel.org
Subject: [PATCH 6/6] Documentation/module-signing.txt: bring up to date
Date: Sun, 22 Oct 2023 19:22:08 +0100
Message-Id: <20231022182208.188714-7-dimitri.ledkov@canonical.com>
X-Mailer: git-send-email 2.34.1
In-Reply-To: <20231022182208.188714-1-dimitri.ledkov@canonical.com>
References: <20231022182208.188714-1-dimitri.ledkov@canonical.com>
MIME-Version: 1.0
Precedence: bulk
List-ID: <keyrings.vger.kernel.org>
X-Mailing-List: keyrings@vger.kernel.org

Update the documentation to mention that ECC NIST P-384 automatic
keypair generation is available to use ECDSA signature type, in
addition to the RSA.

Drop mentions of the now removed SHA-1 and SHA-224 options.

Add the just added FIPS 202 SHA-3 module signature hashes.

Signed-off-by: Dimitri John Ledkov <dimitri.ledkov@canonical.com>
---
 Documentation/admin-guide/module-signing.rst | 17 +++++++++++------
 1 file changed, 11 insertions(+), 6 deletions(-)

diff --git a/Documentation/admin-guide/module-signing.rst b/Documentation/admin-guide/module-signing.rst
index 2898b27032..a8667a7774 100644
--- a/Documentation/admin-guide/module-signing.rst
+++ b/Documentation/admin-guide/module-signing.rst
@@ -28,10 +28,10 @@ trusted userspace bits.
 
 This facility uses X.509 ITU-T standard certificates to encode the public keys
 involved.  The signatures are not themselves encoded in any industrial standard
-type.  The facility currently only supports the RSA public key encryption
-standard (though it is pluggable and permits others to be used).  The possible
-hash algorithms that can be used are SHA-1, SHA-224, SHA-256, SHA-384, and
-SHA-512 (the algorithm is selected by data in the signature).
+type.  The built-in facility currently only supports the RSA & NIST P-384 ECDSA
+public key signing standard (though it is pluggable and permits others to be
+used).  The possible hash algorithms that can be used are SHA-2 and SHA-3 of
+sizes 256, 384, and 512 (the algorithm is selected by data in the signature).
 
 
 ==========================
@@ -81,11 +81,12 @@ This has a number of options available:
      sign the modules with:
 
         =============================== ==========================================
-	``CONFIG_MODULE_SIG_SHA1``	:menuselection:`Sign modules with SHA-1`
-	``CONFIG_MODULE_SIG_SHA224``	:menuselection:`Sign modules with SHA-224`
 	``CONFIG_MODULE_SIG_SHA256``	:menuselection:`Sign modules with SHA-256`
 	``CONFIG_MODULE_SIG_SHA384``	:menuselection:`Sign modules with SHA-384`
 	``CONFIG_MODULE_SIG_SHA512``	:menuselection:`Sign modules with SHA-512`
+	``CONFIG_MODULE_SIG_SHA3_256``	:menuselection:`Sign modules with SHA3-256`
+	``CONFIG_MODULE_SIG_SHA3_384``	:menuselection:`Sign modules with SHA3-384`
+	``CONFIG_MODULE_SIG_SHA3_512``	:menuselection:`Sign modules with SHA3-512`
         =============================== ==========================================
 
      The algorithm selected here will also be built into the kernel (rather
@@ -145,6 +146,10 @@ into vmlinux) using parameters in the::
 
 file (which is also generated if it does not already exist).
 
+One can select between RSA (``MODULE_SIG_KEY_TYPE_RSA``) and ECDSA
+(``MODULE_SIG_KEY_TYPE_ECDSA``) to generate either RSA 4k or NIST
+P-384 keypair.
+
 It is strongly recommended that you provide your own x509.genkey file.
 
 Most notably, in the x509.genkey file, the req_distinguished_name section