KEYS: asymmetric: Fix ECDSA use via keyctl uapi - linux

diff options

author	Denis Kenzior <denkenz@gmail.com>	2022-08-26 16:51:19 +0200
committer	Jarkko Sakkinen <jarkko@kernel.org>	2023-02-13 09:11:20 +0100
commit	10de7b54293995368c52d9aa153f3e7a359f04a1 (patch)
tree	b93a672b3acc4afe73d3990378efe17a46ebe543 /Documentation/filesystems/ntfs.rst
parent	certs: don't try to update blacklist keys (diff)
download	linux-10de7b54293995368c52d9aa153f3e7a359f04a1.tar.xz linux-10de7b54293995368c52d9aa153f3e7a359f04a1.zip

KEYS: asymmetric: Fix ECDSA use via keyctl uapi

When support for ECDSA keys was added, constraints for data & signature sizes were never updated. This makes it impossible to use such keys via keyctl API from userspace. Update constraint on max_data_size to 64 bytes in order to support SHA512-based signatures. Also update the signature length constraints per ECDSA signature encoding described in RFC 5480. Fixes: 299f561a6693 ("x509: Add support for parsing x509 certs with ECDSA keys") Signed-off-by: Denis Kenzior <denkenz@gmail.com> Reviewed-by: Stefan Berger <stefanb@linux.ibm.com> Reviewed-by: Jarkko Sakkinen <jarkko@kernel.org> Signed-off-by: Jarkko Sakkinen <jarkko@kernel.org>

Diffstat (limited to 'Documentation/filesystems/ntfs.rst')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: