MODSIGN: Provide Kconfig options
authorDavid Howells <dhowells@redhat.com>
Wed, 26 Sep 2012 09:09:50 +0000 (10:09 +0100)
committerRusty Russell <rusty@rustcorp.com.au>
Wed, 10 Oct 2012 09:31:20 +0000 (19:31 +1030)
commitea0b6dcf71d216dc11733ac19b26df0f5d0fd6c2
tree2b48610cfa37c0f736ab7e019b0370861f59f93a
parentaddbcdbbf549c9127c2bbb39caaa08bb47b996f4
MODSIGN: Provide Kconfig options

Provide kernel configuration options for module signing.

The following configuration options are added:

     CONFIG_MODULE_SIG_SHA1
     CONFIG_MODULE_SIG_SHA224
     CONFIG_MODULE_SIG_SHA256
     CONFIG_MODULE_SIG_SHA384
     CONFIG_MODULE_SIG_SHA512

These select the cryptographic hash used to digest the data prior to signing.
Additionally, the crypto module selected will be built into the kernel as it
won't be possible to load it as a module without incurring a circular
dependency when the kernel tries to check its signature.

Signed-off-by: David Howells <dhowells@redhat.com>
Signed-off-by: Rusty Russell <rusty@rustcorp.com.au>
init/Kconfig