* [Query] RSA SHA-384 signature verification
@ 2020-06-15 17:04 Anshuman Gupta
2020-06-15 19:25 ` Stephan Mueller
0 siblings, 1 reply; 5+ messages in thread
From: Anshuman Gupta @ 2020-06-15 17:04 UTC (permalink / raw)
To: linux-crypto; +Cc: anshuman.gupta
Hi ,
I wanted to verify a RSA SHA-384 signature.
I am using crypto_alloc_shash(), crypto_shash_digest() API to extract
the SHA-384 digest.
I am having public key along with the sha-384 digest extracted from raw data and signature.
AFAIU understand from crypto documentation that i need to verify the
signature by importing public key to akcipher/skcipher API.
Here i am not sure which cipher API to prefer symmetric key cipher or asymmetric key
cipher API.
There are two types of API to import the key.
crypto_skcipher_setkey()
crypto_akcipher_set_pub_key()
Also i am not sure exactly which algo to use for RSA-SHA384 signature
verification.
Any help or inputs from crypto community will highly appreciated.
Thanks ,
Anshuman Gupta.
^ permalink raw reply [flat|nested] 5+ messages in thread
* Re: [Query] RSA SHA-384 signature verification
2020-06-15 17:04 [Query] RSA SHA-384 signature verification Anshuman Gupta
@ 2020-06-15 19:25 ` Stephan Mueller
2020-06-16 3:56 ` Anshuman Gupta
0 siblings, 1 reply; 5+ messages in thread
From: Stephan Mueller @ 2020-06-15 19:25 UTC (permalink / raw)
To: Anshuman Gupta; +Cc: linux-crypto
Am Montag, 15. Juni 2020, 19:04:14 CEST schrieb Anshuman Gupta:
Hi Anshuman,
> Hi ,
> I wanted to verify a RSA SHA-384 signature.
> I am using crypto_alloc_shash(), crypto_shash_digest() API to extract
> the SHA-384 digest.
> I am having public key along with the sha-384 digest extracted from raw data
> and signature. AFAIU understand from crypto documentation that i need to
> verify the signature by importing public key to akcipher/skcipher API.
> Here i am not sure which cipher API to prefer symmetric key cipher or
> asymmetric key cipher API.
>
> There are two types of API to import the key.
> crypto_skcipher_setkey()
> crypto_akcipher_set_pub_key()
>
> Also i am not sure exactly which algo to use for RSA-SHA384 signature
> verification.
>
> Any help or inputs from crypto community will highly appreciated.
akcipher: asymmetric key crypto
skcipher: symmetric key crypto
>
> Thanks ,
> Anshuman Gupta.
Ciao
Stephan
^ permalink raw reply [flat|nested] 5+ messages in thread
* Re: [Query] RSA SHA-384 signature verification
2020-06-15 19:25 ` Stephan Mueller
@ 2020-06-16 3:56 ` Anshuman Gupta
2020-06-16 5:03 ` Stephan Mueller
0 siblings, 1 reply; 5+ messages in thread
From: Anshuman Gupta @ 2020-06-16 3:56 UTC (permalink / raw)
To: Stephan Mueller; +Cc: linux-crypto
On 2020-06-15 at 21:25:58 +0200, Stephan Mueller wrote:
> Am Montag, 15. Juni 2020, 19:04:14 CEST schrieb Anshuman Gupta:
>
> Hi Anshuman,
>
> > Hi ,
> > I wanted to verify a RSA SHA-384 signature.
> > I am using crypto_alloc_shash(), crypto_shash_digest() API to extract
> > the SHA-384 digest.
> > I am having public key along with the sha-384 digest extracted from raw data
> > and signature. AFAIU understand from crypto documentation that i need to
> > verify the signature by importing public key to akcipher/skcipher API.
> > Here i am not sure which cipher API to prefer symmetric key cipher or
> > asymmetric key cipher API.
> >
> > There are two types of API to import the key.
> > crypto_skcipher_setkey()
> > crypto_akcipher_set_pub_key()
> >
> > Also i am not sure exactly which algo to use for RSA-SHA384 signature
> > verification.
> >
> > Any help or inputs from crypto community will highly appreciated.
>
> akcipher: asymmetric key crypto
>
> skcipher: symmetric key crypto
Many thanks for your input, based upon your inputs i should use
akcipher.
Actually tried to grep crypto_akcipher_set_pub_key() but there are not any
usages of this API in Linux drivers.
What is the preferred method to verify a RSA signature inside any Linux
GPL driver, is there any standard interface API to verify RSA signature
by importing input of raw data and public key or else
it is recommended method to use below set low level of API
crypto_alloc_akcipher(), akcipher_request_alloc(),
akcipher_request_set_crypt(), crypto_akcipher_verify().
Thanks,
Anshuman.
> >
> > Thanks ,
> > Anshuman Gupta.
>
>
> Ciao
> Stephan
>
>
^ permalink raw reply [flat|nested] 5+ messages in thread
* Re: [Query] RSA SHA-384 signature verification
2020-06-16 3:56 ` Anshuman Gupta
@ 2020-06-16 5:03 ` Stephan Mueller
2020-06-17 10:09 ` Anshuman Gupta
0 siblings, 1 reply; 5+ messages in thread
From: Stephan Mueller @ 2020-06-16 5:03 UTC (permalink / raw)
To: Anshuman Gupta; +Cc: linux-crypto
Am Dienstag, 16. Juni 2020, 05:56:04 CEST schrieb Anshuman Gupta:
Hi Anshuman,
> On 2020-06-15 at 21:25:58 +0200, Stephan Mueller wrote:
> > Am Montag, 15. Juni 2020, 19:04:14 CEST schrieb Anshuman Gupta:
> >
> > Hi Anshuman,
> >
> > > Hi ,
> > > I wanted to verify a RSA SHA-384 signature.
> > > I am using crypto_alloc_shash(), crypto_shash_digest() API to extract
> > > the SHA-384 digest.
> > > I am having public key along with the sha-384 digest extracted from raw
> > > data and signature. AFAIU understand from crypto documentation that i
> > > need to verify the signature by importing public key to
> > > akcipher/skcipher API. Here i am not sure which cipher API to prefer
> > > symmetric key cipher or asymmetric key cipher API.
> > >
> > > There are two types of API to import the key.
> > > crypto_skcipher_setkey()
> > > crypto_akcipher_set_pub_key()
> > >
> > > Also i am not sure exactly which algo to use for RSA-SHA384 signature
> > > verification.
> > >
> > > Any help or inputs from crypto community will highly appreciated.
> >
> > akcipher: asymmetric key crypto
> >
> > skcipher: symmetric key crypto
>
> Many thanks for your input, based upon your inputs i should use
> akcipher.
> Actually tried to grep crypto_akcipher_set_pub_key() but there are not any
> usages of this API in Linux drivers.
> What is the preferred method to verify a RSA signature inside any Linux
> GPL driver, is there any standard interface API to verify RSA signature
> by importing input of raw data and public key or else
> it is recommended method to use below set low level of API
> crypto_alloc_akcipher(), akcipher_request_alloc(),
> akcipher_request_set_crypt(), crypto_akcipher_verify().
You can use that API directly or you can go through the intermediary of the
crypto/asymmetric_keys API. One use case is the kernel signature verification
as implemented in kernel/module_signing.c
> Thanks,
> Anshuman.
>
> > > Thanks ,
> > > Anshuman Gupta.
> >
> > Ciao
> > Stephan
Ciao
Stephan
^ permalink raw reply [flat|nested] 5+ messages in thread
* Re: [Query] RSA SHA-384 signature verification
2020-06-16 5:03 ` Stephan Mueller
@ 2020-06-17 10:09 ` Anshuman Gupta
0 siblings, 0 replies; 5+ messages in thread
From: Anshuman Gupta @ 2020-06-17 10:09 UTC (permalink / raw)
To: Stephan Mueller; +Cc: linux-crypto
On 2020-06-16 at 07:03:28 +0200, Stephan Mueller wrote:
> Am Dienstag, 16. Juni 2020, 05:56:04 CEST schrieb Anshuman Gupta:
>
> Hi Anshuman,
>
> > On 2020-06-15 at 21:25:58 +0200, Stephan Mueller wrote:
> > > Am Montag, 15. Juni 2020, 19:04:14 CEST schrieb Anshuman Gupta:
> > >
> > > Hi Anshuman,
> > >
> > > > Hi ,
> > > > I wanted to verify a RSA SHA-384 signature.
> > > > I am using crypto_alloc_shash(), crypto_shash_digest() API to extract
> > > > the SHA-384 digest.
> > > > I am having public key along with the sha-384 digest extracted from raw
> > > > data and signature. AFAIU understand from crypto documentation that i
> > > > need to verify the signature by importing public key to
> > > > akcipher/skcipher API. Here i am not sure which cipher API to prefer
> > > > symmetric key cipher or asymmetric key cipher API.
> > > >
> > > > There are two types of API to import the key.
> > > > crypto_skcipher_setkey()
> > > > crypto_akcipher_set_pub_key()
> > > >
> > > > Also i am not sure exactly which algo to use for RSA-SHA384 signature
> > > > verification.
> > > >
> > > > Any help or inputs from crypto community will highly appreciated.
> > >
> > > akcipher: asymmetric key crypto
> > >
> > > skcipher: symmetric key crypto
> >
> > Many thanks for your input, based upon your inputs i should use
> > akcipher.
> > Actually tried to grep crypto_akcipher_set_pub_key() but there are not any
> > usages of this API in Linux drivers.
> > What is the preferred method to verify a RSA signature inside any Linux
> > GPL driver, is there any standard interface API to verify RSA signature
> > by importing input of raw data and public key or else
> > it is recommended method to use below set low level of API
> > crypto_alloc_akcipher(), akcipher_request_alloc(),
> > akcipher_request_set_crypt(), crypto_akcipher_verify().
>
> You can use that API directly or you can go through the intermediary of the
> crypto/asymmetric_keys API. One use case is the kernel signature verification
> as implemented in kernel/module_signing.c
Thanks Stephan :)
>
> > Thanks,
> > Anshuman.
> >
> > > > Thanks ,
> > > > Anshuman Gupta.
> > >
> > > Ciao
> > > Stephan
>
>
> Ciao
> Stephan
>
>
^ permalink raw reply [flat|nested] 5+ messages in thread
end of thread, other threads:[~2020-06-17 10:19 UTC | newest]
Thread overview: 5+ messages (download: mbox.gz / follow: Atom feed)
-- links below jump to the message on this page --
2020-06-15 17:04 [Query] RSA SHA-384 signature verification Anshuman Gupta
2020-06-15 19:25 ` Stephan Mueller
2020-06-16 3:56 ` Anshuman Gupta
2020-06-16 5:03 ` Stephan Mueller
2020-06-17 10:09 ` Anshuman Gupta
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for NNTP newsgroup(s).