pefile: Parse a PE binary to find a key and a signature contained therein

Parse a PE binary to find a key and a signature contained therein. Later patches will check the signature and add the key if the signature checks out. Signed-off-by: David Howells <dhowells@redhat.com> Acked-by: Vivek Goyal <vgoyal@redhat.com> Reviewed-by: Kees Cook <keescook@chromium.org>
author: David Howells <dhowells@redhat.com> 2014-07-01 16:02:51 +0100
committer: David Howells <dhowells@redhat.com> 2014-07-09 14:58:37 +0100
commit: 26d1164be37f1145a96af15f294122876d8e5c77 (patch)
tree: 3cf981b54d3a275710d840c3674e09271c00c36d /crypto/asymmetric_keys/Kconfig
parent: 9c87e0f10e281f782312e7b6aa202f2d434c84bf (diff)
1 files changed, 9 insertions, 0 deletions
diff --git a/crypto/asymmetric_keys/Kconfig b/crypto/asymmetric_keys/Kconfig
index 14cac2860afa..ca41be5631c7 100644
--- a/crypto/asymmetric_keys/Kconfig
+++ b/crypto/asymmetric_keys/Kconfig
@@ -59,4 +59,13 @@ config PKCS7_TEST_KEY
 
 	  This is intended for testing the PKCS#7 parser.
 
+config SIGNED_PE_FILE_VERIFICATION
+	bool "Support for PE file signature verification"
+	depends on PKCS7_MESSAGE_PARSER=y
+	select ASN1
+	select OID_REGISTRY
+	help
+	  This option provides support for verifying the signature(s) on a
+	  signed PE binary.
+
 endif # ASYMMETRIC_KEY_TYPE
author	David Howells <dhowells@redhat.com>	2014-07-01 16:02:51 +0100
committer	David Howells <dhowells@redhat.com>	2014-07-09 14:58:37 +0100
commit	26d1164be37f1145a96af15f294122876d8e5c77 (patch)
tree	3cf981b54d3a275710d840c3674e09271c00c36d /crypto/asymmetric_keys/Kconfig
parent	9c87e0f10e281f782312e7b6aa202f2d434c84bf (diff)