15647eb398
This patch adds support for digital signature verification to EVM. With this feature file metadata can be protected using digital signature instead of an HMAC. When building an image, which has to be flashed to different devices, an HMAC cannot be used to sign file metadata, because the HMAC key should be different on every device. Signed-off-by: Dmitry Kasatkin <dmitry.kasatkin@intel.com> Acked-by: Mimi Zohar <zohar@us.ibm.com> |
||
|---|---|---|
| .. | ||
| evm | ||
| ima | ||
| digsig.c | ||
| iint.c | ||
| integrity.h | ||
| Kconfig | ||
| Makefile | ||