From patchwork Wed Sep 20 16:09:30 2023 Content-Type: text/plain; charset="utf-8" MIME-Version: 1.0 Content-Transfer-Encoding: 7bit X-Patchwork-Submitter: "Fong, Amy" X-Patchwork-Id: 1837344 X-Patchwork-Delegate: sbabic@denx.de Return-Path: X-Original-To: incoming@patchwork.ozlabs.org Delivered-To: patchwork-incoming@legolas.ozlabs.org Authentication-Results: legolas.ozlabs.org; dkim=pass (2048-bit key; unprotected) header.d=googlegroups.com header.i=@googlegroups.com header.a=rsa-sha256 header.s=20230601 header.b=ehOvCVnc; dkim-atps=neutral Authentication-Results: legolas.ozlabs.org; spf=pass (sender SPF authorized) smtp.mailfrom=googlegroups.com (client-ip=2a00:1450:4864:20::637; helo=mail-ej1-x637.google.com; envelope-from=swupdate+bncbaabbpvsvsuamgqe7kgfmla@googlegroups.com; receiver=patchwork.ozlabs.org) Received: from mail-ej1-x637.google.com (mail-ej1-x637.google.com [IPv6:2a00:1450:4864:20::637]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature ECDSA (secp384r1) server-digest SHA384) (No client certificate requested) by legolas.ozlabs.org (Postfix) with ESMTPS id 4RrNlX0mcpz1yhR for ; Thu, 21 Sep 2023 02:09:42 +1000 (AEST) Received: by mail-ej1-x637.google.com with SMTP id a640c23a62f3a-9a9e12a3093sf21252466b.0 for ; Wed, 20 Sep 2023 09:09:42 -0700 (PDT) ARC-Seal: i=3; a=rsa-sha256; t=1695226176; cv=pass; d=google.com; s=arc-20160816; b=O2VPvjaqHROnORNToa/mL4gF9VrDHor5eIVDQhj5HAXhEQ6PxuGgwDdfiSYln/iDNR MowQpv6BzMMeGNSl/CF11/y53SmA8fjegXX9EAdq+FirIpXLq2Mpv2r1gstrql93WEim 67KLOKgabT1AytKA7tj37PeeG/AZl6yqjRPi+wqQjxoORNbaeO9T4Gijujub6C/vhqB9 s0cUsl5MmgEy4mwAlCDY3z6XB/HcKxwRX97efahYVkuQkbtFFxnpOZq5x5NP1pAgWaQL ScaMKngrc/3+2HRmE8HTGu2zXo62bFjROS+RaCC1BkAwMbJsOyok86GkDObTssxnIqP7 mx3A== ARC-Message-Signature: i=3; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=list-unsubscribe:list-subscribe:list-archive:list-help:list-post :list-id:mailing-list:precedence:reply-to:mime-version:msip_labels :content-language:accept-language:message-id:date:thread-index :thread-topic:subject:cc:to:from:dkim-signature; bh=FBjr5lPrURFu+XuEj/pxd5aZ+NitU1S2em3tzZwG0SA=; fh=Nk0lAq2hyDDiTbTMXRaJZuFWTIrI0OtvEf+ksjHtucY=; b=juh6jBdyJse5i++9y2ZhtcAG8TdwzJKmgSvO2YKm3SmJwbRP+XoP/k7zfOp5yv1YQ/ Rv4UyeG6y+bvObNiqIu+ekjIK7mcO9SCESTlGjxHkAmQSPVxW5Jpl52lbMJevAhBOl5X aGhDZewRyITJlApQz6Aouoe7j59yQT50dMcIBpjVs0FDAkpX0BfdvsTSxDvxjtxARQXf kOWfIWrFqPIjbRg5HWX7CRZI0VT7XE33iHGHKrhIn1kFoULCc0teVBRPrSu1Pk6J2wEu Bo2rBgSZdDy/C/pX6ib/ycdjKfXfpb3ICi6fruH3RVFtsWYxdLyIulveSzW8vNNlBVTy xj6g== ARC-Authentication-Results: i=3; gmr-mx.google.com; dkim=pass header.i=@siemens.com header.s=selector2 header.b=eLGZkR9K; arc=pass (i=1 spf=pass spfdomain=siemens.com dkim=pass dkdomain=siemens.com dmarc=pass fromdomain=siemens.com); spf=pass (google.com: domain of amy.fong@siemens.com designates 2a01:111:f400:7eaa::60f as permitted sender) smtp.mailfrom=amy.fong@siemens.com; dmarc=pass (p=REJECT sp=REJECT dis=NONE) header.from=siemens.com DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=googlegroups.com; s=20230601; t=1695226176; x=1695830976; darn=patchwork.ozlabs.org; h=list-unsubscribe:list-subscribe:list-archive:list-help:list-post :list-id:mailing-list:precedence:reply-to :x-original-authentication-results:x-original-sender:mime-version :msip_labels:content-language:accept-language:message-id:date :thread-index:thread-topic:subject:cc:to:from:from:to:cc:subject :date:message-id:reply-to; bh=FBjr5lPrURFu+XuEj/pxd5aZ+NitU1S2em3tzZwG0SA=; b=ehOvCVnceOWvsJq5lXj/EQFItYZCow+tqdJxHLj9a0TkJ1TCoEpH9akpohfwLOiVNQ K/aN6/0/O773kRf9zCkO2OIOqZczir8j24q+Yo3wQ2ETDzwmtOxeE+GSBoes8IST3bRW uydIsglroI/L690yCtZ/24do7jO/P4nNnp3Y7BQhJcyqfZINueZGk2TMMPJi/4QzBzob rFs8l4TqyooMdIJCNtJDdhkmc01ShgAmIPsi8R9l3nphZMft78HLKiKydXtP7+8q/MCA esCdn4v2rzafyn8L0BfctZ9dvdRNqTRZu0yYGlODtCg1r0ECMbt12bzwdHv5vDz2aZUA 02fA== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20230601; t=1695226176; x=1695830976; h=list-unsubscribe:list-subscribe:list-archive:list-help:list-post :x-spam-checked-in-group:list-id:mailing-list:precedence:reply-to :x-original-authentication-results:x-original-sender:mime-version :msip_labels:content-language:accept-language:message-id:date :thread-index:thread-topic:subject:cc:to:from:x-beenthere :x-gm-message-state:from:to:cc:subject:date:message-id:reply-to; bh=FBjr5lPrURFu+XuEj/pxd5aZ+NitU1S2em3tzZwG0SA=; b=FnI75a56ZBhd976U43cxtS1xGzVc8H/HI++C5dErfQlGAXN/gq65mcng75DeisIDEn vWeW9W6Jq0tUOv3+NxOOBNC2XJsN2DIwnvVEy4/MmNuYhvfkOq/vpoE0rhsf3tbINthf BhUrB2Vlic4BLoi8KU7Dqhg1jRmsDF8okYrf4wpmALFMF0u3MsY9HrqH99PEKYfw6vrU HOvqZSRG+qol4t88ncabPIF/DKGMSPs5AZjT9fapyWZx2xTqcAz225VeYFt03CDcsSaJ 2jZgk438W1skGJjuhJ3PwPVcdsArxupbka/jeTHN7qglF7pY3rgO8bGtkYJJ/PQmeu2W Jz6w== X-Gm-Message-State: AOJu0YxSu5gorR6fBzajlOKVYNBpi+7lmAXPBT5eb7gU52bCHf/W61PH nptBlsyUupcywjfhiwociPc= X-Google-Smtp-Source: AGHT+IG4UJjhgef5YY5EGT3SMjV0avdZ/8JwacobGJfBtrk3YeepNppWaWqEu8On9km3BsZbYOgLfg== X-Received: by 2002:a17:907:72d1:b0:9a9:9d19:b250 with SMTP id du17-20020a17090772d100b009a99d19b250mr8611963ejc.17.1695226175365; Wed, 20 Sep 2023 09:09:35 -0700 (PDT) X-BeenThere: swupdate@googlegroups.com Received: by 2002:a05:6402:2078:b0:530:eb75:8932 with SMTP id bd24-20020a056402207800b00530eb758932ls611689edb.2.-pod-prod-00-eu; Wed, 20 Sep 2023 09:09:33 -0700 (PDT) X-Received: by 2002:aa7:d514:0:b0:522:d801:7d07 with SMTP id y20-20020aa7d514000000b00522d8017d07mr4059695edq.10.1695226173441; Wed, 20 Sep 2023 09:09:33 -0700 (PDT) ARC-Seal: i=2; a=rsa-sha256; t=1695226173; cv=pass; d=google.com; s=arc-20160816; b=ccSehSi0sY3kCB98XDgwdLSRwrw8mD5kaJDWF32WFgfG1ZP4y14pHYd34kzS/V86UF GhWyD7e8i6C64QsNEO7BtIum25kHXrIPIFydstx4kNwD/Axpm4ml/S7G94ttFXzbaEsb 4Tx9D2DsR3lJPCWXJJ306C9fepTWYpbVYn0B9fbH0awlGQX9845oC1JXGpxCtpLVmXUn WCELKwokUYMLRg5YoyNOsOQVV9ADzIBMUb3TKn3ftuimrQ3zpFIFVAbzNqwhMOIIEOeQ bnmW2vpUAM3zdOK3Dc/Dp1Iq+8i9y9mXpsbTXxzPa57uNxhASTWlXDPEZl1sco+NxZ3f 8N2w== ARC-Message-Signature: i=2; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=mime-version:msip_labels:content-language:accept-language :message-id:date:thread-index:thread-topic:subject:cc:to:from :dkim-signature; bh=syqma4B3RCq5Y8usEPvsdstuT/FUa3Irtp8yHI28lYw=; fh=Nk0lAq2hyDDiTbTMXRaJZuFWTIrI0OtvEf+ksjHtucY=; b=TgvKZIJ/EDmNt4OYwAuTdm/Wej/zHXOWVK25AWIiMxrDHrK3nYBv+cI6YyojlT6DSM 1EXBJTggEcIa9fUgf/GVSJ64Y3bpWEx4sa+UlULxKvUtAlM7Qud9Lc32tAoSCljUjB/M f57bpmwkAlpHLhTC55U5Y7Is3Qorr2vneMSSzC75jtM/1thpAk0E3GC2BRsuaYnxG+lj +G6M3qxUnSLaeA1z5lBxIrmFPsIkEOPlbTj8UmqzJYcVwHBfBSn+AdpUAw+XRBWqfMlx +VDWcVZADvRXrEJ8vAwtnD1Q+JLsLx8fs4MpG+Qtq14HHrj91TUQ62VdDl4Q2fU9QkJ2 ZfUg== ARC-Authentication-Results: i=2; gmr-mx.google.com; dkim=pass header.i=@siemens.com header.s=selector2 header.b=eLGZkR9K; arc=pass (i=1 spf=pass spfdomain=siemens.com dkim=pass dkdomain=siemens.com dmarc=pass fromdomain=siemens.com); spf=pass (google.com: domain of amy.fong@siemens.com designates 2a01:111:f400:7eaa::60f as permitted sender) smtp.mailfrom=amy.fong@siemens.com; dmarc=pass (p=REJECT sp=REJECT dis=NONE) header.from=siemens.com Received: from NAM11-DM6-obe.outbound.protection.outlook.com (mail-dm6nam11on2060f.outbound.protection.outlook.com. [2a01:111:f400:7eaa::60f]) by gmr-mx.google.com with ESMTPS id b12-20020a056402278c00b00530a359f2f4si765500ede.4.2023.09.20.09.09.33 for (version=TLS1_2 cipher=ECDHE-ECDSA-AES128-GCM-SHA256 bits=128/128); Wed, 20 Sep 2023 09:09:33 -0700 (PDT) Received-SPF: pass (google.com: domain of amy.fong@siemens.com designates 2a01:111:f400:7eaa::60f as permitted sender) client-ip=2a01:111:f400:7eaa::60f; ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=M84VFk4nN9u/JT4gYtG0/dc2dbKZgLO/1fSJw2iOBWNFgMsK/tItqlT8LoxHdM34WolQ5yATD9nl+GeIbNV5rSQ+bbdxNVCfu7yWnENfAwoN2aG0tq2rGQTeYOU1XtRcZV5ATMHaZAxCCEh7V6LoH20wrf9JdL+MHOONRuSZQH67IAEX956Q6gqnrOS/iC3ZVv2Z0OAjUUQ9B0Bqruv8X1szJgBcoG5qYqdf/q9xsakG9RHnjWGy/yVLngH6yWuO/3JbVNJmVS2VNwMMNcLY2JsSGF4H5nc8gDYyh9p5oZctHdK2NaF13voH3g3Rm5NpVke+ZFXwlN+Cnlb1yxz0gw== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=syqma4B3RCq5Y8usEPvsdstuT/FUa3Irtp8yHI28lYw=; b=KZmBpsp6o/yoKHbMOlztdppaCCjfnmV62vsW0AfkbY8DBRsKhvtQy2nZPRB3cqbYBeQ8LMcd0Ydh0peVAyjvInJe5aa1uIIqMXAwzEMm70K4Zkcmdi+Ytk8NR7/iv7WL4ok8SohYEXL/XDs1UaPt08Qs771mRGUFZ74tEIpgSdS7rEIDxXs0Xj/IAFs/JR+T/PZK21QufXFGgsATJS5M+j2s8JAkiKsEEdivHGia38ebt1+cKJVL/dgRHBV8VA/PSwj6IsfYZA0bdtjWs8WjZlgFiCJqBG0jR/InEA1nfDhUdMiqtZhopHqSz2Im2LEpX+7uBR5ctDGEJIY4jGRiOQ== ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=siemens.com; dmarc=pass action=none header.from=siemens.com; dkim=pass header.d=siemens.com; arc=none Received: from DM6PR07MB6377.namprd07.prod.outlook.com (2603:10b6:5:17e::32) by DS7PR07MB8319.namprd07.prod.outlook.com (2603:10b6:5:3a3::18) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.6838.9; Wed, 20 Sep 2023 16:09:31 +0000 Received: from DM6PR07MB6377.namprd07.prod.outlook.com ([fe80::7378:a435:4191:16d8]) by DM6PR07MB6377.namprd07.prod.outlook.com ([fe80::7378:a435:4191:16d8%7]) with mapi id 15.20.6838.009; Wed, 20 Sep 2023 16:09:30 +0000 X-Patchwork-Original-From: "'Fong, Amy' via swupdate" From: "Fong, Amy" To: "swupdate@googlegroups.com" CC: "Fong, Amy" Subject: [swupdate] [PATCH 1/1] Add support for gpg signing Thread-Topic: [PATCH 1/1] Add support for gpg signing Thread-Index: AQHZ69xzpuiL1yRZfEGTGQM9F/NqUg== Date: Wed, 20 Sep 2023 16:09:30 +0000 Message-ID: Accept-Language: en-US Content-Language: en-US X-MS-Has-Attach: yes X-MS-TNEF-Correlator: msip_labels: MSIP_Label_9d258917-277f-42cd-a3cd-14c4e9ee58bc_Enabled=True;MSIP_Label_9d258917-277f-42cd-a3cd-14c4e9ee58bc_SiteId=38ae3bcd-9579-4fd4-adda-b42e1495d55a;MSIP_Label_9d258917-277f-42cd-a3cd-14c4e9ee58bc_SetDate=2023-09-20T16:09:29.191Z;MSIP_Label_9d258917-277f-42cd-a3cd-14c4e9ee58bc_Name=C1 - Restricted;MSIP_Label_9d258917-277f-42cd-a3cd-14c4e9ee58bc_ContentBits=0;MSIP_Label_9d258917-277f-42cd-a3cd-14c4e9ee58bc_Method=Standard; x-ms-publictraffictype: Email x-ms-traffictypediagnostic: DM6PR07MB6377:EE_|DS7PR07MB8319:EE_ x-ms-office365-filtering-correlation-id: 24f2c877-24e8-4c34-db45-08dbb9f3f89a x-ms-exchange-senderadcheck: 1 x-ms-exchange-antispam-relay: 0 x-microsoft-antispam: BCL:0; x-microsoft-antispam-message-info: hCSde2qJ7oiuXfOapw7/MnhhvHCp+WWmZoR4q+WQ0nmvqbugbHkS81k1GIbnVYfZH90gDodEPBqpGaQz/c8go0OmI3POUOMVkWbCRJQiFtbQoJXaJXbzNKgJRkGqmosvyeTZ9m9hazZ3mMOSu0PdlowkZUaeTq2/AmrGwwkrtykI8TVp1SjBbmXwK9ohkxiax7L1XOR4A6v19EktN5drWitR+DSsGupOHC0KtezulkBptmy/99QhLpI5ylMvEx55cQf1gBL+pQitK/SVFS6P0FZ+y9UAdG+jJQUB4rr0sOFinQfo8ob1Wh4HTgQSYRHl7Ep+40IrDxVjufZwxk+hr5OXjh1J1Ceq8hIvFnteavM= x-forefront-antispam-report: CIP:255.255.255.255;CTRY:;LANG:en;SCL:1;SRV:;IPV:NLI;SFV:NSPM;H:DM6PR07MB6377.namprd07.prod.outlook.com;PTR:;CAT:NONE;SFS:(13230031)(396003)(346002)(39860400002)(376002)(366004)(136003)(186009)(1800799009)(451199024)(19627405001)(9686003)(71200400001)(7696005)(6506007)(122000001)(99936003)(86362001)(82960400001)(38100700002)(33656002)(38070700005)(26005)(107886003)(2906002)(478600001)(55016003)(73894004)(4270600006)(52536014)(5660300002)(4326008)(8936002)(8676002)(66446008)(66556008)(66946007)(76116006)(64756008)(66476007)(91956017)(316002)(41300700001)(6916009);DIR:OUT;SFP:1101; x-ms-exchange-antispam-messagedata-chunkcount: 1 x-ms-exchange-antispam-messagedata-0: =?iso-8859-1?q?CO7tkzsIyFC/uFkNN6V8a3J?= =?iso-8859-1?q?3C4dOzk7b0yM1wX5BtQ1fLws9/3u+gzKrJw1Q8yzpBNO92yhIkxG3DO2k8Ub?= =?iso-8859-1?q?CHBhow0yoZIN14UcKnRexSPOGEQN8SwtB0NIECrRZmqzez+P+emUWTsYfkCP?= =?iso-8859-1?q?iKv5nXezXH2CQkTeJH5QeyJlFHDecP1IHoW3N7QaFtJt1rXARPBB9m69oTEm?= =?iso-8859-1?q?fZVncSZ8+JTrtW8qCT6xedcrx4MMz9YUsujnZPfz963/V4Eb1EEyi1d5y4Ct?= =?iso-8859-1?q?LXKt7wWsXgVow6pu4HwrA7z67Evsa9Xq++FklFctk0T1C+K2UH84FoheGfpt?= =?iso-8859-1?q?g2gBePW8ntTVX9wIei7ji/EgkA5lTCmC/QqjqwG1qPeYW1MK/Pvky3s1J4bx?= =?iso-8859-1?q?evJdBRL+IXPEQ0xq3mBXDr3LIuKunWWPDQEbx1I6O9fVES9cjq7tKHFU6R4f?= =?iso-8859-1?q?dzwL3BexIf+FzBT8qqY9zzj2OU9OPMvLoBFGsGEBCLtwbHpIcYcbnE3zWJ1P?= =?iso-8859-1?q?fUDQ9ZWgBZ6lCY/Y4mxxpjcdtxS/9IPPtwabKTGTkPashK4DEO0Osak4+pLF?= =?iso-8859-1?q?Y91TwtiWcg7crlx6Lhro28y3VqTQOnqJ+BrRkS+aR8TJNkRsYZnC2IpQmWbR?= =?iso-8859-1?q?MVQAofCQ+rSkqfpqsYEFLAZ5cKSRcaeCsXbH5UnqhFcGwYUiTm/P9d96nmKS?= =?iso-8859-1?q?lpM9ag0ZZxFNHgiECo6IU7EdXlF808/NmFbVXTBVVCuug5cRaZPWZ59OKSLG?= =?iso-8859-1?q?VTo1nCgt1cudaPt80/ZUgk1aCxSX0JnAPYpd7fVYWjsnuhd6WPunFXSX78ma?= =?iso-8859-1?q?vGoBtu3ysz3K3/6BvuIQ6akBS6nTtPTqYd8+jchSv3QYtCcqkwBoBODuYkeM?= =?iso-8859-1?q?qR5G/O1YcF+9hArgxd/lj5xuxu039Dp5SlAiV13RP7tDNdb61EW1xSNQQ+Ts?= =?iso-8859-1?q?u8/HE3QgBd3nXqwEGd1obkrYlz5tcfssFMHqp1/QZYbRpyFh8c3VHCoWO63r?= =?iso-8859-1?q?TGsVnEdnSITqkjvAE6nvN/7OznfO9zxW5SU6/yhdZYpIwTDMvvZhSgkBDh6T?= =?iso-8859-1?q?YD2XNYSc9/OtHEyuZ1AEgouTPqLXW+XNQlxgcQfB8y2a7KdJFrmIixOlOiuf?= =?iso-8859-1?q?LtYiotXag0l9oFoXIaWfIkTBbzoGjs0gMDmezmJXoR0joV7HcG5VmIyLoe3b?= =?iso-8859-1?q?aWgNnROjjeBCIPZZ4euJAES1AZ1HrmoctMMD5B0tXsNuPi5CNGtSOEr97HTK?= =?iso-8859-1?q?OERi4zQore5d5f03OmxtIFl57EJW30cEpQMGIpmqJ16C47zTfrE4p1SGTi8S?= =?iso-8859-1?q?s+t4Fg1Qo4PY4Ny+79AY4a6sFTFDblC90OmK9h9p8W7w403jr+54Exo1W21p?= =?iso-8859-1?q?f4t182TDPiPKimW4wiAMBLkV235nm1MnpbjyE4rBPtG3Mx3atgghlyOMRH4m?= =?iso-8859-1?q?wAUWDPm9qMUaYfk+7djY9iSkeZv+T+YrqsNf2jz7yNfYOc7TFcmxd73ZkcKT?= =?iso-8859-1?q?rSoZhU7Kr6ahGSJharGFtoiHCNTGvUHlPQDTq1vYtqf8aV4Qpey1tv6/Srsy?= =?iso-8859-1?q?CN+2c5Ui0KJzj8dZN9PYDZZHzftg9xobXF75yonBryGeZGfhcye6OubY=3D?= MIME-Version: 1.0 X-OriginatorOrg: siemens.com X-MS-Exchange-CrossTenant-AuthAs: Internal X-MS-Exchange-CrossTenant-AuthSource: DM6PR07MB6377.namprd07.prod.outlook.com X-MS-Exchange-CrossTenant-Network-Message-Id: 24f2c877-24e8-4c34-db45-08dbb9f3f89a X-MS-Exchange-CrossTenant-originalarrivaltime: 20 Sep 2023 16:09:30.1536 (UTC) X-MS-Exchange-CrossTenant-fromentityheader: Hosted X-MS-Exchange-CrossTenant-id: 38ae3bcd-9579-4fd4-adda-b42e1495d55a X-MS-Exchange-CrossTenant-mailboxtype: HOSTED X-MS-Exchange-CrossTenant-userprincipalname: AkgS+XugeE9hKEc2BEh5Amt8/j1o7DRHADE7ck5lJDFjQf8hSeSTz5yvOP84WPuEpuM6Pxc+oCPDXRlHUA1vrA== X-MS-Exchange-Transport-CrossTenantHeadersStamped: DS7PR07MB8319 X-Original-Sender: amy.fong@siemens.com X-Original-Authentication-Results: gmr-mx.google.com; dkim=pass header.i=@siemens.com header.s=selector2 header.b=eLGZkR9K; arc=pass (i=1 spf=pass spfdomain=siemens.com dkim=pass dkdomain=siemens.com dmarc=pass fromdomain=siemens.com); spf=pass (google.com: domain of amy.fong@siemens.com designates 2a01:111:f400:7eaa::60f as permitted sender) smtp.mailfrom=amy.fong@siemens.com; dmarc=pass (p=REJECT sp=REJECT dis=NONE) header.from=siemens.com X-Original-From: "Fong, Amy" Reply-To: "Fong, Amy" Precedence: list Mailing-list: list swupdate@googlegroups.com; contact swupdate+owners@googlegroups.com List-ID: X-Spam-Checked-In-Group: swupdate@googlegroups.com X-Google-Group-Id: 605343134186 List-Post: , List-Help: , List-Archive: , List-Unsubscribe: , From b346d02daf524490255559f07bde5119334d5812 Mon Sep 17 00:00:00 2001 From: Amy Fong Date: Wed, 20 Sep 2023 12:01:58 -0400 Subject: [PATCH] gpg: add optional gpg signing verification This change introduces a Kconfig parameter allowing gpg verification. The environment variable GPG_HOMEDIR, if set, is used to specify the home directory. Signed-off-by: Amy Fong --- Kconfig | 2 + Makefile.flags | 5 ++ corelib/Makefile | 1 + corelib/swupdate_gpg_verify.c | 126 ++++++++++++++++++++++++++++++++++ 4 files changed, 134 insertions(+) create mode 100644 corelib/swupdate_gpg_verify.c diff --git a/Kconfig b/Kconfig index 636c4ac..187a656 100644 --- a/Kconfig +++ b/Kconfig @@ -431,6 +431,8 @@ choice bool "mbedTLS" depends on HAVE_MBEDTLS + config SIGALG_GPG + bool "GPG signing" endchoice diff --git a/Makefile.flags b/Makefile.flags index 2d27a8f..5046a69 100644 --- a/Makefile.flags +++ b/Makefile.flags @@ -305,3 +305,8 @@ endif # (we stole scripts/checkstack.pl from the kernel... thanks guys!) # Reduced from 20k to 16k in 1.9.0. FLTFLAGS += -s 16000 + +ifeq ($(CONFIG_SIGALG_GPG),y) +LDLIBS += gpgme +endif + diff --git a/corelib/Makefile b/corelib/Makefile index 5f6f8e9..f5dda73 100644 --- a/corelib/Makefile +++ b/corelib/Makefile @@ -32,6 +32,7 @@ endif lib-$(CONFIG_SIGALG_RAWRSA) += swupdate_rsa_verify_mbedtls.o lib-$(CONFIG_SIGALG_RSAPSS) += swupdate_rsa_verify_mbedtls.o endif +lib-$(CONFIG_SIGALG_GPG) += swupdate_gpg_verify.o lib-$(CONFIG_LIBCONFIG) += swupdate_settings.o \ parsing_library_libconfig.o lib-$(CONFIG_JSON) += parsing_library_libjson.o server_utils.o diff --git a/corelib/swupdate_gpg_verify.c b/corelib/swupdate_gpg_verify.c new file mode 100644 index 0000000..781c3bc --- /dev/null +++ b/corelib/swupdate_gpg_verify.c @@ -0,0 +1,126 @@ +/* + * Author: Amy Fong + * Copyright (C) 2023, Siemens AG + * + * SPDX-License-Identifier: GPL-2.0-only + */ +#include +#include +#include +#include +#include "swupdate.h" +#include "sslapi.h" +#include "util.h" + +#include +#include +#include + +static gpg_error_t +status_cb(void *opaque, const char *keyword, const char *value) +{ + (void)opaque; + TRACE("status_cb: %s %s\n", keyword, value); + return 0; +} + +int swupdate_verify_file(struct swupdate_digest *dgst, const char *sigfile, + const char *file, const char *signer_name) +{ + gpgme_ctx_t ctx; + gpgme_error_t err; + gpgme_data_t image_sig, image; + FILE *fp_sig = NULL; + FILE *fp = NULL; + gpgme_signature_t sig; + char *gpg_home_dir = NULL; + int status = 0; + gpgme_protocol_t protocol = GPGME_PROTOCOL_OpenPGP; + gpgme_verify_result_t result; + + TRACE("Enter swupdate_verify_file: gpg verify"); + /* Initialize the locale environment. */ + setlocale(LC_ALL, ""); + (void)gpgme_check_version(NULL); + + err = gpgme_new(&ctx); + if (err) { + ERROR("Failed to create new gpg context: %s", + gpgme_strerror(err)); + status = -EFAULT; + goto out; + } + + gpgme_set_protocol(ctx, protocol); + gpgme_set_status_cb(ctx, status_cb, NULL); + gpgme_set_ctx_flag(ctx, "full-status", "1"); + + fp_sig = fopen(sigfile, "rb"); + if (!fp_sig) { + ERROR("Failed to open %s", sigfile); + status = -EBADF; + goto out; + } + err = gpgme_data_new_from_stream(&image_sig, fp_sig); + if (err) { + ERROR("error allocating data object: %s", gpgme_strerror(err)); + status = -ENOMEM; + goto out; + } + + fp = fopen(file, "rb"); + if (!fp) { + ERROR("Failed to open %s", file); + status = -EBADF; + goto out; + } + err = gpgme_data_new_from_stream(&image, fp); + if (err) { + ERROR("error allocating data object: %s", gpgme_strerror(err)); + status = -ENOMEM; + goto out; + } + + gpg_home_dir = getenv("GPG_HOMEDIR"); + if (gpg_home_dir != NULL) { + err = gpgme_ctx_set_engine_info(ctx, protocol, NULL, gpg_home_dir); + if (err) { + ERROR("Something went wrong while setting the engine info: %s", + gpgme_strerror(err)); + status = -EFAULT; + goto out; + } + } + + err = gpgme_op_verify(ctx, image_sig, image, NULL); + result = gpgme_op_verify_result(ctx); + if (err) { + ERROR("verify failed: %s\n", gpgme_strerror(err)); + status = -EBADMSG; + goto out; + } + + if (result) { + for (sig = result->signatures; sig; sig = sig->next) { + if (sig->status == GPG_ERR_NO_ERROR) { + TRACE("Verified OK\n"); + status = 0; + goto out; + } + } + } + TRACE(" Verification failed\n"); + status = -EBADMSG; + + out: + gpgme_data_release(image); + gpgme_data_release(image_sig); + gpgme_release(ctx); + + if (fp) + fclose(fp); + if (fp_sig) + fclose(fp_sig); + + return status; +} -- 2.39.2