Hibernate signature verification - Symmetric key edition
a project by joeyli
Updated over 2 years ago. 11 hacker ♥️.

In last hackweek, I implemented a RSA private key parser in kernel: https://github.com/SUSE/hackweek/wiki/RSA-private-key-parser-in-kernel

Then base on this parser, implemented hibernate signature verification, sent to kernel upstream: https://lkml.org/lkml/2013/9/14/183 https://github.com/joeyli/linux-s4sign

After discussion in LPC 2013, I got more idea from upstream experts for using symmetric key to implement hibernate signature check function. It's easier than using PKI and do not need shim's help to generate private key.

My plan is using HMAC, generating key in EFI stub and using it to sign hibernate image when S4 launched.

Result: Patch for generate/verify hibernate signature by HMAC https://github.com/joeyli/linux-s4sign/commit/8e01cd36e45115dd400b8eab4ff666ea4cdaa854

Join this project

Looking for hackers with the skills:

hibernate

This project is part of:

Hack Week 11

Activity

  • about 10 years ago: dsterba liked this project.
  • about 10 years ago: dsterba liked this project.
  • about 10 years ago: dsterba liked this project.
  • about 10 years ago: froh liked this project.
  • about 10 years ago: duwe liked this project.
  • about 10 years ago: michal-m liked this project.
  • about 10 years ago: joeyli added keyword "hibernate" to this project.
  • about 10 years ago: dguitarbite liked this project.
  • about 10 years ago: dguitarbite joined this project.
  • about 10 years ago: deneb_alpha liked this project.
  • about 10 years ago: bchou liked this project.
  • about 10 years ago: mlin7442 liked this project.
  • about 10 years ago: joeyli liked this project.
  • about 10 years ago: joeyli started this project.
  • about 10 years ago: joeyli originated this project.


    • Comments

    Be the first to comment!

    Similar Projects

    This project is one of its kind!