| /kernel/linux/linux-5.10/crypto/asymmetric_keys/ |
| H A D | pkcs7_verify.c | 22 static int pkcs7_digest(struct pkcs7_message *pkcs7, in pkcs7_digest() argument
62 ret = crypto_shash_digest(desc, pkcs7->data, pkcs7->data_len, in pkcs7_digest()
125 int pkcs7_get_digest(struct pkcs7_message *pkcs7, const u8 **buf, u32 *len, in pkcs7_get_digest() argument
128 struct pkcs7_signed_info *sinfo = pkcs7->signed_infos; in pkcs7_get_digest()
137 ret = pkcs7_digest(pkcs7, sinfo); in pkcs7_get_digest()
159 static int pkcs7_find_key(struct pkcs7_message *pkcs7, in pkcs7_find_key() argument
167 for (x509 = pkcs7->certs; x509; x509 = x509->next, certix++) { in pkcs7_find_key()
194 static int pkcs7_verify_sig_chain(struct pkcs7_message *pkcs7, in pkcs7_verify_sig_chain() argument
204 for (p = pkcs7 in pkcs7_verify_sig_chain()
320 pkcs7_verify_one(struct pkcs7_message *pkcs7, struct pkcs7_signed_info *sinfo) pkcs7_verify_one() argument
398 pkcs7_verify(struct pkcs7_message *pkcs7, enum key_being_used_for usage) pkcs7_verify() argument
481 pkcs7_supply_detached_data(struct pkcs7_message *pkcs7, const void *data, size_t datalen) pkcs7_supply_detached_data() argument
[all...] |
| H A D | pkcs7_parser.c | 17 #include "pkcs7.asn1.h"
55 * @pkcs7: The PKCS#7 message to free
57 void pkcs7_free_message(struct pkcs7_message *pkcs7) in pkcs7_free_message() argument
62 if (pkcs7) { in pkcs7_free_message()
63 while (pkcs7->certs) { in pkcs7_free_message()
64 cert = pkcs7->certs; in pkcs7_free_message()
65 pkcs7->certs = cert->next; in pkcs7_free_message()
68 while (pkcs7->crl) { in pkcs7_free_message()
69 cert = pkcs7->crl; in pkcs7_free_message()
70 pkcs7 in pkcs7_free_message()
185 pkcs7_get_content_data(const struct pkcs7_message *pkcs7, const void **_data, size_t *_data_len, size_t *_headerlen) pkcs7_get_content_data() argument
[all...] |
| H A D | pkcs7_trust.c | 22 static int pkcs7_validate_trust_one(struct pkcs7_message *pkcs7, in pkcs7_validate_trust_one() argument
136 * @pkcs7: The PKCS#7 certificate to validate
158 int pkcs7_validate_trust(struct pkcs7_message *pkcs7, in pkcs7_validate_trust() argument
166 for (p = pkcs7->certs; p; p = p->next) in pkcs7_validate_trust()
169 for (sinfo = pkcs7->signed_infos; sinfo; sinfo = sinfo->next) { in pkcs7_validate_trust()
170 ret = pkcs7_validate_trust_one(pkcs7, sinfo, trust_keyring); in pkcs7_validate_trust()
|
| H A D | Makefile | 51 pkcs7.asn1.o \
56 $(obj)/pkcs7_parser.o: $(obj)/pkcs7.asn1.h
57 $(obj)/pkcs7.asn1.o: $(obj)/pkcs7.asn1.c $(obj)/pkcs7.asn1.h
|
| H A D | verify_pefile.c | 126 const u8 *pkcs7; in pefile_strip_sig_wrapper() local
172 pkcs7 = pebuf + ctx->sig_offset; in pefile_strip_sig_wrapper()
173 if (pkcs7[0] != (ASN1_CONS_BIT | ASN1_SEQ)) in pefile_strip_sig_wrapper()
176 switch (pkcs7[1]) { in pefile_strip_sig_wrapper()
178 len = pkcs7[1] + 2; in pefile_strip_sig_wrapper()
183 len = pkcs7[2] + 3; in pefile_strip_sig_wrapper()
186 len = ((pkcs7[2] << 8) | pkcs7[3]) + 4; in pefile_strip_sig_wrapper()
|
| H A D | verify_pefile.h | 8 #include <crypto/pkcs7.h>
|
| H A D | pkcs7_parser.h | 9 #include <crypto/pkcs7.h>
|
| /kernel/linux/linux-6.6/crypto/asymmetric_keys/ |
| H A D | pkcs7_verify.c | 22 static int pkcs7_digest(struct pkcs7_message *pkcs7, in pkcs7_digest() argument
62 ret = crypto_shash_digest(desc, pkcs7->data, pkcs7->data_len, in pkcs7_digest()
125 int pkcs7_get_digest(struct pkcs7_message *pkcs7, const u8 **buf, u32 *len, in pkcs7_get_digest() argument
128 struct pkcs7_signed_info *sinfo = pkcs7->signed_infos; in pkcs7_get_digest()
137 ret = pkcs7_digest(pkcs7, sinfo); in pkcs7_get_digest()
158 static int pkcs7_find_key(struct pkcs7_message *pkcs7, in pkcs7_find_key() argument
166 for (x509 = pkcs7->certs; x509; x509 = x509->next, certix++) { in pkcs7_find_key()
193 static int pkcs7_verify_sig_chain(struct pkcs7_message *pkcs7, in pkcs7_verify_sig_chain() argument
203 for (p = pkcs7 in pkcs7_verify_sig_chain()
316 pkcs7_verify_one(struct pkcs7_message *pkcs7, struct pkcs7_signed_info *sinfo) pkcs7_verify_one() argument
394 pkcs7_verify(struct pkcs7_message *pkcs7, enum key_being_used_for usage) pkcs7_verify() argument
477 pkcs7_supply_detached_data(struct pkcs7_message *pkcs7, const void *data, size_t datalen) pkcs7_supply_detached_data() argument
[all...] |
| H A D | selftest.c | 7 #include <crypto/pkcs7.h>
17 const u8 *pkcs7; member
174 #define TEST(data, pkcs7) { data, sizeof(data) - 1, pkcs7, sizeof(pkcs7) - 1 }
204 struct pkcs7_message *pkcs7; in fips_signature_selftest() local
206 pkcs7 = pkcs7_parse_message(test->pkcs7, test->pkcs7_len); in fips_signature_selftest()
207 if (IS_ERR(pkcs7)) in fips_signature_selftest()
210 pkcs7_supply_detached_data(pkcs7, tes in fips_signature_selftest()
[all...] |
| H A D | pkcs7_parser.c | 17 #include "pkcs7.asn1.h"
55 * @pkcs7: The PKCS#7 message to free
57 void pkcs7_free_message(struct pkcs7_message *pkcs7) in pkcs7_free_message() argument
62 if (pkcs7) { in pkcs7_free_message()
63 while (pkcs7->certs) { in pkcs7_free_message()
64 cert = pkcs7->certs; in pkcs7_free_message()
65 pkcs7->certs = cert->next; in pkcs7_free_message()
68 while (pkcs7->crl) { in pkcs7_free_message()
69 cert = pkcs7->crl; in pkcs7_free_message()
70 pkcs7 in pkcs7_free_message()
185 pkcs7_get_content_data(const struct pkcs7_message *pkcs7, const void **_data, size_t *_data_len, size_t *_headerlen) pkcs7_get_content_data() argument
[all...] |
| H A D | Makefile | 53 pkcs7.asn1.o \
58 $(obj)/pkcs7_parser.o: $(obj)/pkcs7.asn1.h
59 $(obj)/pkcs7.asn1.o: $(obj)/pkcs7.asn1.c $(obj)/pkcs7.asn1.h
|
| H A D | pkcs7_trust.c | 22 static int pkcs7_validate_trust_one(struct pkcs7_message *pkcs7, in pkcs7_validate_trust_one() argument
136 * @pkcs7: The PKCS#7 certificate to validate
158 int pkcs7_validate_trust(struct pkcs7_message *pkcs7, in pkcs7_validate_trust() argument
166 for (p = pkcs7->certs; p; p = p->next) in pkcs7_validate_trust()
169 for (sinfo = pkcs7->signed_infos; sinfo; sinfo = sinfo->next) { in pkcs7_validate_trust()
170 ret = pkcs7_validate_trust_one(pkcs7, sinfo, trust_keyring); in pkcs7_validate_trust()
|
| H A D | verify_pefile.c | 126 const u8 *pkcs7; in pefile_strip_sig_wrapper() local
172 pkcs7 = pebuf + ctx->sig_offset; in pefile_strip_sig_wrapper()
173 if (pkcs7[0] != (ASN1_CONS_BIT | ASN1_SEQ)) in pefile_strip_sig_wrapper()
176 switch (pkcs7[1]) { in pefile_strip_sig_wrapper()
178 len = pkcs7[1] + 2; in pefile_strip_sig_wrapper()
183 len = pkcs7[2] + 3; in pefile_strip_sig_wrapper()
186 len = ((pkcs7[2] << 8) | pkcs7[3]) + 4; in pefile_strip_sig_wrapper()
|
| H A D | verify_pefile.h | 8 #include <crypto/pkcs7.h>
|
| H A D | pkcs7_parser.h | 9 #include <crypto/pkcs7.h>
|
| /kernel/linux/common_modules/code_sign/ |
| H A D | verify_cert_chain.c | 11 #include <crypto/pkcs7.h>
28 static int pkcs7_find_key(struct pkcs7_message *pkcs7, in pkcs7_find_key() argument
37 cert = pkcs7->certs; in pkcs7_find_key()
127 struct pkcs7_message *pkcs7; in code_sign_verify_certchain() local
130 pkcs7 = pkcs7_parse_message(raw_pkcs7, pkcs7_len); in code_sign_verify_certchain()
131 if (IS_ERR(pkcs7)) { in code_sign_verify_certchain()
132 code_sign_log_error("parse pkcs7 message failed"); in code_sign_verify_certchain()
133 *ret = PTR_ERR(pkcs7); in code_sign_verify_certchain()
137 if (!pkcs7->signed_infos) { in code_sign_verify_certchain()
138 code_sign_log_error("signed info not found in pkcs7"); in code_sign_verify_certchain()
[all...] |
| /kernel/linux/linux-5.10/certs/ |
| H A D | system_keyring.c | 17 #include <crypto/pkcs7.h>
153 * @pkcs7: The PKCS#7 message that is the signature.
161 struct pkcs7_message *pkcs7, in verify_pkcs7_message_sig()
172 if (data && pkcs7_supply_detached_data(pkcs7, data, len) < 0) { in verify_pkcs7_message_sig()
178 ret = pkcs7_verify(pkcs7, usage); in verify_pkcs7_message_sig()
202 ret = is_key_on_revocation_list(pkcs7); in verify_pkcs7_message_sig()
208 ret = pkcs7_validate_trust(pkcs7, trusted_keys); in verify_pkcs7_message_sig()
218 ret = pkcs7_get_content_data(pkcs7, &data, &len, &asn1hdrlen); in verify_pkcs7_message_sig()
254 struct pkcs7_message *pkcs7; in verify_pkcs7_signature() local
257 pkcs7 in verify_pkcs7_signature()
160 verify_pkcs7_message_sig(const void *data, size_t len, struct pkcs7_message *pkcs7, struct key *trusted_keys, enum key_being_used_for usage, int (*view_content)(void *ctx, const void *data, size_t len, size_t asn1hdrlen), void *ctx) verify_pkcs7_message_sig() argument
[all...] |
| H A D | blacklist.c | 181 * @pkcs7: The PKCS#7 message to check
183 int is_key_on_revocation_list(struct pkcs7_message *pkcs7) in is_key_on_revocation_list() argument
187 ret = pkcs7_validate_trust(pkcs7, blacklist_keyring); in is_key_on_revocation_list()
|
| /kernel/linux/linux-5.10/include/crypto/ |
| H A D | pkcs7.h | 23 extern void pkcs7_free_message(struct pkcs7_message *pkcs7);
25 extern int pkcs7_get_content_data(const struct pkcs7_message *pkcs7,
32 extern int pkcs7_validate_trust(struct pkcs7_message *pkcs7,
38 extern int pkcs7_verify(struct pkcs7_message *pkcs7,
41 extern int pkcs7_supply_detached_data(struct pkcs7_message *pkcs7,
44 extern int pkcs7_get_digest(struct pkcs7_message *pkcs7, const u8 **buf,
|
| /kernel/linux/linux-6.6/include/crypto/ |
| H A D | pkcs7.h | 23 extern void pkcs7_free_message(struct pkcs7_message *pkcs7);
25 extern int pkcs7_get_content_data(const struct pkcs7_message *pkcs7,
32 extern int pkcs7_validate_trust(struct pkcs7_message *pkcs7,
38 extern int pkcs7_verify(struct pkcs7_message *pkcs7,
41 extern int pkcs7_supply_detached_data(struct pkcs7_message *pkcs7,
44 extern int pkcs7_get_digest(struct pkcs7_message *pkcs7, const u8 **buf,
|
| /kernel/linux/linux-6.6/certs/ |
| H A D | system_keyring.c | 18 #include <crypto/pkcs7.h>
304 * @pkcs7: The PKCS#7 message that is the signature.
312 struct pkcs7_message *pkcs7, in verify_pkcs7_message_sig()
323 if (data && pkcs7_supply_detached_data(pkcs7, data, len) < 0) { in verify_pkcs7_message_sig()
329 ret = pkcs7_verify(pkcs7, usage); in verify_pkcs7_message_sig()
333 ret = is_key_on_revocation_list(pkcs7); in verify_pkcs7_message_sig()
359 ret = pkcs7_validate_trust(pkcs7, trusted_keys); in verify_pkcs7_message_sig()
369 ret = pkcs7_get_content_data(pkcs7, &data, &len, &asn1hdrlen); in verify_pkcs7_message_sig()
405 struct pkcs7_message *pkcs7; in verify_pkcs7_signature() local
408 pkcs7 in verify_pkcs7_signature()
311 verify_pkcs7_message_sig(const void *data, size_t len, struct pkcs7_message *pkcs7, struct key *trusted_keys, enum key_being_used_for usage, int (*view_content)(void *ctx, const void *data, size_t len, size_t asn1hdrlen), void *ctx) verify_pkcs7_message_sig() argument
[all...] |
| /kernel/linux/linux-5.10/include/keys/ |
| H A D | system_keyring.h | 34 extern struct pkcs7_message *pkcs7;
55 extern int is_key_on_revocation_list(struct pkcs7_message *pkcs7);
61 static inline int is_key_on_revocation_list(struct pkcs7_message *pkcs7) in is_key_on_revocation_list() argument
|
| /kernel/linux/linux-6.6/include/keys/ |
| H A D | system_keyring.h | 76 extern struct pkcs7_message *pkcs7;
98 extern int is_key_on_revocation_list(struct pkcs7_message *pkcs7);
104 static inline int is_key_on_revocation_list(struct pkcs7_message *pkcs7) in is_key_on_revocation_list() argument
|
| /kernel/linux/linux-5.10/scripts/ |
| H A D | sign-file.c | 59 #include <openssl/pkcs7.h>
234 PKCS7 *pkcs7 = NULL; in main() local
329 pkcs7 = PKCS7_sign(x509, private_key, NULL, bm, in main()
332 ERR(!pkcs7, "PKCS7_sign"); in main()
347 ERR(i2d_PKCS7_bio(b, pkcs7) != 1, in main()
379 ERR(i2d_PKCS7_bio(bd, pkcs7) != 1, "%s", dest_name); in main()
|
| /kernel/linux/linux-6.6/scripts/ |
| H A D | sign-file.c | 59 #include <openssl/pkcs7.h>
234 PKCS7 *pkcs7 = NULL; in main() local
329 pkcs7 = PKCS7_sign(x509, private_key, NULL, bm, in main()
332 ERR(!pkcs7, "PKCS7_sign"); in main()
347 ERR(i2d_PKCS7_bio(b, pkcs7) != 1, in main()
379 ERR(i2d_PKCS7_bio(bd, pkcs7) != 1, "%s", dest_name); in main()
|