| /openbmc/linux/crypto/asymmetric_keys/ |
| H A D | pkcs7_verify.c | 22 static int pkcs7_digest(struct pkcs7_message *pkcs7, in pkcs7_digest() argument
62 ret = crypto_shash_digest(desc, pkcs7->data, pkcs7->data_len, in pkcs7_digest()
125 int pkcs7_get_digest(struct pkcs7_message *pkcs7, const u8 **buf, u32 *len, in pkcs7_get_digest() argument
128 struct pkcs7_signed_info *sinfo = pkcs7->signed_infos; in pkcs7_get_digest()
137 ret = pkcs7_digest(pkcs7, sinfo); in pkcs7_get_digest()
158 static int pkcs7_find_key(struct pkcs7_message *pkcs7, in pkcs7_find_key() argument
166 for (x509 = pkcs7->certs; x509; x509 = x509->next, certix++) { in pkcs7_find_key()
193 static int pkcs7_verify_sig_chain(struct pkcs7_message *pkcs7, in pkcs7_verify_sig_chain() argument
203 for (p = pkcs7->certs; p; p = p->next) in pkcs7_verify_sig_chain()
251 for (p = pkcs7->certs; p; p = p->next) { in pkcs7_verify_sig_chain()
[all …]
|
| H A D | selftest.c | 17 const u8 *pkcs7; member
174 #define TEST(data, pkcs7) { data, sizeof(data) - 1, pkcs7, sizeof(pkcs7) - 1 } argument
204 struct pkcs7_message *pkcs7; in fips_signature_selftest() local
206 pkcs7 = pkcs7_parse_message(test->pkcs7, test->pkcs7_len); in fips_signature_selftest()
207 if (IS_ERR(pkcs7)) in fips_signature_selftest()
210 pkcs7_supply_detached_data(pkcs7, test->data, test->data_len); in fips_signature_selftest()
212 ret = pkcs7_verify(pkcs7, VERIFYING_MODULE_SIGNATURE); in fips_signature_selftest()
216 ret = pkcs7_validate_trust(pkcs7, keyring); in fips_signature_selftest()
220 pkcs7_free_message(pkcs7); in fips_signature_selftest()
|
| H A D | pkcs7_parser.c | 57 void pkcs7_free_message(struct pkcs7_message *pkcs7) in pkcs7_free_message() argument
62 if (pkcs7) { in pkcs7_free_message()
63 while (pkcs7->certs) { in pkcs7_free_message()
64 cert = pkcs7->certs; in pkcs7_free_message()
65 pkcs7->certs = cert->next; in pkcs7_free_message()
68 while (pkcs7->crl) { in pkcs7_free_message()
69 cert = pkcs7->crl; in pkcs7_free_message()
70 pkcs7->crl = cert->next; in pkcs7_free_message()
73 while (pkcs7->signed_infos) { in pkcs7_free_message()
74 sinfo = pkcs7->signed_infos; in pkcs7_free_message()
[all …]
|
| H A D | Makefile | 53 pkcs7.asn1.o \
58 $(obj)/pkcs7_parser.o: $(obj)/pkcs7.asn1.h
59 $(obj)/pkcs7.asn1.o: $(obj)/pkcs7.asn1.c $(obj)/pkcs7.asn1.h
|
| H A D | pkcs7_trust.c | 22 static int pkcs7_validate_trust_one(struct pkcs7_message *pkcs7, in pkcs7_validate_trust_one() argument
158 int pkcs7_validate_trust(struct pkcs7_message *pkcs7, in pkcs7_validate_trust() argument
166 for (p = pkcs7->certs; p; p = p->next) in pkcs7_validate_trust()
169 for (sinfo = pkcs7->signed_infos; sinfo; sinfo = sinfo->next) { in pkcs7_validate_trust()
170 ret = pkcs7_validate_trust_one(pkcs7, sinfo, trust_keyring); in pkcs7_validate_trust()
|
| H A D | verify_pefile.c | 126 const u8 *pkcs7; in pefile_strip_sig_wrapper() local
172 pkcs7 = pebuf + ctx->sig_offset; in pefile_strip_sig_wrapper()
173 if (pkcs7[0] != (ASN1_CONS_BIT | ASN1_SEQ)) in pefile_strip_sig_wrapper()
176 switch (pkcs7[1]) { in pefile_strip_sig_wrapper()
178 len = pkcs7[1] + 2; in pefile_strip_sig_wrapper()
183 len = pkcs7[2] + 3; in pefile_strip_sig_wrapper()
186 len = ((pkcs7[2] << 8) | pkcs7[3]) + 4; in pefile_strip_sig_wrapper()
|
| /openbmc/linux/include/crypto/ |
| H A D | pkcs7.h | 23 extern void pkcs7_free_message(struct pkcs7_message *pkcs7);
25 extern int pkcs7_get_content_data(const struct pkcs7_message *pkcs7,
32 extern int pkcs7_validate_trust(struct pkcs7_message *pkcs7,
38 extern int pkcs7_verify(struct pkcs7_message *pkcs7,
41 extern int pkcs7_supply_detached_data(struct pkcs7_message *pkcs7,
44 extern int pkcs7_get_digest(struct pkcs7_message *pkcs7, const u8 **buf,
|
| /openbmc/linux/certs/ |
| H A D | system_keyring.c | 312 struct pkcs7_message *pkcs7, in verify_pkcs7_message_sig() argument
323 if (data && pkcs7_supply_detached_data(pkcs7, data, len) < 0) { in verify_pkcs7_message_sig()
329 ret = pkcs7_verify(pkcs7, usage); in verify_pkcs7_message_sig()
333 ret = is_key_on_revocation_list(pkcs7); in verify_pkcs7_message_sig()
359 ret = pkcs7_validate_trust(pkcs7, trusted_keys); in verify_pkcs7_message_sig()
369 ret = pkcs7_get_content_data(pkcs7, &data, &len, &asn1hdrlen); in verify_pkcs7_message_sig()
405 struct pkcs7_message *pkcs7; in verify_pkcs7_signature() local
408 pkcs7 = pkcs7_parse_message(raw_pkcs7, pkcs7_len); in verify_pkcs7_signature()
409 if (IS_ERR(pkcs7)) in verify_pkcs7_signature()
410 return PTR_ERR(pkcs7); in verify_pkcs7_signature()
[all …]
|
| H A D | blacklist.c | 288 int is_key_on_revocation_list(struct pkcs7_message *pkcs7) in is_key_on_revocation_list() argument
292 ret = pkcs7_validate_trust(pkcs7, blacklist_keyring); in is_key_on_revocation_list()
|
| /openbmc/linux/include/keys/ |
| H A D | system_keyring.h | 76 extern struct pkcs7_message *pkcs7;
98 extern int is_key_on_revocation_list(struct pkcs7_message *pkcs7);
104 static inline int is_key_on_revocation_list(struct pkcs7_message *pkcs7) in is_key_on_revocation_list() argument
|
| /openbmc/linux/scripts/ |
| H A D | sign-file.c | 234 PKCS7 *pkcs7 = NULL; in main() local
329 pkcs7 = PKCS7_sign(x509, private_key, NULL, bm, in main()
332 ERR(!pkcs7, "PKCS7_sign"); in main()
347 ERR(i2d_PKCS7_bio(b, pkcs7) != 1, in main()
379 ERR(i2d_PKCS7_bio(bd, pkcs7) != 1, "%s", dest_name); in main()
|
| /openbmc/openbmc/meta-openembedded/meta-oe/recipes-gnome/libjcat/ |
| H A D | libjcat_0.2.2.bb | 21 pkcs7 \
25 PACKAGECONFIG[pkcs7] = "-Dpkcs7=true,-Dpkcs7=false,gnutls gnutls-native"
|
| /openbmc/linux/include/linux/ |
| H A D | verification.h | 57 struct pkcs7_message *pkcs7,
|
| /openbmc/openbmc/meta-openembedded/meta-oe/recipes-connectivity/iwd/ |
| H A D | iwd_3.3.bb | 50 kernel-module-pkcs7-message \
|
| /openbmc/openbmc/meta-openembedded/meta-oe/recipes-support/crucible/ |
| H A D | crucible-licenses.inc | 18 …file://pkg/mod/github.com/smallstep/pkcs7@v0.0.0-20231107075624-be1870d87d13/LICENSE;md5=a9b2952d5…
|
| H A D | crucible-go-mods.inc | 54 …gomod://github.com/smallstep/pkcs7;version=v0.0.0-20231107075624-be1870d87d13;sha256sum=7f8ed17d46…
|
| /openbmc/linux/Documentation/admin-guide/device-mapper/ |
| H A D | verity.rst | 134 the pkcs7 signature of the roothash. The pkcs7 signature is used to validate
|
| /openbmc/qemu/tests/unit/ |
| H A D | pkix_asn1_tab.c.inc | 1029 {"pkcs7", 1073741825, "7"},
1037 {"pkcs7", 1073741825, "7"},
|
| /openbmc/openbmc/meta-arm/meta-arm-bsp/recipes-security/trusted-services/corstone1000/ |
| H A D | 0014-Provide-crypto-api-to-create-uefi-priv-var-fingerpri.patch | 319 + * else use the key from the pkcs7 signature structure, because it is
601 #include <mbedtls/pkcs7.h>
|
| /openbmc/openbmc/meta-openembedded/meta-networking/recipes-support/strongswan/ |
| H A D | strongswan_6.0.0.bb | 167 ${PN}-plugin-pkcs7 \
|
| /openbmc/openbmc-tools/rootfs_size/ |
| H A D | results.txt | 1062 0: /usr/share/mime/application/x-pkcs7-certificates.xml
1145 0: /usr/share/mime/application/pkcs7-signature.xml
1280 0: /usr/share/mime/application/pkcs7-mime.xml
|
| /openbmc/linux/Documentation/admin-guide/ |
| H A D | quickly-build-trimmed-linux.rst | 441 sudo dnf install binutils /usr/include/{libelf.h,openssl/pkcs7.h} \
|
| /openbmc/openbmc/poky/meta/lib/oeqa/files/ |
| H A D | buildhistory_filelist2.txt | 4259 -rw-r--r-- root root 11590 ./usr/include/openssl/pkcs7.h
8344 -rw-r--r-- root root 1090 ./usr/share/mime/application/pkcs7-mime.xml
8345 -rw-r--r-- root root 3684 ./usr/share/mime/application/pkcs7-signature.xml
8659 -rw-r--r-- root root 3264 ./usr/share/mime/application/x-pkcs7-certificates.xml
|
| H A D | buildhistory_filelist1.txt | 4258 -rw-r--r-- root root 11590 ./usr/include/openssl/pkcs7.h
8341 -rw-r--r-- root root 1090 ./usr/share/mime/application/pkcs7-mime.xml
8342 -rw-r--r-- root root 3684 ./usr/share/mime/application/pkcs7-signature.xml
8656 -rw-r--r-- root root 3264 ./usr/share/mime/application/x-pkcs7-certificates.xml
|
| /openbmc/linux/ |
| H A D | MAINTAINERS | 3190 F: include/crypto/pkcs7.h
|