22 static int pkcs7_digest(struct pkcs7_message *pkcs7,
62 	ret = crypto_shash_digest(desc, pkcs7->data, pkcs7->data_len,
125 int pkcs7_get_digest(struct pkcs7_message *pkcs7, const u8 **buf, u32 *len,
128 	struct pkcs7_signed_info *sinfo = pkcs7->signed_infos;
137 	ret = pkcs7_digest(pkcs7, sinfo);
158 static int pkcs7_find_key(struct pkcs7_message *pkcs7,
166 	for (x509 = pkcs7->certs; x509; x509 = x509->next, certix++) {
193 static int pkcs7_verify_sig_chain(struct pkcs7_message *pkcs7,
203 	for (p = pkcs7->certs; p; p = p->next)
251 			for (p = pkcs7->certs; p; p = p->next) {
260 			for (p = pkcs7->certs; p; p = p->next) {
316 static int pkcs7_verify_one(struct pkcs7_message *pkcs7,
326 	ret = pkcs7_digest(pkcs7, sinfo);
331 	ret = pkcs7_find_key(pkcs7, sinfo);
361 	return pkcs7_verify_sig_chain(pkcs7, sinfo);
366  * @pkcs7: The PKCS#7 message to be verified
394 int pkcs7_verify(struct pkcs7_message *pkcs7,
405 		if (pkcs7->data_type != OID_data) {
406 			pr_warn("Invalid module sig (not pkcs7-data)\n");
409 		if (pkcs7->have_authattrs) {
415 		if (pkcs7->data_type != OID_data) {
416 			pr_warn("Invalid firmware sig (not pkcs7-data)\n");
419 		if (!pkcs7->have_authattrs) {
425 		if (pkcs7->data_type != OID_msIndirectData) {
432 		if (pkcs7->data_type != OID_data) {
433 			pr_warn("Invalid unspecified sig (not pkcs7-data)\n");
441 	for (sinfo = pkcs7->signed_infos; sinfo; sinfo = sinfo->next) {
442 		ret = pkcs7_verify_one(pkcs7, sinfo);
466  * @pkcs7: The PKCS#7 message
477 int pkcs7_supply_detached_data(struct pkcs7_message *pkcs7,
480 	if (pkcs7->data) {
484 	pkcs7->data = data;
485 	pkcs7->data_len = datalen;

Indexes created Sat May 11 20:17:00 MDT 2024