| /kernel/linux/linux-5.10/crypto/asymmetric_keys/ |
| D | pkcs7_verify.c | 154 * Find the key (X.509 certificate) to use to verify a PKCS#7 message. PKCS#7
169 * encode the fields from the X.509 cert in the same way in the in pkcs7_find_key()
175 pr_devel("Sig %u: Found cert serial match X.509[%u]\n", in pkcs7_find_key()
182 /* The relevant X.509 cert isn't found here, but it might be found in in pkcs7_find_key()
185 pr_debug("Sig %u: Issuing X.509 cert not found (#%*phN)\n", in pkcs7_find_key()
249 /* Look through the X.509 certificates in the PKCS#7 message's in pkcs7_verify_sig_chain()
284 pr_warn("Sig %u: X.509 chain contains auth-skid nonmatch (%u->%u)\n", in pkcs7_verify_sig_chain()
291 pr_warn("Sig %u: X.509 chain contains loop\n", in pkcs7_verify_sig_chain()
311 * validatable against an X.509 cert lower in the chain that we have a in pkcs7_verify_sig_chain()
342 pr_devel("Using X.509[%u] for sig %u\n", in pkcs7_verify_one()
[all …]
|
| D | x509_public_key.c | 2 /* Instantiate a public key crypto key from an X.509 Certificate
8 #define pr_fmt(fmt) "X.509: "fmt
20 * Set up the signature parameters in an X.509 certificate. This involves
101 * Check for self-signedness in an X.509 cert and if found, check the signature
272 MODULE_DESCRIPTION("X.509 certificate parser");
|
| D | Kconfig | 38 tristate "X.509 certificate parser"
43 This option provides support for parsing X.509 format blobs for key
|
| D | pkcs7.asn1 | 46 certificate Certificate, -- X.509
60 Certificate ::= ANY ({ pkcs7_extract_cert }) -- X.509
|
| /kernel/linux/linux-6.6/crypto/asymmetric_keys/ |
| D | pkcs7_verify.c | 153 * Find the key (X.509 certificate) to use to verify a PKCS#7 message. PKCS#7
168 * encode the fields from the X.509 cert in the same way in the in pkcs7_find_key()
174 pr_devel("Sig %u: Found cert serial match X.509[%u]\n", in pkcs7_find_key()
181 /* The relevant X.509 cert isn't found here, but it might be found in in pkcs7_find_key()
184 pr_debug("Sig %u: Issuing X.509 cert not found (#%*phN)\n", in pkcs7_find_key()
245 /* Look through the X.509 certificates in the PKCS#7 message's in pkcs7_verify_sig_chain()
280 pr_warn("Sig %u: X.509 chain contains auth-skid nonmatch (%u->%u)\n", in pkcs7_verify_sig_chain()
287 pr_warn("Sig %u: X.509 chain contains loop\n", in pkcs7_verify_sig_chain()
307 * validatable against an X.509 cert lower in the chain that we have a in pkcs7_verify_sig_chain()
338 pr_devel("Using X.509[%u] for sig %u\n", in pkcs7_verify_one()
[all …]
|
| D | x509_loader.c | 42 pr_err("Problem loading in-kernel X.509 certificate (%ld)\n", in x509_load_certificate_list()
45 pr_notice("Loaded X.509 cert '%s'\n", in x509_load_certificate_list()
55 pr_err("Problem parsing in-kernel X.509 certificate list\n"); in x509_load_certificate_list()
|
| D | Kconfig | 26 tristate "X.509 certificate parser"
31 This option provides support for parsing X.509 format blobs for key
79 tristate "Run FIPS selftests on the X.509+PKCS7 signature verification"
|
| D | x509_public_key.c | 2 /* Instantiate a public key crypto key from an X.509 Certificate
8 #define pr_fmt(fmt) "X.509: "fmt
22 * Set up the signature parameters in an X.509 certificate. This involves
103 * Check for self-signedness in an X.509 cert and if found, check the signature
278 MODULE_DESCRIPTION("X.509 certificate parser");
|
| D | pkcs7.asn1 | 46 certificate Certificate, -- X.509
60 Certificate ::= ANY ({ pkcs7_extract_cert }) -- X.509
|
| /kernel/linux/linux-5.10/certs/ |
| D | common.c | 42 pr_err("Problem loading in-kernel X.509 certificate (%ld)\n", in load_certificate_list()
45 pr_notice("Loaded X.509 cert '%s'\n", in load_certificate_list()
55 pr_err("Problem parsing in-kernel X.509 certificate list\n"); in load_certificate_list()
|
| D | Kconfig | 58 string "Additional X.509 keys for default system keyring"
62 containing trusted X.509 certificates to be included in the default
122 string "X.509 certificates to be preloaded into the system blacklist keyring"
126 containing X.509 certificates to be included in the default blacklist
|
| /kernel/linux/linux-6.6/certs/ |
| D | Kconfig | 57 string "Additional X.509 keys for default system keyring"
61 containing trusted X.509 certificates to be included in the default
124 string "X.509 certificates to be preloaded into the system blacklist keyring"
128 containing X.509 certificates to be included in the default blacklist
|
| D | system_keyring.c | 177 pr_err("Problem loading X.509 certificate from %s to secondary keyring %ld\n", in add_to_secondary_keyring()
182 pr_notice("Loaded X.509 cert '%s'\n", key_ref_to_ptr(key)->description); in add_to_secondary_keyring()
270 pr_notice("Loading compiled-in module X.509 certificates\n"); in load_module_cert()
277 * Load the compiled-in list of X.509 certificates.
284 pr_notice("Loading compiled-in X.509 certificates\n"); in load_system_certificate_list()
|
| /kernel/linux/common_modules/code_sign/ |
| D | verify_cert_chain.c | 19 * Find the key (X.509 certificate) to use to verify a PKCS#7 message. PKCS#7
39 code_sign_log_warn("sig %u: X.509 algo and PKCS#7 sig algo don't match", sinfo->index); in pkcs7_find_key()
45 code_sign_log_warn("sig %u: X.509->id and PKCS#7 sinfo->sig->auth_ids[0] don't match", in pkcs7_find_key()
57 /* The relevant X.509 cert isn't found here, but it might be found in in pkcs7_find_key()
60 code_sign_log_info("Sig %u: Issuing X.509 cert not found (#%*phN)", in pkcs7_find_key()
|
| /kernel/linux/linux-5.10/include/keys/ |
| D | asymmetric-type.h | 31 * key derived from an X.509 certificate:
34 * map a PKCS#7 signature to an X.509 certificate.
37 * match X.509 certificates, but have fallen into disuse in favour of (3).
|
| /kernel/linux/linux-5.10/security/integrity/ |
| D | digsig.c | 164 pr_err("Problem loading X.509 certificate %d\n", rc); in integrity_add_key()
166 pr_notice("Loaded X.509 cert '%s'\n", in integrity_add_key()
192 pr_info("Loading X.509 certificate: %s\n", path); in integrity_load_x509()
205 pr_info("Loading X.509 certificate: %s\n", source); in integrity_load_cert()
|
| /kernel/linux/linux-6.6/include/keys/ |
| D | asymmetric-type.h | 31 * key derived from an X.509 certificate:
34 * map a PKCS#7 signature to an X.509 certificate.
37 * match X.509 certificates, but have fallen into disuse in favour of (3).
|
| /kernel/linux/linux-6.6/security/integrity/ |
| D | digsig.c | 182 pr_err("Problem loading X.509 certificate %d\n", rc); in integrity_add_key()
184 pr_notice("Loaded X.509 cert '%s'\n", in integrity_add_key()
210 pr_info("Loading X.509 certificate: %s\n", path); in integrity_load_x509()
223 pr_info("Loading X.509 certificate: %s\n", source); in integrity_load_cert()
|
| /kernel/linux/linux-6.6/arch/arm64/boot/dts/qcom/ |
| D | sdm636.dtsi | 14 * 509 instead of 512 and lack of
22 /* Adreno 509 shares the frequency table with 512 */
|
| /kernel/linux/linux-6.6/samples/vfio-mdev/ |
| D | README.rst | 45 # echo "83b8f4f2-509f-382f-3c1e-e6bfe0fa1001" > \
51 sysfsdev=/sys/bus/mdev/devices/83b8f4f2-509f-382f-3c1e-e6bfe0fa1001
99 # echo 1 > /sys/bus/mdev/devices/83b8f4f2-509f-382f-3c1e-e6bfe0fa1001/remove
|
| /kernel/linux/linux-6.6/scripts/ |
| D | sign-file.c | 43 * the options we have on specifying the X.509 certificate we want.
204 /* Assume raw DER encoded X.509 */ in read_x509()
207 /* Assume PEM encoded X.509 */ in read_x509()
301 /* Read the private key and the X.509 cert the PKCS#7 message in main()
|
| /kernel/linux/linux-5.10/Documentation/admin-guide/ |
| D | module-signing.rst | 29 This facility uses X.509 ITU-T standard certificates to encode the public keys
103 and its corresponding X.509 certificate in PEM form, or — on systems where
113 (5) :menuselection:`Additional X.509 keys for default system keyring`
207 ``.builtin_trusted_keys`` **if** the new key's X.509 wrapper is validly signed by a key
|
| /kernel/linux/linux-6.6/Documentation/admin-guide/ |
| D | module-signing.rst | 29 This facility uses X.509 ITU-T standard certificates to encode the public keys
103 and its corresponding X.509 certificate in PEM form, or — on systems where
113 (5) :menuselection:`Additional X.509 keys for default system keyring`
207 ``.builtin_trusted_keys`` **if** the new key's X.509 wrapper is validly signed by a key
|
| /kernel/linux/linux-5.10/scripts/ |
| D | sign-file.c | 43 * the options we have on specifying the X.509 certificate we want.
204 /* Assume raw DER encoded X.509 */ in read_x509()
207 /* Assume PEM encoded X.509 */ in read_x509()
301 /* Read the private key and the X.509 cert the PKCS#7 message in main()
|
| D | extract-cert.c | 1 /* Extract X.509 certificate in DER form from PKCS#11 or PEM.
142 ERR(!parms.cert, "Get X.509 from PKCS#11"); in main()
|