Home
last modified time | relevance | path

Searched refs:x509 (Results 1 – 25 of 80) sorted by relevance

1234

/OK3568_Linux_fs/kernel/crypto/asymmetric_keys/
H A Dpkcs7_trust.c27 struct x509_certificate *x509, *last = NULL, *p; in pkcs7_validate_trust_one() local
38 for (x509 = sinfo->signer; x509; x509 = x509->signer) { in pkcs7_validate_trust_one()
39 if (x509->seen) { in pkcs7_validate_trust_one()
40 if (x509->verified) in pkcs7_validate_trust_one()
45 x509->seen = true; in pkcs7_validate_trust_one()
51 x509->id, x509->skid, false); in pkcs7_validate_trust_one()
59 sinfo->index, x509->index, key_serial(key)); in pkcs7_validate_trust_one()
68 if (x509->signer == x509) { in pkcs7_validate_trust_one()
74 last = x509; in pkcs7_validate_trust_one()
87 x509 = last; in pkcs7_validate_trust_one()
[all …]
H A Dpkcs7_verify.c162 struct x509_certificate *x509; in pkcs7_find_key() local
167 for (x509 = pkcs7->certs; x509; x509 = x509->next, certix++) { in pkcs7_find_key()
173 if (!asymmetric_key_id_same(x509->id, sinfo->sig->auth_ids[0])) in pkcs7_find_key()
178 if (strcmp(x509->pub->pkey_algo, sinfo->sig->pkey_algo) != 0) { in pkcs7_find_key()
184 sinfo->signer = x509; in pkcs7_find_key()
204 struct x509_certificate *x509 = sinfo->signer, *p; in pkcs7_verify_sig_chain() local
215 x509->subject, in pkcs7_verify_sig_chain()
216 x509->raw_serial_size, x509->raw_serial); in pkcs7_verify_sig_chain()
217 x509->seen = true; in pkcs7_verify_sig_chain()
219 if (x509->blacklisted) { in pkcs7_verify_sig_chain()
[all …]
H A DMakefile21 x509.asn1.o \
27 $(obj)/x509.asn1.h \
30 $(obj)/x509.asn1.o: $(obj)/x509.asn1.c $(obj)/x509.asn1.h
H A Dpkcs7_parser.c381 struct x509_certificate *x509; in pkcs7_extract_cert() local
400 x509 = x509_cert_parse(value, vlen); in pkcs7_extract_cert()
401 if (IS_ERR(x509)) in pkcs7_extract_cert()
402 return PTR_ERR(x509); in pkcs7_extract_cert()
404 x509->index = ++ctx->x509_index; in pkcs7_extract_cert()
405 pr_debug("Got cert %u for %s\n", x509->index, x509->subject); in pkcs7_extract_cert()
406 pr_debug("- fingerprint %*phN\n", x509->id->len, x509->id->data); in pkcs7_extract_cert()
408 *ctx->ppcerts = x509; in pkcs7_extract_cert()
409 ctx->ppcerts = &x509->next; in pkcs7_extract_cert()
/OK3568_Linux_fs/kernel/certs/
H A DMakefile33 clean-files := x509_certificate_list .x509.list x509_revocation_list
58 X509TEXT=$(shell openssl x509 -in "certs/signing_key.pem" -text 2>/dev/null)
63 $(obj)/signing_key.pem: $(obj)/x509.genkey
73 -batch -x509 -config $(obj)/x509.genkey \
81 $(obj)/x509.genkey:
110 $(obj)/system_certificates.o: $(obj)/signing_key.x509
112 targets += signing_key.x509
113 $(obj)/signing_key.x509: scripts/extract-cert $(X509_DEP) FORCE
/OK3568_Linux_fs/kernel/scripts/
H A Dextract-cert.c85 static void write_cert(X509 *x509) in write_cert() argument
93 X509_NAME_oneline(X509_get_subject_name(x509), buf, sizeof(buf)); in write_cert()
94 ERR(!i2d_X509_bio(wb, x509), "%s", cert_dst); in write_cert()
153 X509 *x509; in main() local
159 x509 = PEM_read_bio_X509(b, NULL, NULL, NULL); in main()
160 if (wb && !x509) { in main()
168 ERR(!x509, "%s", cert_src); in main()
169 write_cert(x509); in main()
H A Dsign-file.c180 X509 *x509; in read_x509() local
205 x509 = d2i_X509_bio(b, NULL); in read_x509()
208 x509 = PEM_read_bio_X509(b, NULL, NULL, NULL); in read_x509()
211 ERR(!x509, "%s", x509_name); in read_x509()
213 return x509; in read_x509()
236 X509 *x509; in main() local
305 x509 = read_x509(x509_name); in main()
320 ERR(!CMS_add1_signer(cms, x509, private_key, digest_algo, in main()
329 pkcs7 = PKCS7_sign(x509, private_key, NULL, bm, in main()
/OK3568_Linux_fs/external/security/rk_tee_user/v2/export-ta_arm64/include/openssl/
H A Dx509.h337 X509 *x509; member
390 OPENSSL_EXPORT long X509_get_version(const X509 *x509);
396 OPENSSL_EXPORT int X509_set_version(X509 *x509, long version);
399 OPENSSL_EXPORT const ASN1_INTEGER *X509_get0_serialNumber(const X509 *x509);
403 OPENSSL_EXPORT int X509_set_serialNumber(X509 *x509,
407 OPENSSL_EXPORT const ASN1_TIME *X509_get0_notBefore(const X509 *x509);
410 OPENSSL_EXPORT const ASN1_TIME *X509_get0_notAfter(const X509 *x509);
414 OPENSSL_EXPORT int X509_set1_notBefore(X509 *x509, const ASN1_TIME *tm);
418 OPENSSL_EXPORT int X509_set1_notAfter(X509 *x509, const ASN1_TIME *tm);
421 OPENSSL_EXPORT ASN1_TIME *X509_getm_notBefore(X509 *x509);
[all …]
/OK3568_Linux_fs/external/security/rk_tee_user/v2/export-ta_arm32/host_include/openssl/
H A Dx509.h337 X509 *x509; member
390 OPENSSL_EXPORT long X509_get_version(const X509 *x509);
396 OPENSSL_EXPORT int X509_set_version(X509 *x509, long version);
399 OPENSSL_EXPORT const ASN1_INTEGER *X509_get0_serialNumber(const X509 *x509);
403 OPENSSL_EXPORT int X509_set_serialNumber(X509 *x509,
407 OPENSSL_EXPORT const ASN1_TIME *X509_get0_notBefore(const X509 *x509);
410 OPENSSL_EXPORT const ASN1_TIME *X509_get0_notAfter(const X509 *x509);
414 OPENSSL_EXPORT int X509_set1_notBefore(X509 *x509, const ASN1_TIME *tm);
418 OPENSSL_EXPORT int X509_set1_notAfter(X509 *x509, const ASN1_TIME *tm);
421 OPENSSL_EXPORT ASN1_TIME *X509_getm_notBefore(X509 *x509);
[all …]
/OK3568_Linux_fs/external/security/rk_tee_user/v2/export-ta_arm64/host_include/openssl/
H A Dx509.h337 X509 *x509; member
390 OPENSSL_EXPORT long X509_get_version(const X509 *x509);
396 OPENSSL_EXPORT int X509_set_version(X509 *x509, long version);
399 OPENSSL_EXPORT const ASN1_INTEGER *X509_get0_serialNumber(const X509 *x509);
403 OPENSSL_EXPORT int X509_set_serialNumber(X509 *x509,
407 OPENSSL_EXPORT const ASN1_TIME *X509_get0_notBefore(const X509 *x509);
410 OPENSSL_EXPORT const ASN1_TIME *X509_get0_notAfter(const X509 *x509);
414 OPENSSL_EXPORT int X509_set1_notBefore(X509 *x509, const ASN1_TIME *tm);
418 OPENSSL_EXPORT int X509_set1_notAfter(X509 *x509, const ASN1_TIME *tm);
421 OPENSSL_EXPORT ASN1_TIME *X509_getm_notBefore(X509 *x509);
[all …]
/OK3568_Linux_fs/external/security/rk_tee_user/v2/export-ta_arm32/include/openssl/
H A Dx509.h337 X509 *x509; member
390 OPENSSL_EXPORT long X509_get_version(const X509 *x509);
396 OPENSSL_EXPORT int X509_set_version(X509 *x509, long version);
399 OPENSSL_EXPORT const ASN1_INTEGER *X509_get0_serialNumber(const X509 *x509);
403 OPENSSL_EXPORT int X509_set_serialNumber(X509 *x509,
407 OPENSSL_EXPORT const ASN1_TIME *X509_get0_notBefore(const X509 *x509);
410 OPENSSL_EXPORT const ASN1_TIME *X509_get0_notAfter(const X509 *x509);
414 OPENSSL_EXPORT int X509_set1_notBefore(X509 *x509, const ASN1_TIME *tm);
418 OPENSSL_EXPORT int X509_set1_notAfter(X509 *x509, const ASN1_TIME *tm);
421 OPENSSL_EXPORT ASN1_TIME *X509_getm_notBefore(X509 *x509);
[all …]
/OK3568_Linux_fs/yocto/poky/meta/recipes-connectivity/openssl/openssl/
H A DCVE-2023-0464.patch4 Subject: [PATCH] x509: excessive resource use verifying policy constraints
23 crypto/x509/pcy_local.h | 8 +++++++-
24 crypto/x509/pcy_node.c | 12 +++++++++---
25 crypto/x509/pcy_tree.c | 36 ++++++++++++++++++++++++++----------
28 diff --git a/crypto/x509/pcy_local.h b/crypto/x509/pcy_local.h
30 --- a/crypto/x509/pcy_local.h
31 +++ b/crypto/x509/pcy_local.h
54 diff --git a/crypto/x509/pcy_node.c b/crypto/x509/pcy_node.c
56 --- a/crypto/x509/pcy_node.c
57 +++ b/crypto/x509/pcy_node.c
[all …]
H A DCVE-2023-0465.patch21 crypto/x509/x509_vfy.c | 12 ++++++++++--
24 diff --git a/crypto/x509/x509_vfy.c b/crypto/x509/x509_vfy.c
26 --- a/crypto/x509/x509_vfy.c
27 +++ b/crypto/x509/x509_vfy.c
/OK3568_Linux_fs/buildroot/package/easy-rsa/
H A Deasy-rsa.mk17 $(INSTALL) -d -m 0755 $(TARGET_DIR)/etc/easy-rsa/x509-types
18 $(INSTALL) -m 0644 -t $(TARGET_DIR)/etc/easy-rsa/x509-types $(@D)/x509-types/*
/OK3568_Linux_fs/external/security/rk_tee_user/v2/cert/
H A DREADME.txt7 openssl req -new -x509 -key ca.key -out ca.crt -days 10000 -batch
13 openssl x509 -req -in mid.csr -extfile mid.ext -CA ca.crt -CAkey ca.key -CAcreateserial -out mid.cr…
20 openssl x509 -req -in my.csr -CA mid.crt -CAkey mid.key -CAcreateserial -out my.crt -days 10000
/OK3568_Linux_fs/external/security/rk_tee_user/v2/host/openssl/include/openssl/
H A Dpkcs7.h294 int PKCS7_SIGNER_INFO_set(PKCS7_SIGNER_INFO *p7i, X509 *x509, EVP_PKEY *pkey,
298 int PKCS7_add_certificate(PKCS7 *p7, X509 *x509);
299 int PKCS7_add_crl(PKCS7 *p7, X509_CRL *x509);
304 X509 *x509);
310 PKCS7_SIGNER_INFO *PKCS7_add_signature(PKCS7 *p7, X509 *x509,
316 PKCS7_RECIP_INFO *PKCS7_add_recipient(PKCS7 *p7, X509 *x509);
321 int PKCS7_RECIP_INFO_set(PKCS7_RECIP_INFO *p7i, X509 *x509);
H A Dssl.h999 int (*client_cert_cb) (SSL *ssl, X509 **x509, EVP_PKEY **pkey);
1252 int (*client_cert_cb) (SSL *ssl, X509 **x509,
1254 int (*SSL_CTX_get_client_cert_cb(SSL_CTX *ctx)) (SSL *ssl, X509 **x509,
2014 # define SSL_CTX_add_extra_chain_cert(ctx,x509) \ argument
2015 SSL_CTX_ctrl(ctx,SSL_CTRL_EXTRA_CHAIN_CERT,0,(char *)x509)
2026 # define SSL_CTX_add0_chain_cert(ctx,x509) \ argument
2027 SSL_CTX_ctrl(ctx,SSL_CTRL_CHAIN_CERT,0,(char *)x509)
2028 # define SSL_CTX_add1_chain_cert(ctx,x509) \ argument
2029 SSL_CTX_ctrl(ctx,SSL_CTRL_CHAIN_CERT,1,(char *)x509)
2036 # define SSL_CTX_select_current_cert(ctx,x509) \ argument
[all …]
/OK3568_Linux_fs/yocto/poky/meta/recipes-support/gnutls/gnutls/
H A DCVE-2022-2509.patch11 lib/x509/pkcs7.c | 3 +-
32 diff --git a/lib/x509/pkcs7.c b/lib/x509/pkcs7.c
34 --- a/lib/x509/pkcs7.c
35 +++ b/lib/x509/pkcs7.c
92 +#include <gnutls/x509.h>
/OK3568_Linux_fs/kernel/Documentation/admin-guide/
H A Dmodule-signing.rst144 certs/x509.genkey
148 It is strongly recommended that you provide your own x509.genkey file.
150 Most notably, in the x509.genkey file, the req_distinguished_name section
165 x509.genkey key generation configuration file in the root node of the Linux
169 openssl req -new -nodes -utf8 -sha256 -days 36500 -batch -x509 \
170 -config x509.genkey -outform PEM -out kernel_key.pem \
204 keyctl padd asymmetric "" 0x223c7853 <my_public_key.x509
226 kernel-signkey.x509 module.ko
/OK3568_Linux_fs/app/forlinx/flapp/src/plugins/allwinner/camera/CameraUI/
H A D.gitignore96 signing_key.x509
97 x509.genkey
/OK3568_Linux_fs/yocto/meta-openembedded/meta-oe/recipes-support/xmlsec1/xmlsec1/
H A Drun-ptest27 check_return sign-x509
44 check_return verify-x509
/OK3568_Linux_fs/buildroot/package/pound/
H A D0002-fix-openssl-1.1.0.patch44 get_subjectaltnames(X509 *x509, unsigned int *count)
46 @@ -194,8 +204,7 @@ get_subjectaltnames(X509 *x509, unsigned int *count)
89 if(x509 != NULL) { X509_free(x509); x509 = NULL; } \
/OK3568_Linux_fs/yocto/poky/meta/recipes-support/ca-certificates/ca-certificates/
H A D0001-Revert-mozilla-certdata2pem.py-print-a-warning-for-e.patch58 -from cryptography import x509
69 - cert = x509.load_der_x509_certificate(obj['CKA_VALUE'])
/OK3568_Linux_fs/yocto/meta-openembedded/meta-networking/recipes-connectivity/freeradius/files/
H A D0001-raddb-certs-Makefile-fix-the-occasional-verification.patch48 - $(OPENSSL) req -new -x509 -keyout ca.key -out ca.pem \
49 + @[ -f ca.pem ] || $(OPENSSL) req -new -x509 -keyout ca.key -out ca.pem \
55 - $(OPENSSL) x509 -inform PEM -outform DER -in ca.pem -out ca.der
56 + @[ -f ca.der ] || $(OPENSSL) x509 -inform PEM -outform DER -in ca.pem -out ca.der
/OK3568_Linux_fs/kernel/
H A D.gitignore50 crypto/asymmetric_keys/x509.asn1.c
51 crypto/asymmetric_keys/x509.asn1.h

1234