Back to home page

OSCL-LXR
 
 

     

0001 /* SPDX-License-Identifier: GPL-2.0-or-later */
0002 /* Signature verification
0003  *
0004  * Copyright (C) 2014 Red Hat, Inc. All Rights Reserved.
0005  * Written by David Howells (dhowells@redhat.com)
0006  */
0007 
0008 #ifndef _LINUX_VERIFICATION_H
0009 #define _LINUX_VERIFICATION_H
0010 
0011 #include <linux/types.h>
0012 
0013 /*
0014  * Indicate that both builtin trusted keys and secondary trusted keys
0015  * should be used.
0016  */
0017 #define VERIFY_USE_SECONDARY_KEYRING ((struct key *)1UL)
0018 #define VERIFY_USE_PLATFORM_KEYRING  ((struct key *)2UL)
0019 
0020 /*
0021  * The use to which an asymmetric key is being put.
0022  */
0023 enum key_being_used_for {
0024     VERIFYING_MODULE_SIGNATURE,
0025     VERIFYING_FIRMWARE_SIGNATURE,
0026     VERIFYING_KEXEC_PE_SIGNATURE,
0027     VERIFYING_KEY_SIGNATURE,
0028     VERIFYING_KEY_SELF_SIGNATURE,
0029     VERIFYING_UNSPECIFIED_SIGNATURE,
0030     NR__KEY_BEING_USED_FOR
0031 };
0032 extern const char *const key_being_used_for[NR__KEY_BEING_USED_FOR];
0033 
0034 #ifdef CONFIG_SYSTEM_DATA_VERIFICATION
0035 
0036 struct key;
0037 struct pkcs7_message;
0038 
0039 extern int verify_pkcs7_signature(const void *data, size_t len,
0040                   const void *raw_pkcs7, size_t pkcs7_len,
0041                   struct key *trusted_keys,
0042                   enum key_being_used_for usage,
0043                   int (*view_content)(void *ctx,
0044                               const void *data, size_t len,
0045                               size_t asn1hdrlen),
0046                   void *ctx);
0047 extern int verify_pkcs7_message_sig(const void *data, size_t len,
0048                     struct pkcs7_message *pkcs7,
0049                     struct key *trusted_keys,
0050                     enum key_being_used_for usage,
0051                     int (*view_content)(void *ctx,
0052                             const void *data,
0053                             size_t len,
0054                             size_t asn1hdrlen),
0055                     void *ctx);
0056 
0057 #ifdef CONFIG_SIGNED_PE_FILE_VERIFICATION
0058 extern int verify_pefile_signature(const void *pebuf, unsigned pelen,
0059                    struct key *trusted_keys,
0060                    enum key_being_used_for usage);
0061 #endif
0062 
0063 #endif /* CONFIG_SYSTEM_DATA_VERIFICATION */
0064 #endif /* _LINUX_VERIFY_PEFILE_H */
Source navigation ] Diff markup ] Identifier search ] general search ]

This page was automatically generated by the 2.1.0 LXR engine.

The LXR team
Valid CSS 2.1! Valid HTML 4.01!