[linux-block.git] / crypto / asymmetric_keys / pkcs7_parser.h

/* SPDX-License-Identifier: GPL-2.0-or-later */
/* PKCS#7 crypto data parser internal definitions
 *
 * Copyright (C) 2012 Red Hat, Inc. All Rights Reserved.
 * Written by David Howells (dhowells@redhat.com)
 */

#include <linux/oid_registry.h>
#include <crypto/pkcs7.h>
#include "x509_parser.h"

#define kenter(FMT, ...) \
	pr_devel("==> %s("FMT")\n", __func__, ##__VA_ARGS__)
#define kleave(FMT, ...) \
	pr_devel("<== %s()"FMT"\n", __func__, ##__VA_ARGS__)

struct pkcs7_signed_info {
	struct pkcs7_signed_info *next;
	struct x509_certificate *signer; /* Signing certificate (in msg->certs) */
	unsigned	index;
	bool		unsupported_crypto;	/* T if not usable due to missing crypto */
	bool		blacklisted;

	/* Message digest - the digest of the Content Data (or NULL) */
	const void	*msgdigest;
	unsigned	msgdigest_len;

	/* Authenticated Attribute data (or NULL) */
	unsigned	authattrs_len;
	const void	*authattrs;
	unsigned long	aa_set;
#define	sinfo_has_content_type		0
#define	sinfo_has_signing_time		1
#define	sinfo_has_message_digest	2
#define sinfo_has_smime_caps		3
#define	sinfo_has_ms_opus_info		4
#define	sinfo_has_ms_statement_type	5
	time64_t	signing_time;

	/* Message signature.
	 *
	 * This contains the generated digest of _either_ the Content Data or
	 * the Authenticated Attributes [RFC2315 9.3].  If the latter, one of
	 * the attributes contains the digest of the the Content Data within
	 * it.
	 *
	 * THis also contains the issuing cert serial number and issuer's name
	 * [PKCS#7 or CMS ver 1] or issuing cert's SKID [CMS ver 3].
	 */
	struct public_key_signature *sig;
};

struct pkcs7_message {
	struct x509_certificate *certs;	/* Certificate list */
	struct x509_certificate *crl;	/* Revocation list */
	struct pkcs7_signed_info *signed_infos;
	u8		version;	/* Version of cert (1 -> PKCS#7 or CMS; 3 -> CMS) */
	bool		have_authattrs;	/* T if have authattrs */

	/* Content Data (or NULL) */
	enum OID	data_type;	/* Type of Data */
	size_t		data_len;	/* Length of Data */
	size_t		data_hdrlen;	/* Length of Data ASN.1 header */
	const void	*data;		/* Content Data (or 0) */
};
Commit	Line	Data
b4d0d230	1	/* SPDX-License-Identifier: GPL-2.0-or-later */
2e3fadbf DH	2	/* PKCS#7 crypto data parser internal definitions
	3	*
	4	* Copyright (C) 2012 Red Hat, Inc. All Rights Reserved.
	5	* Written by David Howells (dhowells@redhat.com)
2e3fadbf DH	6	*/
	7
	8	#include <linux/oid_registry.h>
	9	#include <crypto/pkcs7.h>
	10	#include "x509_parser.h"
	11
	12	#define kenter(FMT, ...) \
	13	pr_devel("==> %s("FMT")\n", __func__, ##__VA_ARGS__)
	14	#define kleave(FMT, ...) \
	15	pr_devel("<== %s()"FMT"\n", __func__, ##__VA_ARGS__)
	16
	17	struct pkcs7_signed_info {
	18	struct pkcs7_signed_info *next;
	19	struct x509_certificate signer; / Signing certificate (in msg->certs) */
99db4435	20	unsigned index;
99db4435	21	bool unsupported_crypto; /* T if not usable due to missing crypto */
03bb7931	22	bool blacklisted;
2e3fadbf DH	23
	24	/* Message digest - the digest of the Content Data (or NULL) */
	25	const void *msgdigest;
	26	unsigned msgdigest_len;
	27
	28	/* Authenticated Attribute data (or NULL) */
	29	unsigned authattrs_len;
	30	const void *authattrs;
99db4435 DH	31	unsigned long aa_set;
	32	#define sinfo_has_content_type 0
	33	#define sinfo_has_signing_time 1
	34	#define sinfo_has_message_digest 2
	35	#define sinfo_has_smime_caps 3
	36	#define sinfo_has_ms_opus_info 4
	37	#define sinfo_has_ms_statement_type 5
	38	time64_t signing_time;
2e3fadbf	39
2e3fadbf DH	40	/* Message signature.
	41	*
	42	* This contains the generated digest of _either_ the Content Data or
	43	* the Authenticated Attributes [RFC2315 9.3]. If the latter, one of
	44	* the attributes contains the digest of the the Content Data within
	45	* it.
566a117a DH	46	*
	47	* THis also contains the issuing cert serial number and issuer's name
	48	* [PKCS#7 or CMS ver 1] or issuing cert's SKID [CMS ver 3].
2e3fadbf	49	*/
566a117a	50	struct public_key_signature *sig;
2e3fadbf DH	51	};
	52
	53	struct pkcs7_message {
	54	struct x509_certificate certs; / Certificate list */
	55	struct x509_certificate crl; / Revocation list */
	56	struct pkcs7_signed_info *signed_infos;
60d65cac	57	u8 version; /* Version of cert (1 -> PKCS#7 or CMS; 3 -> CMS) */
99db4435	58	bool have_authattrs; /* T if have authattrs */
2e3fadbf DH	59
	60	/* Content Data (or NULL) */
	61	enum OID data_type; /* Type of Data */
	62	size_t data_len; /* Length of Data */
	63	size_t data_hdrlen; /* Length of Data ASN.1 header */
	64	const void data; / Content Data (or 0) */
	65	};