aboutsummaryrefslogtreecommitdiffstats
path: root/crypto/asymmetric_keys
AgeCommit message (Expand)AuthorFilesLines
2024-03-22Revert "crypto: pkcs7 - remove sha1 support"Eric Biggers5-2/+18
2024-01-26crypto: asymmetric_keys - remove redundant pointer secsColin Ian King1-2/+2
2023-11-02Merge tag 'v6.7-p1' of git://git.kernel.org/pub/scm/linux/kernel/git/herbert/...Linus Torvalds14-66/+106
2023-11-02Merge tag 'integrity-v6.7' of git://git.kernel.org/pub/scm/linux/kernel/git/z...Linus Torvalds1-0/+4
2023-10-31certs: Only allow certs signed by keys on the builtin keyringMimi Zohar1-0/+4
2023-10-27crypto: asymmetric_keys - allow FIPS 202 SHA-3 signaturesDimitri John Ledkov4-1/+49
2023-10-27treewide: Add SPDX identifier to IETF ASN.1 modulesLukas Wunner4-0/+25
2023-10-27certs: Break circular dependency when selftest is modularHerbert Xu5-21/+15
2023-10-20crypto: mscode_parser - remove sha224 authenticode supportDimitri John Ledkov1-3/+0
2023-10-20crypto: pkcs7 - remove sha1 supportDimitri John Ledkov5-18/+2
2023-10-18KEYS: asymmetric: Fix sign/verify on pkcs1pad without a hashHerbert Xu1-3/+2
2023-10-05crypto: pkcs7 - remove md4 md5 x.509 supportDimitri John Ledkov3-18/+0
2023-10-05X.509: Add missing IMPLICIT annotations to AKID ASN.1 moduleLukas Wunner1-7/+17
2023-08-29Merge tag 'v6.6-p1' of git://git.kernel.org/pub/scm/linux/kernel/git/herbert/...Linus Torvalds3-5/+10
2023-08-25X.509: if signature is unsupported skip validationThore Sommer1-0/+5
2023-08-17KEYS: DigitalSignature link restrictionEric Snowberg1-0/+44
2023-07-28KEYS: use kfree_sensitive with keyMahmoud Adam1-4/+4
2023-07-14KEYS: fix kernel-doc warnings in verify_pefileGaosheng Cui1-1/+1
2023-07-07KEYS: asymmetric: Fix error codesDan Carpenter1-5/+15
2023-06-23KEYS: asymmetric: Use new crypto interface without scatterlistsHerbert Xu1-97/+137
2023-06-23KEYS: asymmetric: Move sm2 code into x509_public_keyHerbert Xu2-75/+21
2023-04-27Merge tag 'modules-6.4-rc1' of git://git.kernel.org/pub/scm/linux/kernel/git/...Linus Torvalds1-1/+0
2023-04-24integrity: machine keyring CA configurationEric Snowberg1-0/+2
2023-04-24KEYS: CA link restrictionEric Snowberg1-0/+38
2023-04-24KEYS: X.509: Parse Key UsageEric Snowberg1-0/+28
2023-04-24KEYS: X.509: Parse Basic Constraints for CAEric Snowberg1-0/+22
2023-04-13KEYS: remove MODULE_LICENSE in non-modulesNick Alcock1-1/+0
2023-03-21asymmetric_keys: log on fatal failures in PE/pkcs7Robbie Harwood2-17/+17
2023-03-21verify_pefile: relax wrapper length checkRobbie Harwood1-4/+8
2023-02-21Merge tag 'net-next-6.3' of git://git.kernel.org/pub/scm/linux/kernel/git/net...Linus Torvalds1-0/+1
2023-02-13KEYS: asymmetric: Fix ECDSA use via keyctl uapiDenis Kenzior1-2/+22
2023-02-13crypto: certs: fix FIPS selftest dependencyArnd Bergmann2-1/+2
2023-01-19wifi: cfg80211: Deduplicate certificate loadingLukas Wunner1-0/+1
2022-08-03KEYS: asymmetric: enforce SM2 signature use pkey algoTianjia Zhang1-2/+5
2022-08-03pkcs7: support EC-RDSA/streebog in SignerInfoElvira Khabirova1-0/+11
2022-08-03pkcs7: parser support SM2 and SM3 algorithms combinationTianjia Zhang1-0/+7
2022-08-03X.509: Support parsing certificate using SM2 algorithmTianjia Zhang1-0/+3
2022-06-21certs: Add FIPS selftestsDavid Howells5-1/+251
2022-06-21certs: Move load_certificate_list() to be with the asymmetric keys codeDavid Howells2-0/+58
2022-05-23certs: Factor out the blacklist hash creationMickaël Salaün1-1/+2
2022-03-21Merge branch 'linus' of git://git.kernel.org/pub/scm/linux/kernel/git/herbert...Linus Torvalds2-2/+2
2022-03-10KEYS: asymmetric: properly validate hash_algo and encodingEric Biggers1-35/+76
2022-03-10KEYS: asymmetric: enforce that sig algo matches key algoEric Biggers3-12/+15
2022-03-08KEYS: remove support for asym_tpm keysEric Biggers5-1097/+0
2022-03-08KEYS: x509: remove dead code that set ->unsupported_sigEric Biggers1-9/+0
2022-03-08KEYS: x509: remove never-set ->unsupported_key flagEric Biggers3-15/+2
2022-03-08KEYS: x509: remove unused fieldsEric Biggers1-2/+0
2022-03-08KEYS: x509: clearly distinguish between key and signature algorithmsEric Biggers2-15/+19
2022-03-03crypto: cleanup commentsTom Rix2-2/+2
2022-01-09keys: X.509 public key issuer lookup without AKIDAndrew Zaborowski5-35/+96
2021-08-23certs: Add support for using elliptic curve keys for signing modulesStefan Berger1-0/+8
2021-03-26x509: Add OID for NIST P384 and extend parser for itSaulo Alessandre1-0/+3
2021-03-26x509: Add support for parsing x509 certs with ECDSA keysStefan Berger3-3/+39
2021-03-26x509: Detect sm2 keys by their parameters OIDStefan Berger1-1/+11
2021-02-23Merge tag 'keys-misc-20210126' of git://git.kernel.org/pub/scm/linux/kernel/g...Linus Torvalds4-11/+11
2021-02-16keys: Update comment for restrict_link_by_key_or_keyring_chainAndrew Zaborowski1-3/+4
2021-01-21crypto: pkcs7: Use match_string() helper to simplify the codeYueHaibing1-5/+4
2021-01-21PKCS#7: drop function from kernel-doc pkcs7_validate_trust_oneAlex Shi1-1/+1
2021-01-21crypto: asymmetric_keys: fix some comments in pkcs7_parser.hRandy Dunlap1-3/+2
2021-01-21KEYS: asymmetric: Fix kerneldocKrzysztof Kozlowski1-2/+4
2021-01-20X.509: Fix crash caused by NULL pointerTianjia Zhang1-1/+2
2020-12-31crypto: asym_tpm: correct zero out potential secretsGreg Kroah-Hartman1-1/+1
2020-11-20crypto: sha - split sha.h into sha1.h and sha2.hEric Biggers1-1/+1
2020-10-08X.509: Fix modular build of public_key_sm2Herbert Xu3-64/+57
2020-10-08X.509: fix error return value on the failed pathTianjia Zhang1-1/+3
2020-09-25X.509: support OSCCA SM2-with-SM3 certificate verificationTianjia Zhang4-0/+71
2020-09-25X.509: support OSCCA certificate parseTianjia Zhang1-5/+22
2020-08-07mm, treewide: rename kzfree() to kfree_sensitive()Waiman Long1-2/+2
2020-08-04Merge tag 'docs-5.9' of git://git.lwn.net/linuxLinus Torvalds3-3/+3
2020-07-15keys: asymmetric: fix error return code in software_key_query()Wei Yongjun1-0/+1
2020-06-19docs: crypto: convert asymmetric-keys.txt to ReSTMauro Carvalho Chehab3-3/+3
2019-12-12KEYS: asymmetric: return ENOMEM if akcipher_request_alloc() failsEric Biggers2-0/+2
2019-11-12KEYS: trusted: Create trusted keys subsystemSumit Garg1-1/+1
2019-11-12KEYS: Use common tpm_buf for trusted and asymmetric keysSumit Garg1-62/+45
2019-11-12tpm: Move tpm_buf code to include/linux/Sumit Garg1-6/+6
2019-09-28Merge branch 'next-lockdown' of git://git.kernel.org/pub/scm/linux/kernel/git...Linus Torvalds1-1/+3
2019-08-19kexec_file: split KEXEC_VERIFY_SIG into KEXEC_SIG and KEXEC_SIG_FORCEJiri Bohac1-1/+3
2019-08-05PKCS#7: Introduce pkcs7_get_digest()Thiago Jung Bauermann1-0/+33
2019-07-08Merge branch 'linus' of git://git.kernel.org/pub/scm/linux/kernel/git/herbert...Linus Torvalds1-0/+3
2019-07-08Merge tag 'keys-namespace-20190627' of git://git.kernel.org/pub/scm/linux/ker...Linus Torvalds1-1/+1
2019-06-27crypto: asymmetric_keys - select CRYPTO_HASH where neededArnd Bergmann1-0/+3
2019-06-26keys: Add a 'recurse' flag for keyring searchesDavid Howells1-1/+1
2019-05-24treewide: Replace GPLv2 boilerplate/reference with SPDX - rule 36Thomas Gleixner17-85/+17
2019-04-25crypto: shash - remove shash_desc::flagsEric Biggers3-3/+0
2019-04-18crypto: ecrdsa - add EC-RDSA (GOST 34.10) algorithmVitaly Chikunov1-4/+22
2019-04-18X.509: parse public key parameters from x509 for akcipherVitaly Chikunov4-17/+97
2019-04-18KEYS: do not kmemdup digest in {public,tpm}_key_verify_signatureVitaly Chikunov2-17/+2
2019-04-18crypto: akcipher - new verify API for public key algorithmsVitaly Chikunov2-48/+20
2018-10-26KEYS: asym_tpm: Add support for the sign operation [ver #2]Denis Kenzior1-1/+155
2018-10-26KEYS: asym_tpm: Implement tpm_sign [ver #2]Denis Kenzior1-0/+87
2018-10-26KEYS: asym_tpm: Implement signature verification [ver #2]Denis Kenzior1-6/+100
2018-10-26KEYS: asym_tpm: Implement the decrypt operation [ver #2]Denis Kenzior1-1/+57
2018-10-26KEYS: asym_tpm: Implement tpm_unbind [ver #2]Denis Kenzior1-0/+82
2018-10-26KEYS: asym_tpm: Add loadkey2 and flushspecific [ver #2]Denis Kenzior1-0/+94
2018-10-26KEYS: trusted: Expose common functionality [ver #2]Denis Kenzior1-0/+1
2018-10-26KEYS: asym_tpm: Implement encryption operation [ver #2]Denis Kenzior1-0/+84
2018-10-26KEYS: asym_tpm: Implement pkey_query [ver #2]Denis Kenzior1-0/+135
2018-10-26KEYS: Add parser for TPM-based keys [ver #2]Denis Kenzior4-0/+127
2018-10-26KEYS: asym_tpm: extract key size & public key [ver #2]Denis Kenzior1-0/+112
2018-10-26KEYS: asym_tpm: add skeleton for asym_tpm [ver #2]Denis Kenzior3-0/+102
2018-10-26KEYS: Implement PKCS#8 RSA Private Key parser [ver #2]David Howells4-0/+231
2018-10-26KEYS: Implement encrypt, decrypt and sign for software asymmetric key [ver #2]David Howells1-1/+81
2018-10-26KEYS: Allow the public_key struct to hold a private key [ver #2]David Howells1-2/+12
2018-10-26KEYS: Provide software public key query function [ver #2]David Howells1-17/+82
2018-10-26KEYS: Make the X.509 and PKCS7 parsers supply the sig encoding type [ver #2]David Howells2-12/+10
2018-10-26KEYS: Provide missing asymmetric key subops for new key type ops [ver #2]David Howells3-0/+141
2018-08-16Replace magic for trusting the secondary keyring with #defineYannik Sembritzki1-1/+1
2018-06-25X.509: unpack RSA signatureValue field from BIT STRINGMaciej S. Szmigiero1-0/+9
2018-06-15docs: Fix some broken referencesMauro Carvalho Chehab2-2/+2
2018-04-07kbuild: rename *-asn1.[ch] to *.asn1.[ch]Masahiro Yamada4-16/+16
2018-04-07kbuild: clean up *-asn1.[ch] patterns from top-level MakefileMasahiro Yamada1-7/+0
2018-04-07.gitignore: move *-asn1.[ch] patterns to the top-level .gitignoreMasahiro Yamada1-1/+0
2018-02-22X.509: fix NULL dereference when restricting key with unsupported_sigEric Biggers1-8/+13
2018-02-22X.509: fix BUG_ON() when hash algorithm is unsupportedEric Biggers1-1/+3
2018-02-22PKCS#7: fix direct verification of SignerInfo signatureEric Biggers1-0/+1
2018-02-22PKCS#7: fix certificate blacklistingEric Biggers1-4/+6
2018-02-22PKCS#7: fix certificate chain verificationEric Biggers1-1/+1
2017-12-08X.509: fix comparisons of ->pkey_algoEric Biggers2-2/+2
2017-12-08X.509: use crypto_shash_digest()Eric Biggers1-5/+1
2017-12-08KEYS: be careful with error codes in public_key_verify_signature()Eric Biggers1-2/+5
2017-12-08pkcs7: use crypto_shash_digest()Eric Biggers1-5/+2
2017-12-08pkcs7: fix check for self-signed certificateEric Biggers1-1/+1
2017-12-08pkcs7: return correct error code if pkcs7_check_authattrs() failsEric Biggers1-1/+3
2017-12-08X.509: reject invalid BIT STRING for subjectPublicKeyEric Biggers1-0/+2
2017-11-15pkcs7: Set the module licence to prevent taintingDavid Howells4-0/+9
2017-11-14Merge branch 'linus' of git://git.kernel.org/pub/scm/linux/kernel/git/herbert...Linus Torvalds1-24/+4
2017-11-03crypto: move pub key to generic async completionGilad Ben-Yossef1-24/+4
2017-11-02License cleanup: add SPDX GPL-2.0 license identifier to files with no licenseGreg Kroah-Hartman2-0/+2
2017-10-18pkcs7: Prevent NULL pointer dereference, since sinfo is not always set.Eric Sesterhenn1-0/+3
2017-10-18KEYS: checking the input id parameters before finding asymmetric keyChun-Yi Lee1-0/+2
2017-10-18KEYS: Fix the wrong index when checking the existence of second idChun-Yi Lee1-1/+1
2017-06-09crypto : asymmetric_keys : verify_pefile:zero memory content before freeingLoganaden Velvindron1-2/+2
2017-06-09X.509: Fix error code in x509_cert_parse()Dan Carpenter1-0/+1
2017-05-23crypto: asymmetric_keys - handle EBUSY due to backlog correctlyGilad Ben-Yossef1-1/+1
2017-04-04KEYS: Keyring asymmetric key restrict method with chainingMat Martineau2-45/+144
2017-04-04KEYS: Restrict asymmetric key linkage using a specific keychainMat Martineau2-1/+105
2017-04-04KEYS: Add a lookup_restriction function for the asymmetric key typeMat Martineau1-8/+44
2017-04-03KEYS: Split role of the keyring pointer for keyring restrict functionsMat Martineau1-3/+5
2017-04-03PKCS#7: Handle blacklisted certificatesDavid Howells2-8/+25
2017-04-03X.509: Allow X.509 certs to be blacklistedDavid Howells2-0/+16
2016-12-15Merge branch 'linus' of git://git.kernel.org/pub/scm/linux/kernel/git/herbert...Linus Torvalds1-0/+1
2016-12-14crypto: asymmetric_keys - set error code on failurePan Bian1-0/+1
2016-11-25X.509: Fix double free in x509_cert_parse() [ver #3]Andrey Ryabinin1-1/+0
2016-07-18KEYS: Fix for erroneous trust of incorrectly signed X.509 certsMat Martineau1-1/+1
2016-07-18pefile: Fix the failure of calculation for digestLans Zhang1-1/+6
2016-07-18PKCS#7: Fix panic when referring to the empty AKID when DEBUG definedLans Zhang1-1/+1
2016-05-30Merge branch 'linus' of git://git.kernel.org/pub/scm/linux/kernel/git/herbert...Linus Torvalds1-0/+1
2016-05-19crypto: public_key: select CRYPTO_AKCIPHERArnd Bergmann1-0/+1
2016-05-11KEYS: The PKCS#7 test key type should use the secondary keyringDavid Howells1-1/+1
2016-04-11KEYS: Move the point of trust determination to __key_link()David Howells3-56/+33
2016-04-11KEYS: Make the system trusted keyring depend on the asymmetric key typeDavid Howells1-1/+1
2016-04-11X.509: Move the trust validation code out to its own fileDavid Howells4-80/+116
2016-04-11X.509: Use verify_signature() if we have a struct key * to useDavid Howells1-2/+1
2016-04-11KEYS: Generalise x509_request_asymmetric_key()David Howells4-35/+33
2016-04-11KEYS: Move x509_request_asymmetric_key() to asymmetric_type.cDavid Howells2-89/+89
2016-04-06PKCS#7: Make trust determination dependent on contents of trust keyringDavid Howells5-19/+5
2016-04-06KEYS: Generalise system_verify_data() to provide access to internal contentDavid Howells6-104/+59
2016-04-06X.509: Fix self-signed determinationDavid Howells1-0/+9
2016-04-06X.509: Extract signature digest and make self-signed cert checks earlierDavid Howells4-71/+110
2016-04-06PKCS#7: Make the signature a pointer rather than embedding itDavid Howells4-48/+55
2016-04-06X.509: Retain the key verification dataDavid Howells5-66/+67
2016-04-06KEYS: Add identifier pointers to public_key_signature structDavid Howells1-0/+4
2016-04-06KEYS: Allow authentication data to be stored in an asymmetric keyDavid Howells4-9/+34
2016-04-06X.509: Whitespace cleanupDavid Howells1-2/+2
2016-04-05PKCS#7: fix missing break on OID_sha224 caseColin Ian King1-0/+1
2016-03-30Merge branch 'linus' of git://git.kernel.org/pub/scm/linux/kernel/git/herbert...Linus Torvalds1-0/+2
2016-03-23PKCS#7: pkcs7_validate_trust(): initialize the _trusted output argumentNicolai Stange1-0/+2
2016-03-03X.509: Make algo identifiers text instead of enumDavid Howells8-67/+46
2016-03-03akcipher: Move the RSA DER encoding check to the crypto layerDavid Howells4-243/+93
2016-02-29X.509: Handle midnight alternative notation in GeneralizedTimeDavid Howells1-1/+1
2016-02-29X.509: Support leap secondsDavid Howells1-1/+1
2016-02-29X.509: Fix leap year handling againDavid Howells1-4/+4
2016-02-29PKCS#7: fix unitialized boolean 'want'Colin Ian King1-1/+1
2016-02-10crypto: KEYS: convert public key and digsig asym to the akcipher apiTadeusz Struk11-271/+124
2016-02-09crypto: keys - Revert "convert public key to akcipher api"Herbert Xu11-124/+272
2016-02-06crypto: asymmetric_keys - convert public key and digsig asym to the akcipher apiTadeusz Struk11-272/+124
2016-01-25PKCS#7: Don't require SpcSpOpusInfo in Authenticode pkcs7 signaturesPeter Jones1-3/+1
2016-01-17Merge branch 'for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/jmo...Linus Torvalds1-0/+2
2015-12-15IMA: create machine owner and blacklist keyringsPetko Manolov1-0/+2
2015-12-11crypto: asymmetric_keys - signature.c does not need <module.h>Paul Gortmaker1-1/+1
2015-11-12X.509: Fix the time validation [ver #2]David Howells1-5/+7
2015-11-05Merge branch 'next' of git://git.kernel.org/pub/scm/linux/kernel/git/jmorris/...Linus Torvalds6-30/+35
2015-11-04Merge branch 'linus' of git://git.kernel.org/pub/scm/linux/kernel/git/herbert...Linus Torvalds3-7/+9
2015-10-21KEYS: Merge the type-specific data with the payload dataDavid Howells6-30/+35
2015-10-20crypto: asymmetric_keys - Fix unaligned access in x509_get_sig_params()Sowmini Varadhan1-2/+3
2015-10-14crypto: pkcs7 - Fix unaligned access in pkcs7_verify()Sowmini Varadhan1-2/+3
2015-09-25X.509: Don't strip leading 00's from key ID when constructing key descriptionDavid Howells1-4/+0
2015-09-21crypto: asymmetric_keys - remove always false comparisonsudip1-3/+3
2015-09-01PKCS#7: Add OIDs for sha224, sha284 and sha512 hash algos and use themDavid Howells2-0/+17
2015-08-13PKCS#7: Add MODULE_LICENSE() to test moduleDavid Howells1-0/+3
2015-08-12PKCS#7: Appropriately restrict authenticated attributes and content typeDavid Howells7-17/+239
2015-08-12KEYS: Add a name for PKEY_ID_PKCS7David Howells1-0/+1
2015-08-12PKCS#7: Improve and export the X.509 ASN.1 time object decoderDavid Howells3-31/+72
2015-08-12PKCS#7: Support CMS messages also [RFC5652]David Howells3-9/+68
2015-08-12X.509: Change recorded SKID & AKID to not include Subject or IssuerDavid Howells1-6/+2
2015-08-12PKCS#7: Check content type and versionsDavid Howells2-4/+77
2015-08-07PKCS#7: Allow detached data to be supplied for signature checking purposesDavid Howells1-0/+25
2015-08-07X.509: Support X.509 lookup by Issuer+Serial form AuthorityKeyIdentifierDavid Howells3-40/+101
2015-08-07X.509: Extract both parts of the AuthorityKeyIdentifierDavid Howells7-69/+145
2015-07-02Merge tag 'module-implicit-v4.1-rc8' of git://git.kernel.org/pub/scm/linux/ke...Linus Torvalds1-0/+1
generated by cgit 1.2.3-korg (git 2.39.0) at 2024-05-08 06:04:08 +0000