| /linux-6.12.1/crypto/asymmetric_keys/ |
| D | pkcs7_verify.c | 153 * Find the key (X.509 certificate) to use to verify a PKCS#7 message. PKCS#7
168 * encode the fields from the X.509 cert in the same way in the in pkcs7_find_key()
174 pr_devel("Sig %u: Found cert serial match X.509[%u]\n", in pkcs7_find_key()
181 /* The relevant X.509 cert isn't found here, but it might be found in in pkcs7_find_key()
184 pr_debug("Sig %u: Issuing X.509 cert not found (#%*phN)\n", in pkcs7_find_key()
245 /* Look through the X.509 certificates in the PKCS#7 message's in pkcs7_verify_sig_chain()
280 pr_warn("Sig %u: X.509 chain contains auth-skid nonmatch (%u->%u)\n", in pkcs7_verify_sig_chain()
287 pr_warn("Sig %u: X.509 chain contains loop\n", in pkcs7_verify_sig_chain()
307 * validatable against an X.509 cert lower in the chain that we have a in pkcs7_verify_sig_chain()
338 pr_devel("Using X.509[%u] for sig %u\n", in pkcs7_verify_one()
[all …]
|
| D | x509_loader.c | 42 pr_err("Problem loading in-kernel X.509 certificate (%ld)\n", in x509_load_certificate_list()
45 pr_notice("Loaded X.509 cert '%s'\n", in x509_load_certificate_list()
55 pr_err("Problem parsing in-kernel X.509 certificate list\n"); in x509_load_certificate_list()
|
| D | Kconfig | 27 tristate "X.509 certificate parser"
32 This option provides support for parsing X.509 format blobs for key
80 tristate "Run FIPS selftests on the X.509+PKCS7 signature verification"
|
| D | x509_public_key.c | 2 /* Instantiate a public key crypto key from an X.509 Certificate
8 #define pr_fmt(fmt) "X.509: "fmt
21 * Set up the signature parameters in an X.509 certificate. This involves
90 * Check for self-signedness in an X.509 cert and if found, check the signature
252 MODULE_DESCRIPTION("X.509 certificate parser");
|
| D | pkcs7.asn1 | 53 certificate Certificate, -- X.509
67 Certificate ::= ANY ({ pkcs7_extract_cert }) -- X.509
|
| D | x509_cert_parser.c | 2 /* X.509 certificate parser
8 #define pr_fmt(fmt) "X.509: "fmt
42 * Free an X.509 certificate
59 * Parse an X.509 certificate
291 * In X.509 certificates, the signature's algorithm is stored in two in x509_note_signature()
636 * x509_decode_time - Decode an X.509 time ASN.1 object
|
| D | x509_akid.asn1 | 6 -- X.509 AuthorityKeyIdentifier
|
| D | pkcs7_parser.c | 417 /* We have to correct for the header so that the X.509 parser can start in pkcs7_extract_cert()
418 * from the beginning. Note that since X.509 stipulates DER, there in pkcs7_extract_cert()
526 * with the signer's X.509 cert? in pkcs7_sig_note_authenticated_attr()
553 * are also used as extendedKeyUsage types in X.509 certs. in pkcs7_sig_note_authenticated_attr()
|
| D | selftest.c | 70 MODULE_DESCRIPTION("X.509 self tests");
|
| /linux-6.12.1/Documentation/sound/soc/ |
| D | dapm-graph.svg | 63 …C282.19,-435.06 288.26,-449.42 291,-463 295.05,-483.04 296.67,-489.36 291,-509 288.25,-518.54 283.…
69 <polygon fill="#f2f2f2" stroke="#4d4d4d" points="192,-509 118,-509 118,-471 192,-471 192,-509"/>
89 <polygon fill="#f2f2f2" stroke="#4d4d4d" points="876,-509 736,-509 736,-471 876,-471 876,-509"/>
109 …lygon fill="#f2f2f2" stroke="#4d4d4d" points="717.5,-509 568.5,-509 568.5,-471 717.5,-471 717.5,-5…
248 …lygon fill="#f2f2f2" stroke="#4d4d4d" points="399.5,-509 338.5,-509 338.5,-471 399.5,-471 399.5,-5…
275 …lygon fill="#f2f2f2" stroke="#4d4d4d" points="550.5,-509 417.5,-509 417.5,-471 550.5,-471 550.5,-5…
351 …lygon fill="#f2f2f2" stroke="#4d4d4d" points="281.5,-509 210.5,-509 210.5,-471 281.5,-471 281.5,-5…
|
| /linux-6.12.1/certs/ |
| D | Kconfig | 59 string "Additional X.509 keys for default system keyring"
63 containing trusted X.509 certificates to be included in the default
140 string "X.509 certificates to be preloaded into the system blacklist keyring"
144 containing X.509 certificates to be included in the default blacklist
|
| D | system_keyring.c | 177 pr_err("Problem loading X.509 certificate from %s to secondary keyring %ld\n", in add_to_secondary_keyring()
182 pr_notice("Loaded X.509 cert '%s'\n", key_ref_to_ptr(key)->description); in add_to_secondary_keyring()
270 pr_notice("Loading compiled-in module X.509 certificates\n"); in load_module_cert()
277 * Load the compiled-in list of X.509 certificates.
284 pr_notice("Loading compiled-in X.509 certificates\n"); in load_system_certificate_list()
|
| D | extract-cert.c | 1 /* Extract X.509 certificate in DER form from PKCS#11 or PEM.
116 ERR(!parms.cert, "Get X.509 from PKCS#11"); in load_cert_pkcs11()
|
| /linux-6.12.1/include/keys/ |
| D | asymmetric-type.h | 31 * key derived from an X.509 certificate:
34 * map a PKCS#7 signature to an X.509 certificate.
37 * match X.509 certificates, but have fallen into disuse in favour of (3).
|
| /linux-6.12.1/security/integrity/ |
| D | digsig.c | 183 pr_err("Problem loading X.509 certificate %d\n", rc); in integrity_add_key()
185 pr_notice("Loaded X.509 cert '%s'\n", in integrity_add_key()
211 pr_info("Loading X.509 certificate: %s\n", path); in integrity_load_x509()
224 pr_info("Loading X.509 certificate: %s\n", source); in integrity_load_cert()
|
| /linux-6.12.1/arch/arm64/boot/dts/qcom/ |
| D | sdm636.dtsi | 14 * 509 instead of 512 and lack of
22 /* Adreno 509 shares the frequency table with 512 */
|
| /linux-6.12.1/samples/vfio-mdev/ |
| D | README.rst | 45 # echo "83b8f4f2-509f-382f-3c1e-e6bfe0fa1001" > \
51 sysfsdev=/sys/bus/mdev/devices/83b8f4f2-509f-382f-3c1e-e6bfe0fa1001
99 # echo 1 > /sys/bus/mdev/devices/83b8f4f2-509f-382f-3c1e-e6bfe0fa1001/remove
|
| /linux-6.12.1/tools/testing/selftests/net/netfilter/ |
| D | nft_audit.sh | 180 'table=t2 family=2 entries=509 op=nft_reset_rule'
184 table=t2 family=2 entries=509 op=nft_reset_rule'
245 'table=t2 family=2 entries=509 op=nft_unregister_rule'
|
| /linux-6.12.1/scripts/ |
| D | sign-file.c | 46 * the options we have on specifying the X.509 certificate we want.
208 /* Assume raw DER encoded X.509 */ in read_x509()
211 /* Assume PEM encoded X.509 */ in read_x509()
305 /* Read the private key and the X.509 cert the PKCS#7 message in main()
|
| /linux-6.12.1/Documentation/admin-guide/ |
| D | module-signing.rst | 29 This facility uses X.509 ITU-T standard certificates to encode the public keys
104 and its corresponding X.509 certificate in PEM form, or — on systems where
114 (5) :menuselection:`Additional X.509 keys for default system keyring`
212 ``.builtin_trusted_keys`` **if** the new key's X.509 wrapper is validly signed by a key
|
| /linux-6.12.1/drivers/gpu/drm/msm/adreno/ |
| D | a5xx_catalog.c | 63 .revn = 509,
76 /* Adreno 509 uses the same ZAP as 512 */
|
| /linux-6.12.1/Documentation/networking/ |
| D | tls-handshake.rst | 84 Authentication material such as x.509 certificates, private certificate
91 To request an x.509-authenticated TLS session, the consumer fills in
93 keys containing an x.509 certificate and the private key for that
|
| /linux-6.12.1/drivers/iio/test/ |
| D | iio-test-rescale.c | 128 .name = "small IIO_VAL_FRACTIONAL, 261/509 scaled by 90/1373754273",
130 .denominator = 509,
137 .name = "small IIO_VAL_FRACTIONAL, 90/1373754273 scaled by 261/509",
142 .schan_val2 = 509,
|
| /linux-6.12.1/include/linux/ |
| D | module_signature.h | 19 PKEY_ID_X509, /* X.509 arbitrary subjectKeyIdentifier */
|
| /linux-6.12.1/Documentation/filesystems/ |
| D | fsverity.rst | 462 root user can add trusted X.509 certificates to this keyring using
535 keys are in X.509 format. These formats are commonly used,
543 fs-verity users who do not need advanced features of X.509 and
547 fs-verity users who choose to use X.509 and PKCS#7 anyway should
552 it can even be necessary, since advanced X.509 and PKCS#7 features
554 kernel does not check X.509 certificate validity times.
558 here. IMA appraisal does use X.509.
|
