git.ipfire.org Git - thirdparty/kmod.git/commit

libkmod-signature: implement pkcs7 parsing with openssl

The patch adds data fetching from the PKCS#7 certificate using
openssl library (which is used by scripts/sign-file.c in the linux
kernel to sign modules).

In general the certificate can contain many signatures, but since
kmod (modinfo) supports only one signature at the moment, only first
one is taken.

With the current sign-file.c certificate doesn't contain signer
key's fingerprint, so "serial number" is used for the key id.

Signed-off-by: Yauheni Kaliuta <yauheni.kaliuta@redhat.com>

author	Yauheni Kaliuta <yauheni.kaliuta@redhat.com>
	Fri, 1 Feb 2019 20:20:02 +0000 (22:20 +0200)
committer	Lucas De Marchi <lucas.demarchi@intel.com>
	Mon, 4 Feb 2019 21:51:27 +0000 (13:51 -0800)
commit	391b4714b495183baefa9cb10ac8e1600c166a59
tree	a674ab2034405859716de1e75b5d15f6f4be5de5	tree \| snapshot
parent	dec990483bcb5f36557ab34918256a2251a6cf25	commit \| diff

Makefile.am		diff \| blob \| blame \| history
configure.ac		diff \| blob \| blame \| history
libkmod/libkmod-internal.h		diff \| blob \| blame \| history
libkmod/libkmod-module.c		diff \| blob \| blame \| history
libkmod/libkmod-signature.c		diff \| blob \| blame \| history