Gitiles
Code Review Sign In
LeafOS / LeafOS-Devices / android_kernel_samsung_gta4xl / 2c7fd3675ef1867d0d0c39e9f0bb5ddb67bfc7a7
commit2c7fd3675ef1867d0d0c39e9f0bb5ddb67bfc7a7[log] [tgz]
authorDavid Howells <dhowells@redhat.com>Mon Jul 20 21:16:31 2015 +0100
committerDavid Howells <dhowells@redhat.com>Wed Aug 12 17:01:00 2015 +0100
treef76418aad41317e825944e4ca96657f489b13cb2
parent99d27b1b52bd5cdf9bd9f7661ca8641e9a1b55e6 [diff]
PKCS#7: Check content type and versions

We only support PKCS#7 signed-data [RFC2315 sec 9] content at the top level,
so reject anything else.  Further, check that the version numbers in
SignedData and SignerInfo are 1 in both cases.

Note that we don't restrict the inner content type.  In the PKCS#7 code we
don't parse the data attached there, but merely verify the signature over
it.

Signed-off-by: David Howells <dhowells@redhat.com>
Reviewed-By: David Woodhouse <David.Woodhouse@intel.com>
2 files changed
tree: f76418aad41317e825944e4ca96657f489b13cb2
  1. arch/
  2. block/
  3. crypto/
  4. Documentation/
  5. drivers/
  6. firmware/
  7. fs/
  8. include/
  9. init/
  10. ipc/
  11. kernel/
  12. lib/
  13. mm/
  14. net/
  15. samples/
  16. scripts/
  17. security/
  18. sound/
  19. tools/
  20. usr/
  21. virt/
  22. .gitignore
  23. .mailmap
  24. COPYING
  25. CREDITS
  26. Kbuild
  27. Kconfig
  28. MAINTAINERS
  29. Makefile
  30. README
  31. REPORTING-BUGS