06 Oct, 2014

1 commit

• f1b731dbc   KEYS: Restore partial ID matching functionality for asymmetric keys ... Browse Code »

  Bring back the functionality whereby an asymmetric key can be matched with a
  partial match on one of its IDs.

  Whilst we're at it, allow for the possibility of having an increased number of
  IDs.

  Reported-by: Dmitry Kasatkin
  Signed-off-by: Dmitry Kasatkin
  Signed-off-by: David Howells

  Dmitry Kasatkin

  2014-10-06 22:21:05 +0800  

17 Sep, 2014

1 commit

• 7901c1a8e   KEYS: Implement binary asymmetric key ID handling ... Browse Code »

  Implement the first step in using binary key IDs for asymmetric keys rather
  than hex string keys.

  The previously added match data preparsing will be able to convert hex
  criterion strings into binary which can then be compared more rapidly.

  Further, we actually want more then one ID string per public key. The problem
  is that X.509 certs refer to other X.509 certs by matching Issuer + AuthKeyId
  to Subject + SubjKeyId, but PKCS#7 messages match against X.509 Issuer +
  SerialNumber.

  This patch just provides facilities for a later patch to make use of.

  Signed-off-by: David Howells
  Acked-by: Vivek Goyal

  David Howells

  2014-09-17 00:36:11 +0800  

08 Oct, 2012

1 commit

• 964f3b3bf   KEYS: Implement asymmetric key type ... Browse Code »

  Create a key type that can be used to represent an asymmetric key type for use
  in appropriate cryptographic operations, such as encryption, decryption,
  signature generation and signature verification.

  The key type is "asymmetric" and can provide access to a variety of
  cryptographic algorithms.

  Possibly, this would be better as "public_key" - but that has the disadvantage
  that "public key" is an overloaded term.

  Signed-off-by: David Howells
  Signed-off-by: Rusty Russell

  David Howells

  2012-10-08 11:20:12 +0800