summaryrefslogtreecommitdiffstats
path: root/src/include/ipxe/cms.h
diff options
context:
space:
mode:
Diffstat (limited to 'src/include/ipxe/cms.h')
-rw-r--r--src/include/ipxe/cms.h50
1 files changed, 50 insertions, 0 deletions
diff --git a/src/include/ipxe/cms.h b/src/include/ipxe/cms.h
new file mode 100644
index 000000000..f355bf1cb
--- /dev/null
+++ b/src/include/ipxe/cms.h
@@ -0,0 +1,50 @@
+#ifndef _IPXE_CMS_H
+#define _IPXE_CMS_H
+
+/** @file
+ *
+ * Cryptographic Message Syntax (PKCS #7)
+ *
+ */
+
+FILE_LICENCE ( GPL2_OR_LATER );
+
+#include <time.h>
+#include <ipxe/asn1.h>
+#include <ipxe/crypto.h>
+#include <ipxe/x509.h>
+#include <ipxe/uaccess.h>
+
+/** CMS signer information */
+struct cms_signer_info {
+ /** Issuer name */
+ struct asn1_cursor issuer;
+ /** Serial number */
+ struct asn1_cursor serial;
+ /** Digest algorithm */
+ struct digest_algorithm *digest;
+ /** Public-key algorithm */
+ struct pubkey_algorithm *pubkey;
+ /** Signature */
+ const void *signature;
+ /** Length of signature */
+ size_t signature_len;
+};
+
+/** A CMS signature */
+struct cms_signature {
+ /** Raw certificate list */
+ struct asn1_cursor certificates;
+ /** Signer information
+ *
+ * We currently use only the first signer information block.
+ */
+ struct cms_signer_info info;
+};
+
+extern int cms_parse ( struct cms_signature *sig, const void *data,
+ size_t len );
+extern int cms_verify ( struct cms_signature *sig, userptr_t data, size_t len,
+ const char *name, time_t time, struct x509_root *root );
+
+#endif /* _IPXE_CMS_H */
generated by cgit v1.2.3-55-g7522 (git 2.39.0) at 2026-02-27 15:19:03 +0100