PKCS#7: Better handling of unsupported crypto

Provide better handling of unsupported crypto when verifying a PKCS#7 message. If we can't bridge the gap between a pair of X.509 certs or between a signed info block and an X.509 cert because it involves some crypto we don't support, that's not necessarily the end of the world as there may be other ways points at which we can intersect with a ring of trusted keys. Instead, only produce ENOPKG immediately if all the signed info blocks in a PKCS#7 message require unsupported crypto to bridge to the first X.509 cert. Otherwise, we defer the generation of ENOPKG until we get ENOKEY during trust validation. Signed-off-by: David Howells <dhowells@redhat.com> Acked-by: Vivek Goyal <vgoyal@redhat.com>
author: David Howells <dhowells@redhat.com> 2014-09-16 17:36:15 +0100
committer: David Howells <dhowells@redhat.com> 2014-09-16 17:36:15 +0100
commit: 41559420003cfe99522257dded7793192c77b4e9 (patch)
tree: 478af8309836992b40385a1aff6d8eae537d44c4 /crypto/asymmetric_keys/x509_parser.h
parent: 46963b774d441c833afc1535f6d84b3df2a94204 (diff)
1 files changed, 1 insertions, 0 deletions
diff --git a/crypto/asymmetric_keys/x509_parser.h b/crypto/asymmetric_keys/x509_parser.h
index 0e8d59b010fb..4e1a384901ed 100644
--- a/crypto/asymmetric_keys/x509_parser.h
+++ b/crypto/asymmetric_keys/x509_parser.h
@@ -38,6 +38,7 @@ struct x509_certificate {
 	bool		seen;			/* Infinite recursion prevention */
 	bool		verified;
 	bool		trusted;
+	bool		unsupported_crypto;	/* T if can't be verified due to missing crypto */
 };
 
 /*
author	David Howells <dhowells@redhat.com>	2014-09-16 17:36:15 +0100
committer	David Howells <dhowells@redhat.com>	2014-09-16 17:36:15 +0100
commit	41559420003cfe99522257dded7793192c77b4e9 (patch)
tree	478af8309836992b40385a1aff6d8eae537d44c4 /crypto/asymmetric_keys/x509_parser.h
parent	46963b774d441c833afc1535f6d84b3df2a94204 (diff)