iPXE
Functions
efi_siglist.h File Reference

PEM-encoded ASN.1 data. More...

#include <stdint.h>
#include <ipxe/asn1.h>
#include <ipxe/image.h>

Go to the source code of this file.

Functions

 FILE_LICENCE (GPL2_OR_LATER_OR_UBDL)
 
 FILE_SECBOOT (PERMITTED)
 
int efisig_asn1 (const void *data, size_t len, size_t offset, struct asn1_cursor **cursor)
 Extract ASN.1 object from EFI signature list. More...
 
struct image_type efisig_image_type __image_type (PROBE_NORMAL)
 

Detailed Description

PEM-encoded ASN.1 data.

Definition in file efi_siglist.h.

Function Documentation

◆ FILE_LICENCE()

FILE_LICENCE ( GPL2_OR_LATER_OR_UBDL  )

◆ FILE_SECBOOT()

FILE_SECBOOT ( PERMITTED  )

◆ efisig_asn1()

int efisig_asn1 ( const void *  data,
size_t  len,
size_t  offset,
struct asn1_cursor **  cursor 
)

Extract ASN.1 object from EFI signature list.

Parameters
dataEFI signature list
lenLength of EFI signature list
offsetOffset within image
cursorASN.1 cursor to fill in
Return values
nextOffset to next image, or negative error

The caller is responsible for eventually calling free() on the allocated ASN.1 cursor.

Definition at line 143 of file efi_siglist.c.

144  {
145  const EFI_SIGNATURE_LIST *lhdr;
146  const EFI_SIGNATURE_DATA *dhdr;
147  int ( * asn1 ) ( const void *data, size_t len, size_t offset,
148  struct asn1_cursor **cursor );
149  size_t skip = offsetof ( typeof ( *dhdr ), SignatureData );
150  int next;
151  int rc;
152 
153  /* Locate signature list entry */
154  if ( ( rc = efisig_find ( data, len, &offset, &lhdr, &dhdr ) ) != 0 )
155  goto err_entry;
156  len = ( offset + lhdr->SignatureSize );
157 
158  /* Parse as PEM or DER based on first character */
159  asn1 = ( ( dhdr->SignatureData[0] == ASN1_SEQUENCE ) ?
160  der_asn1 : pem_asn1 );
161  DBGC2 ( data, "EFISIG [%#zx,%#zx) extracting %s\n", offset, len,
162  ( ( asn1 == der_asn1 ) ? "DER" : "PEM" ) );
163  next = asn1 ( data, len, ( offset + skip ), cursor );
164  if ( next < 0 ) {
165  rc = next;
166  DBGC ( data, "EFISIG [%#zx,%#zx) could not extract ASN.1: "
167  "%s\n", offset, len, strerror ( rc ) );
168  goto err_asn1;
169  }
170 
171  /* Check that whole entry was consumed */
172  if ( ( ( unsigned int ) next ) != len ) {
173  DBGC ( data, "EFISIG [%#zx,%#zx) malformed data\n",
174  offset, len );
175  rc = -EINVAL;
176  goto err_whole;
177  }
178 
179  return len;
180 
181  err_whole:
182  free ( *cursor );
183  err_asn1:
184  err_entry:
185  return rc;
186 }
EINVAL
#define EINVAL
Invalid argument.
Definition: errno.h:429
rc
struct arbelprm_rc_send_wqe rc
Definition: arbel.h:14
pem_asn1
int pem_asn1(const void *data, size_t len, size_t offset, struct asn1_cursor **cursor)
Extract ASN.1 object from PEM data.
Definition: pem.c:104
EFI_SIGNATURE_LIST::SignatureSize
UINT32 SignatureSize
Size of each signature.
Definition: ImageAuthentication.h:85
DBGC
#define DBGC(...)
Definition: compiler.h:505
offsetof
#define offsetof(type, field)
Get offset of a field within a structure.
Definition: stddef.h:25
EFI_SIGNATURE_DATA::SignatureData
UINT8 SignatureData[1]
The format of the signature is defined by the SignatureType.
Definition: ImageAuthentication.h:66
EFI_SIGNATURE_LIST
Definition: ImageAuthentication.h:69
len
ring len
Length.
Definition: dwmac.h:231
efisig_find
static int efisig_find(const void *data, size_t len, size_t *start, const EFI_SIGNATURE_LIST **lhdr, const EFI_SIGNATURE_DATA **dhdr)
Find EFI signature list entry.
Definition: efi_siglist.c:54
strerror
char * strerror(int errno)
Retrieve string representation of error number.
Definition: strerror.c:79
free
static void(* free)(struct refcnt *refcnt))
Definition: refcnt.h:55
ASN1_SEQUENCE
#define ASN1_SEQUENCE
ASN.1 sequence.
Definition: asn1.h:90
next
uint32_t next
Next descriptor address.
Definition: dwmac.h:22
EFI_SIGNATURE_DATA
The format of a signature database.
Definition: ImageAuthentication.h:58
DBGC2
#define DBGC2(...)
Definition: compiler.h:522
data
uint8_t data[48]
Additional event data.
Definition: ena.h:22
der_asn1
int der_asn1(const void *data, size_t len, size_t offset, struct asn1_cursor **cursor)
Extract ASN.1 object from DER data.
Definition: der.c:53
typeof
typeof(acpi_finder=acpi_find)
ACPI table finder.
Definition: acpi.c:48
offset
uint16_t offset
Offset to command line.
Definition: bzimage.h:8
asn1_cursor
An ASN.1 object cursor.
Definition: asn1.h:21

References image_type::asn1, ASN1_SEQUENCE, data, DBGC, DBGC2, der_asn1(), efisig_find(), EINVAL, free, len, next, offset, offsetof, pem_asn1(), rc, EFI_SIGNATURE_DATA::SignatureData, EFI_SIGNATURE_LIST::SignatureSize, strerror(), and typeof().

Referenced by efi_cacert(), and efisig_image_asn1().

◆ __image_type()

struct image_type efisig_image_type __image_type ( PROBE_NORMAL  )
Generated by   doxygen 1.8.15