lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [<thread-prev] [day] [month] [year] [list] 
Message-ID: <d76d7de3-59c2-4d83-9f53-b44ada7621d4.tianjia.zhang@linux.alibaba.com>
Date:   Fri, 17 Jun 2022 17:36:43 +0800
From:   "Tianjia Zhang" <tianjia.zhang@...ux.alibaba.com>
To:     "Jarkko Sakkinen" <jarkko@...nel.org>
Cc:     "David Howells" <dhowells@...hat.com>,
        "Herbert Xu" <herbert@...dor.apana.org.au>,
        "David S. Miller" <davem@...emloft.net>,
        "Eric Biggers" <ebiggers@...gle.com>,
        "Eric Biggers" <ebiggers@...nel.org>,
        "Mimi Zohar" <zohar@...ux.ibm.com>,
        "Vitaly Chikunov" <vt@...linux.org>,
        "Gilad Ben-Yossef" <gilad@...yossef.com>,
        "keyrings" <keyrings@...r.kernel.org>,
        "linux-crypto" <linux-crypto@...r.kernel.org>,
        "linux-kernel" <linux-kernel@...r.kernel.org>
Subject: 回复:[PATCH] X.509: Support parsing certificate using SM2 algorithm

Hi Jarkko,

> On 7/12/21 4:13 PM, Tianjia Zhang wrote:
> > The SM2-with-SM3 certificate generated by latest openssl no longer
> > reuses the OID_id_ecPublicKey, but directly uses OID_sm2. This patch
> > supports this type of x509 certificate parsing.
> > 
> > Signed-off-by: Tianjia Zhang <tianjia.zhang@...ux.alibaba.com>
> > ---
> >   crypto/asymmetric_keys/x509_cert_parser.c | 3 +++
> >   1 file changed, 3 insertions(+)
> > 
> > diff --git a/crypto/asymmetric_keys/x509_cert_parser.c b/crypto/asymmetric_keys/x509_cert_parser.c
> > index 6d003096b5bc..6a945a6ce787 100644
> > --- a/crypto/asymmetric_keys/x509_cert_parser.c
> > +++ b/crypto/asymmetric_keys/x509_cert_parser.c
> > @@ -496,6 +496,9 @@ int x509_extract_key_data(void *context, size_t hdrlen,
> >    case OID_gost2012PKey512:
> >     ctx->cert->pub->pkey_algo = "ecrdsa";
> >     break;
> > + case OID_sm2:
> > +  ctx->cert->pub->pkey_algo = "sm2";
> > +  break;
> >    case OID_id_ecPublicKey:
> >     if (parse_OID(ctx->params, ctx->params_size, &oid) != 0)
> >      return -EBADMSG;
> > 
>
> Acked-by: Jarkko Sakkinen <jarkko@...nel.org>
>
> /Jarkko

Likewise, No response from David, can you pick this? thanks.

Best regards,
Tianjia

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ