1 /* 2 * CDDL HEADER START 3 * 4 * The contents of this file are subject to the terms of the 5 * Common Development and Distribution License (the "License"). 6 * You may not use this file except in compliance with the License. 7 * 8 * You can obtain a copy of the license at usr/src/OPENSOLARIS.LICENSE 9 * or http://www.opensolaris.org/os/licensing. 10 * See the License for the specific language governing permissions 11 * and limitations under the License. 12 * 13 * When distributing Covered Code, include this CDDL HEADER in each 14 * file and include the License file at usr/src/OPENSOLARIS.LICENSE. 15 * If applicable, add the following below this CDDL HEADER, with the 16 * fields enclosed by brackets "[]" replaced with your own identifying 17 * information: Portions Copyright [yyyy] [name of copyright owner] 18 * 19 * CDDL HEADER END 20 */ 21 /* 22 * Copyright (c) 2003, 2010, Oracle and/or its affiliates. All rights reserved. 23 */ 24 /* 25 * Copyright 2010 Nexenta Systems, Inc. All rights reserved. 26 */ 27 28 #ifndef _SYS_CRYPTO_ELFSIGN_H 29 #define _SYS_CRYPTO_ELFSIGN_H 30 31 #ifdef __cplusplus 32 extern "C" { 33 #endif 34 35 /* 36 * Consolidation Private Interface for elfsign/libpkcs11/kcfd 37 */ 38 39 #include <sys/types.h> 40 #include <sys/param.h> 41 42 /* 43 * Project Private structures and types used for communication between kcfd 44 * and KCF over the door. 45 */ 46 47 typedef enum ELFsign_status_e { 48 ELFSIGN_UNKNOWN, 49 ELFSIGN_SUCCESS, 50 ELFSIGN_FAILED, 51 ELFSIGN_NOTSIGNED, 52 ELFSIGN_INVALID_CERTPATH, 53 ELFSIGN_INVALID_ELFOBJ, 54 ELFSIGN_UNAVAILABLE 55 } ELFsign_status_t; 56 57 58 #define SIG_MAX_LENGTH 1024 59 60 #define ELF_SIGNATURE_SECTION ".SUNW_signature" 61 62 typedef uint32_t filesig_vers_t; 63 64 /* 65 * File Signature Structure 66 * Applicable to ELF and other file formats 67 */ 68 struct filesignatures { 69 uint32_t filesig_cnt; /* count of signatures */ 70 uint32_t filesig_pad; /* unused */ 71 union { 72 char filesig_data[1]; 73 struct filesig { /* one of these for each signature */ 74 uint32_t filesig_size; 75 filesig_vers_t filesig_version; 76 union { 77 struct filesig_version1 { 78 uint32_t filesig_v1_dnsize; 79 uint32_t filesig_v1_sigsize; 80 uint32_t filesig_v1_oidsize; 81 char filesig_v1_data[1]; 82 } filesig_v1; 83 struct filesig_version3 { 84 uint64_t filesig_v3_time; 85 uint32_t filesig_v3_dnsize; 86 uint32_t filesig_v3_sigsize; 87 uint32_t filesig_v3_oidsize; 88 char filesig_v3_data[1]; 89 } filesig_v3; 90 } _u2; 91 } filesig_sig; 92 uint64_t filesig_align; 93 } _u1; 94 }; 95 #define filesig_sig _u1.filesig_sig 96 97 #define filesig_v1_dnsize _u2.filesig_v1.filesig_v1_dnsize 98 #define filesig_v1_sigsize _u2.filesig_v1.filesig_v1_sigsize 99 #define filesig_v1_oidsize _u2.filesig_v1.filesig_v1_oidsize 100 #define filesig_v1_data _u2.filesig_v1.filesig_v1_data 101 102 #define filesig_v3_time _u2.filesig_v3.filesig_v3_time 103 #define filesig_v3_dnsize _u2.filesig_v3.filesig_v3_dnsize 104 #define filesig_v3_sigsize _u2.filesig_v3.filesig_v3_sigsize 105 #define filesig_v3_oidsize _u2.filesig_v3.filesig_v3_oidsize 106 #define filesig_v3_data _u2.filesig_v3.filesig_v3_data 107 108 #define filesig_ALIGN(s) (((s) + sizeof (uint64_t) - 1) & \ 109 (-sizeof (uint64_t))) 110 #define filesig_next(ptr) (struct filesig *)((void *)((char *)(ptr) + \ 111 filesig_ALIGN((ptr)->filesig_size))) 112 113 #define FILESIG_UNKNOWN 0 /* unrecognized version */ 114 #define FILESIG_VERSION1 1 /* version1, all but sig section */ 115 #define FILESIG_VERSION2 2 /* version1 format, SHF_ALLOC only */ 116 #define FILESIG_VERSION3 3 /* version3, all but sig section */ 117 #define FILESIG_VERSION4 4 /* version3 format, SHF_ALLOC only */ 118 119 #ifndef _KERNEL 120 121 #endif /* _KERNEL */ 122 123 #ifdef __cplusplus 124 } 125 #endif 126 127 #endif /* _SYS_CRYPTO_ELFSIGN_H */ 128