Lukas Wunner 5c6ca9d936 X.509: Introduce scope-based x509_certificate allocation ... Add a DEFINE_FREE() clause for x509_certificate structs and use it in x509_cert_parse() and x509_key_preparse(). These are the only functions where scope-based x509_certificate allocation currently makes sense. A third user will be introduced with the forthcoming SPDM library (Security Protocol and Data Model) for PCI device authentication. Unlike most other DEFINE_FREE() clauses, this one checks for IS_ERR() instead of NULL before calling x509_free_certificate() at end of scope. That's because the "constructor" of x509_certificate structs, x509_cert_parse(), returns a valid pointer or an ERR_PTR(), but never NULL. Comparing the Assembler output before/after has shown they are identical, save for the fact that gcc-12 always generates two return paths when __cleanup() is used, one for the success case and one for the error case. In x509_cert_parse(), add a hint for the compiler that kzalloc() never returns an ERR_PTR(). Otherwise the compiler adds a gratuitous IS_ERR() check on return. Introduce an assume() macro for this which can be re-used elsewhere in the kernel to provide hints for the compiler. Suggested-by: Jonathan Cameron <Jonathan.Cameron@Huawei.com> Link: https://lore.kernel.org/all/20231003153937.000034ca@Huawei.com/ Link: https://lwn.net/Articles/934679/ Signed-off-by: Lukas Wunner <lukas@wunner.de> Signed-off-by: Herbert Xu <herbert@gondor.apana.org.au>		2024-04-12 15:07:53 +08:00
..
asymmetric_keys.h	treewide: Replace GPLv2 boilerplate/reference with SPDX - rule 36	2019-05-24 17:27:11 +02:00
asymmetric_type.c	KEYS: remove MODULE_LICENSE in non-modules	2023-04-13 13:13:51 -07:00
Kconfig	certs: Break circular dependency when selftest is modular	2023-10-27 18:04:24 +08:00
Makefile	certs: Break circular dependency when selftest is modular	2023-10-27 18:04:24 +08:00
mscode_parser.c	Revert "crypto: pkcs7 - remove sha1 support"	2024-03-22 19:42:20 +08:00
mscode.asn1	pefile: Parse the "Microsoft individual code signing" data blob	2014-07-09 14:58:37 +01:00
pkcs7_key_type.c	treewide: Replace GPLv2 boilerplate/reference with SPDX - rule 36	2019-05-24 17:27:11 +02:00
pkcs7_parser.c	Revert "crypto: pkcs7 - remove sha1 support"	2024-03-22 19:42:20 +08:00
pkcs7_parser.h	crypto: asymmetric_keys: fix some comments in pkcs7_parser.h	2021-01-21 16:16:09 +00:00
pkcs7_trust.c	keys: X.509 public key issuer lookup without AKID	2022-01-09 00:18:42 +02:00
pkcs7_verify.c	asymmetric_keys: log on fatal failures in PE/pkcs7	2023-03-21 16:23:56 +00:00
pkcs7.asn1	treewide: Add SPDX identifier to IETF ASN.1 modules	2023-10-27 18:04:28 +08:00
pkcs8_parser.c	treewide: Replace GPLv2 boilerplate/reference with SPDX - rule 36	2019-05-24 17:27:11 +02:00
pkcs8.asn1	treewide: Add SPDX identifier to IETF ASN.1 modules	2023-10-27 18:04:28 +08:00
public_key.c	crypto: asymmetric_keys - Adjust signature size calculation for NIST P521	2024-04-12 15:07:52 +08:00
restrict.c	certs: Only allow certs signed by keys on the builtin keyring	2023-10-31 08:22:36 -04:00
selftest.c	certs: Break circular dependency when selftest is modular	2023-10-27 18:04:24 +08:00
signature.c	Revert "crypto: pkcs7 - remove sha1 support"	2024-03-22 19:42:20 +08:00
verify_pefile.c	crypto: asymmetric_keys - remove redundant pointer secs	2024-01-26 16:39:32 +08:00
verify_pefile.h	treewide: Replace GPLv2 boilerplate/reference with SPDX - rule 36	2019-05-24 17:27:11 +02:00
x509_akid.asn1	treewide: Add SPDX identifier to IETF ASN.1 modules	2023-10-27 18:04:28 +08:00
x509_cert_parser.c	X.509: Introduce scope-based x509_certificate allocation	2024-04-12 15:07:53 +08:00
x509_loader.c	wifi: cfg80211: Deduplicate certificate loading	2023-01-19 14:46:45 +01:00
x509_parser.h	X.509: Introduce scope-based x509_certificate allocation	2024-04-12 15:07:53 +08:00
x509_public_key.c	X.509: Introduce scope-based x509_certificate allocation	2024-04-12 15:07:53 +08:00
x509.asn1	treewide: Add SPDX identifier to IETF ASN.1 modules	2023-10-27 18:04:28 +08:00