Lines Matching full:certificate
77 /* Verifies the format, key version, usage, and signature of a certificate. */
78 static bool verify_certificate(AvbAtxCertificate* certificate,
85 if (certificate->signed_data.version != 1) {
86 avb_error("Unsupported certificate format.\n");
90 sha512((const uint8_t*)&certificate->signed_data,
95 certificate->signature,
101 avb_error("Invalid certificate signature.\n");
104 if (certificate->signed_data.key_version < minimum_key_version) {
108 if (0 != avb_safe_memcmp(certificate->signed_data.usage,
111 avb_error("Invalid certificate usage.\n");
117 /* Verifies signature and fields of a PIK certificate. */
118 static bool verify_pik_certificate(AvbAtxCertificate* certificate,
125 certificate, authority, minimum_version, expected_usage)) {
126 avb_error("Invalid PIK certificate.\n");
132 /* Verifies signature and fields of a PSK certificate. */
134 AvbAtxCertificate* certificate,
143 certificate, authority, minimum_version, expected_usage)) {
144 avb_error("Invalid PSK certificate.\n");
148 if (0 != avb_safe_memcmp(certificate->signed_data.subject,
203 /* Verify the PIK certificate. */
216 /* Verify the PSK certificate. */
