projects / linux.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: a133149) | patch
modsign: use all trusted keys to verify module signature
authorKe Wu <mikewu@google.com>
Tue, 6 Nov 2018 23:21:30 +0000 (15:21 -0800)
committerSalvatore Bonaccorso <carnil@debian.org>
Thu, 18 Jul 2019 22:23:17 +0000 (23:23 +0100)
commit36725c1bf104ac13bb4910b1cdb3151cbaac8986
tree9c7392862379bfa1e485805738c6cb4aeedc0b26tree | snapshot
parenta133149896c5061d1dc72a2ec69d55b19082ce3ecommit | diff
modsign: use all trusted keys to verify module signature

Make mod_verify_sig to use all trusted keys. This allows keys in
secondary_trusted_keys to be used to verify PKCS#7 signature on a
kernel module.

Signed-off-by: Ke Wu <mikewu@google.com>
Signed-off-by: Jessica Yu <jeyu@kernel.org>
Gbp-Pq: Topic features/all/db-mok-keyring
Gbp-Pq: Name 0007-modsign-Use-secondary-trust-keyring-for-module-signi.patch
kernel/module_signing.c diff | blob | history
Unnamed repository; edit this file 'description' to name the repository.