projects / linux.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 7972052) | patch
modsign: use all trusted keys to verify module signature
authorKe Wu <mikewu@google.com>
Tue, 6 Nov 2018 23:21:30 +0000 (15:21 -0800)
committerBen Hutchings <ben@decadent.org.uk>
Wed, 19 Jun 2019 22:16:58 +0000 (23:16 +0100)
commit916bf8c56714a8bc3fd6faaa21a1c3f13cfe3d05
tree402d7782510f4db4899fc629b4c2cf9c9a572a86tree | snapshot
parent7972052c935a82ca49c0906a14b4a8c7fd0ea59ccommit | diff
modsign: use all trusted keys to verify module signature

Make mod_verify_sig to use all trusted keys. This allows keys in
secondary_trusted_keys to be used to verify PKCS#7 signature on a
kernel module.

Signed-off-by: Ke Wu <mikewu@google.com>
Signed-off-by: Jessica Yu <jeyu@kernel.org>
Gbp-Pq: Topic features/all/db-mok-keyring
Gbp-Pq: Name 0007-modsign-Use-secondary-trust-keyring-for-module-signi.patch
kernel/module_signing.c diff | blob | history
Unnamed repository; edit this file 'description' to name the repository.