projects / linux.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: b8ccc0d) | patch
modsign: use all trusted keys to verify module signature
authorKe Wu <mikewu@google.com>
Tue, 6 Nov 2018 23:21:30 +0000 (15:21 -0800)
committerBen Hutchings <ben@decadent.org.uk>
Wed, 15 May 2019 22:07:16 +0000 (23:07 +0100)
commitda81b1d7fc44a1eb2f224dbf1eea3ed60bc012c2
tree697e8e5193baddf578b9e42b1e0f459b5bd1ad38tree | snapshot
parentb8ccc0d39a71c3c0e6fe18e98d3496ce5cfe742acommit | diff
modsign: use all trusted keys to verify module signature

Make mod_verify_sig to use all trusted keys. This allows keys in
secondary_trusted_keys to be used to verify PKCS#7 signature on a
kernel module.

Signed-off-by: Ke Wu <mikewu@google.com>
Signed-off-by: Jessica Yu <jeyu@kernel.org>
Gbp-Pq: Topic features/all/db-mok-keyring
Gbp-Pq: Name 0007-modsign-Use-secondary-trust-keyring-for-module-signi.patch
kernel/module_signing.c diff | blob | history
Unnamed repository; edit this file 'description' to name the repository.