summaryrefslogtreecommitdiff
path: root/certs
AgeCommit message (Expand)Author
2021-08-23certs: Add support for using elliptic curve keys for signing modulesStefan Berger
2021-08-23certs: Trigger creation of RSA module signing key if it's not an RSA keyStefan Berger
2021-05-08Merge tag 'kbuild-v5.13-2' of git://git.kernel.org/pub/scm/linux/kernel/git/m...Linus Torvalds
2021-05-01Merge tag 'integrity-v5.13' of git://git.kernel.org/pub/scm/linux/kernel/git/...Linus Torvalds
2021-05-02.gitignore: prefix local generated files with a slashMasahiro Yamada
2021-04-26ima: ensure IMA_APPRAISE_MODSIG has necessary dependenciesNayna Jain
2021-04-26certs: add 'x509_revocation_list' to gitignoreLinus Torvalds
2021-04-09ima: enable loading of build time generated key on .ima keyringNayna Jain
2021-04-09ima: enable signing of modules with build time generated keyNayna Jain
2021-03-11certs: Add ability to preload revocation certsEric Snowberg
2021-03-11certs: Move load_system_certificate_list to a common functionEric Snowberg
2021-03-11certs: Add EFI_CERT_X509_GUID support for dbx entriesEric Snowberg
2021-01-21certs: Replace K{U,G}IDT_INIT() with GLOBAL_ROOT_{U,G}IDMickaël Salaün
2021-01-21certs: Fix blacklist flag type confusionDavid Howells
2021-01-21certs: Fix blacklisted hexadecimal hash string checkMickaël Salaün
2021-01-21certs/blacklist: fix kernel doc interface issueAlex Shi
2020-03-25.gitignore: add SPDX License IdentifierMasahiro Yamada
2020-03-25.gitignore: remove too obvious commentsMasahiro Yamada
2019-11-12certs: Add wrapper function to check blacklisted binary hashNayna Jain
2019-08-05PKCS#7: Refactor verify_pkcs7_signature()Thiago Jung Bauermann
2019-07-10Revert "Merge tag 'keys-acl-20190703' of git://git.kernel.org/pub/scm/linux/k...Linus Torvalds
2019-07-08Merge tag 'keys-acl-20190703' of git://git.kernel.org/pub/scm/linux/kernel/gi...Linus Torvalds
2019-07-08Merge tag 'keys-namespace-20190627' of git://git.kernel.org/pub/scm/linux/ker...Linus Torvalds
2019-06-27keys: Replace uid/gid/perm permissions checking with an ACLDavid Howells
2019-06-26keys: Add a 'recurse' flag for keyring searchesDavid Howells
2019-05-24treewide: Replace GPLv2 boilerplate/reference with SPDX - rule 36Thomas Gleixner
2019-02-04kexec, KEYS: Make use of platform keyring for signature verifyKairui Song
2019-02-04integrity, KEYS: add a reference to platform keyringKairui Song
2019-01-06kbuild: remove redundant target cleaning on failureMasahiro Yamada
2018-08-22export.h: remove VMLINUX_SYMBOL() and VMLINUX_SYMBOL_STR()Masahiro Yamada
2018-08-16Replace magic for trusting the secondary keyring with #defineYannik Sembritzki
2018-06-26certs/blacklist: fix const confusionNick Desaulniers
2018-06-15docs: Fix some broken referencesMauro Carvalho Chehab
2018-02-21certs/blacklist_nohashes.c: fix const confusion in certs blacklistAndi Kleen
2017-11-02License cleanup: add SPDX GPL-2.0 license identifier to files with no licenseGreg Kroah-Hartman
2017-07-14modsign: add markers to endif-statements in certs/MakefileJarkko Sakkinen
2017-05-08scripts/spelling.txt: add "intialise(d)" pattern and fix typo instancesMasahiro Yamada
2017-04-04KEYS: Use structure to capture key restriction function and dataMat Martineau
2017-04-03KEYS: Split role of the keyring pointer for keyring restrict functionsMat Martineau
2017-04-03KEYS: Add a system blacklist keyringDavid Howells
2016-04-11certs: Add a secondary system keyring that can be added to dynamicallyDavid Howells
2016-04-11KEYS: Remove KEY_FLAG_TRUSTED and KEY_ALLOC_TRUSTEDDavid Howells
2016-04-11KEYS: Move the point of trust determination to __key_link()David Howells
2016-04-11KEYS: Make the system trusted keyring depend on the asymmetric key typeDavid Howells
2016-04-11KEYS: Add a facility to restrict new links into a keyringDavid Howells
2016-04-06PKCS#7: Make trust determination dependent on contents of trust keyringDavid Howells
2016-04-06KEYS: Generalise system_verify_data() to provide access to internal contentDavid Howells
2016-02-29certs: Fix misaligned data in extra certificate listDavid Howells
2016-02-26KEYS: Reserve an extra certificate symbol for inserting without recompilingMehmet Kayaalp
2016-02-26modsign: hide openssl output in silent buildsArnd Bergmann