| Commit message (Expand) | Author | Age | Files | Lines |
* | certs: Add support for using elliptic curve keys for signing modules | Stefan Berger | 2021-08-23 | 2 | -0/+39 |
* | certs: Trigger creation of RSA module signing key if it's not an RSA key | Stefan Berger | 2021-08-23 | 1 | -0/+8 |
* | Merge tag 'kbuild-v5.13-2' of git://git.kernel.org/pub/scm/linux/kernel/git/m... | Linus Torvalds | 2021-05-08 | 1 | -2/+2 |
|\ |
|
| * | .gitignore: prefix local generated files with a slash | Masahiro Yamada | 2021-05-01 | 1 | -2/+2 |
* | | Merge tag 'integrity-v5.13' of git://git.kernel.org/pub/scm/linux/kernel/git/... | Linus Torvalds | 2021-05-02 | 4 | -4/+47 |
|\ \
| |/
|/| |
|
| * | ima: ensure IMA_APPRAISE_MODSIG has necessary dependencies | Nayna Jain | 2021-04-27 | 3 | -2/+5 |
| * | ima: enable loading of build time generated key on .ima keyring | Nayna Jain | 2021-04-09 | 2 | -11/+52 |
| * | ima: enable signing of modules with build time generated key | Nayna Jain | 2021-04-09 | 2 | -1/+9 |
* | | certs: add 'x509_revocation_list' to gitignore | Linus Torvalds | 2021-04-26 | 1 | -0/+1 |
* | | certs: Add ability to preload revocation certs | Eric Snowberg | 2021-03-11 | 4 | -2/+67 |
* | | certs: Move load_system_certificate_list to a common function | Eric Snowberg | 2021-03-11 | 4 | -47/+70 |
* | | certs: Add EFI_CERT_X509_GUID support for dbx entries | Eric Snowberg | 2021-03-11 | 4 | -0/+60 |
|/ |
|
* | certs: Replace K{U,G}IDT_INIT() with GLOBAL_ROOT_{U,G}ID | Mickaël Salaün | 2021-01-21 | 2 | -4/+5 |
* | certs: Fix blacklist flag type confusion | David Howells | 2021-01-21 | 1 | -1/+1 |
* | certs: Fix blacklisted hexadecimal hash string check | Mickaël Salaün | 2021-01-21 | 1 | -1/+1 |
* | certs/blacklist: fix kernel doc interface issue | Alex Shi | 2021-01-21 | 1 | -1/+1 |
* | .gitignore: add SPDX License Identifier | Masahiro Yamada | 2020-03-25 | 1 | -0/+1 |
* | .gitignore: remove too obvious comments | Masahiro Yamada | 2020-03-25 | 1 | -3/+0 |
* | certs: Add wrapper function to check blacklisted binary hash | Nayna Jain | 2019-11-12 | 1 | -0/+9 |
* | PKCS#7: Refactor verify_pkcs7_signature() | Thiago Jung Bauermann | 2019-08-06 | 1 | -16/+45 |
* | Revert "Merge tag 'keys-acl-20190703' of git://git.kernel.org/pub/scm/linux/k... | Linus Torvalds | 2019-07-11 | 2 | -5/+14 |
* | Merge tag 'keys-acl-20190703' of git://git.kernel.org/pub/scm/linux/kernel/gi... | Linus Torvalds | 2019-07-09 | 2 | -14/+5 |
|\ |
|
| * | keys: Replace uid/gid/perm permissions checking with an ACL | David Howells | 2019-06-28 | 2 | -14/+5 |
* | | Merge tag 'keys-namespace-20190627' of git://git.kernel.org/pub/scm/linux/ker... | Linus Torvalds | 2019-07-09 | 1 | -1/+1 |
|\| |
|
| * | keys: Add a 'recurse' flag for keyring searches | David Howells | 2019-06-26 | 1 | -1/+1 |
* | | treewide: Replace GPLv2 boilerplate/reference with SPDX - rule 36 | Thomas Gleixner | 2019-05-24 | 2 | -10/+2 |
|/ |
|
* | kexec, KEYS: Make use of platform keyring for signature verify | Kairui Song | 2019-02-04 | 1 | -1/+12 |
* | integrity, KEYS: add a reference to platform keyring | Kairui Song | 2019-02-04 | 1 | -0/+10 |
* | kbuild: remove redundant target cleaning on failure | Masahiro Yamada | 2019-01-06 | 1 | -1/+1 |
* | export.h: remove VMLINUX_SYMBOL() and VMLINUX_SYMBOL_STR() | Masahiro Yamada | 2018-08-22 | 1 | -8/+8 |
* | Replace magic for trusting the secondary keyring with #define | Yannik Sembritzki | 2018-08-16 | 1 | -1/+2 |
* | certs/blacklist: fix const confusion | Nick Desaulniers | 2018-06-26 | 1 | -1/+1 |
* | docs: Fix some broken references | Mauro Carvalho Chehab | 2018-06-15 | 1 | -1/+1 |
* | certs/blacklist_nohashes.c: fix const confusion in certs blacklist | Andi Kleen | 2018-02-22 | 1 | -1/+1 |
* | License cleanup: add SPDX GPL-2.0 license identifier to files with no license | Greg Kroah-Hartman | 2017-11-02 | 5 | -0/+5 |
* | modsign: add markers to endif-statements in certs/Makefile | Jarkko Sakkinen | 2017-07-14 | 1 | -3/+3 |
* | scripts/spelling.txt: add "intialise(d)" pattern and fix typo instances | Masahiro Yamada | 2017-05-09 | 1 | -1/+1 |
* | KEYS: Use structure to capture key restriction function and data | Mat Martineau | 2017-04-04 | 1 | -1/+20 |
* | KEYS: Split role of the keyring pointer for keyring restrict functions | Mat Martineau | 2017-04-03 | 1 | -7/+11 |
* | KEYS: Add a system blacklist keyring | David Howells | 2017-04-03 | 6 | -0/+212 |
* | certs: Add a secondary system keyring that can be added to dynamically | David Howells | 2016-04-11 | 2 | -16/+79 |
* | KEYS: Remove KEY_FLAG_TRUSTED and KEY_ALLOC_TRUSTED | David Howells | 2016-04-11 | 1 | -2/+0 |
* | KEYS: Move the point of trust determination to __key_link() | David Howells | 2016-04-11 | 1 | -3/+17 |
* | KEYS: Make the system trusted keyring depend on the asymmetric key type | David Howells | 2016-04-11 | 1 | -0/+1 |
* | KEYS: Add a facility to restrict new links into a keyring | David Howells | 2016-04-11 | 1 | -4/+4 |
* | PKCS#7: Make trust determination dependent on contents of trust keyring | David Howells | 2016-04-06 | 1 | -9/+4 |
* | KEYS: Generalise system_verify_data() to provide access to internal content | David Howells | 2016-04-06 | 1 | -10/+35 |
* | certs: Fix misaligned data in extra certificate list | David Howells | 2016-02-29 | 1 | -0/+1 |
* | KEYS: Reserve an extra certificate symbol for inserting without recompiling | Mehmet Kayaalp | 2016-02-26 | 2 | -0/+28 |
* | modsign: hide openssl output in silent builds | Arnd Bergmann | 2016-02-26 | 1 | -14/+19 |