summaryrefslogtreecommitdiffstats
path: root/certs
Commit message (Expand)AuthorAgeFilesLines
* certs/blacklist_hashes.c: fix const confusion in certs blacklistMasahiro Yamada2022-06-251-1/+1
* certs: Trigger creation of RSA module signing key if it's not an RSA keyStefan Berger2021-09-221-0/+8
* certs: Fix blacklist flag type confusionDavid Howells2021-03-031-1/+1
* Replace magic for trusting the secondary keyring with #defineYannik Sembritzki2018-09-091-1/+2
* License cleanup: add SPDX GPL-2.0 license identifier to files with no licenseGreg Kroah-Hartman2017-11-025-0/+5
* modsign: add markers to endif-statements in certs/MakefileJarkko Sakkinen2017-07-141-3/+3
* scripts/spelling.txt: add "intialise(d)" pattern and fix typo instancesMasahiro Yamada2017-05-081-1/+1
* KEYS: Use structure to capture key restriction function and dataMat Martineau2017-04-041-1/+20
* KEYS: Split role of the keyring pointer for keyring restrict functionsMat Martineau2017-04-031-7/+11
* KEYS: Add a system blacklist keyringDavid Howells2017-04-036-0/+212
* certs: Add a secondary system keyring that can be added to dynamicallyDavid Howells2016-04-112-16/+79
* KEYS: Remove KEY_FLAG_TRUSTED and KEY_ALLOC_TRUSTEDDavid Howells2016-04-111-2/+0
* KEYS: Move the point of trust determination to __key_link()David Howells2016-04-111-3/+17
* KEYS: Make the system trusted keyring depend on the asymmetric key typeDavid Howells2016-04-111-0/+1
* KEYS: Add a facility to restrict new links into a keyringDavid Howells2016-04-111-4/+4
* PKCS#7: Make trust determination dependent on contents of trust keyringDavid Howells2016-04-061-9/+4
* KEYS: Generalise system_verify_data() to provide access to internal contentDavid Howells2016-04-061-10/+35
* certs: Fix misaligned data in extra certificate listDavid Howells2016-02-291-0/+1
* KEYS: Reserve an extra certificate symbol for inserting without recompilingMehmet Kayaalp2016-02-262-0/+28
* modsign: hide openssl output in silent buildsArnd Bergmann2016-02-261-14/+19
* KEYS: Add an alloc flag to convey the builtinness of a keyDavid Howells2016-02-091-2/+2
* certs: add .gitignore to stop git nagging about x509_certificate_listPaul Gortmaker2015-10-211-0/+4
* modsign: Handle signing key in source treeDavid Woodhouse2015-08-141-54/+0
* modsign: Use if_changed rule for extracting cert from module signing keyDavid Woodhouse2015-08-141-2/+3
* Move certificate handling to its own directoryDavid Howells2015-08-144-0/+369