linux

mirror of https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git synced 2025-01-18 19:05:39 +00:00

History

Mimi Zohar 3be4beaf7c KEYS: verify a certificate is signed by a 'trusted' key

Only public keys, with certificates signed by an existing
'trusted' key on the system trusted keyring, should be added
to a trusted keyring.  This patch adds support for verifying
a certificate's signature.

This is derived from David Howells pkcs7_request_asymmetric_key() patch.

Changelog v6:
- on error free key - Dmitry
- validate trust only for not already trusted keys - Dmitry
- formatting cleanup

Changelog:
- define get_system_trusted_keyring() to fix kbuild issues

Signed-off-by: Mimi Zohar <zohar@linux.vnet.ibm.com>
Signed-off-by: David Howells <dhowells@redhat.com>
Acked-by: Dmitry Kasatkin <dmitry.kasatkin@gmail.com>

2014-07-17 09:35:15 -04:00

.gitignore

X.509: Add a crypto key parser for binary (DER) X.509 certificates

2012-10-08 13:50:22 +10:30

asymmetric_keys.h

KEYS: Implement asymmetric key type

2012-10-08 13:50:12 +10:30

asymmetric_type.c

KEYS: Set the asymmetric-key type default search method

2013-09-25 17:17:01 +01:00

Kconfig

KEYS: The RSA public key algorithm needs to select MPILIB