summaryrefslogtreecommitdiff
path: root/certs
AgeCommit message (Expand)AuthorFilesLines
2017-04-05KEYS: Use structure to capture key restriction function and dataMat Martineau1-1/+20
2017-04-03KEYS: Split role of the keyring pointer for keyring restrict functionsMat Martineau1-7/+11
2017-04-03KEYS: Add a system blacklist keyringDavid Howells6-0/+212
2016-04-12certs: Add a secondary system keyring that can be added to dynamicallyDavid Howells2-16/+79
2016-04-12KEYS: Remove KEY_FLAG_TRUSTED and KEY_ALLOC_TRUSTEDDavid Howells1-2/+0
2016-04-12KEYS: Move the point of trust determination to __key_link()David Howells1-3/+17
2016-04-12KEYS: Make the system trusted keyring depend on the asymmetric key typeDavid Howells1-0/+1
2016-04-12KEYS: Add a facility to restrict new links into a keyringDavid Howells1-4/+4
2016-04-06PKCS#7: Make trust determination dependent on contents of trust keyringDavid Howells1-9/+4
2016-04-06KEYS: Generalise system_verify_data() to provide access to internal contentDavid Howells1-10/+35
2016-02-29certs: Fix misaligned data in extra certificate listDavid Howells1-0/+1
2016-02-26KEYS: Reserve an extra certificate symbol for inserting without recompilingMehmet Kayaalp2-0/+28
2016-02-26modsign: hide openssl output in silent buildsArnd Bergmann1-14/+19
2016-02-09KEYS: Add an alloc flag to convey the builtinness of a keyDavid Howells1-2/+2
2015-10-21certs: add .gitignore to stop git nagging about x509_certificate_listPaul Gortmaker1-0/+4
2015-08-14modsign: Handle signing key in source treeDavid Woodhouse1-54/+0
2015-08-14modsign: Use if_changed rule for extracting cert from module signing keyDavid Woodhouse1-2/+3
2015-08-14Move certificate handling to its own directoryDavid Howells4-0/+369