qiurui
/
Centos-kernel-stream-9
mirror of https://gitlab.com/redhat/centos-stream/src/kernel/centos-stream-9.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
Centos-kernel-stream-9/include/keys
History
Coiby Xu dba178aa01 integrity: PowerVM support for loading third party code signing keys 
JIRA: https://issues.redhat.com/browse/RHEL-11462

Upstream Status: git://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git

Conflicts: This commit is a bit different from the upstream commit because it
           also fixes a small difference between a previous commit backported from
           from the subsystem maintainer Jarkko Sakkinen's tree and the one
           landing in Linus's tree. For details, please refer to
           previous commit 5118691156 ("KEYS: DigitalSignature link restriction")
           and commit 4cfb90805445.

commit 44e69ea53892f18e8753943a4376de20b076c3fe
Author: Nayna Jain <nayna@linux.ibm.com>
Date:   Tue Aug 15 07:27:22 2023 -0400

    integrity: PowerVM support for loading third party code signing keys

    On secure boot enabled PowerVM LPAR, third party code signing keys are
    needed during early boot to verify signed third party modules. These
    third party keys are stored in moduledb object in the Platform
    KeyStore (PKS).

    Load third party code signing keys onto .secondary_trusted_keys keyring.

    Signed-off-by: Nayna Jain <nayna@linux.ibm.com>
    Reviewed-and-tested-by: Mimi Zohar <zohar@linux.ibm.com>
    Reviewed-by: Jarkko Sakkinen <jarkko@kernel.org>
    Tested-by: Nageswara R Sastry <rnsastry@linux.ibm.com>
    Signed-off-by: Jarkko Sakkinen <jarkko@kernel.org>

Signed-off-by: Coiby Xu <coxu@redhat.com>
 		2024-02-05 19:05:32 +08:00
..
asymmetric-parser.h docs: crypto: convert asymmetric-keys.txt to ReST 2020-06-19 14:03:46 -06:00
asymmetric-subtype.h docs: crypto: convert asymmetric-keys.txt to ReST 2020-06-19 14:03:46 -06:00
asymmetric-type.h certs: Move load_certificate_list() to be with the asymmetric keys code 2022-06-23 11:32:02 +01:00
big_key-type.h keys: Implement update for the big_key type 2020-06-02 17:22:31 +01:00
ceph-type.h License cleanup: add SPDX GPL-2.0 license identifier to files with no license 2017-11-02 11:10:55 +01:00
dns_resolver-type.h treewide: Replace GPLv2 boilerplate/reference with SPDX - rule 152 2019-05-30 11:26:32 -07:00
encrypted-type.h encrypted-keys: Replace HTTP links with HTTPS ones 2021-01-21 16:16:09 +00:00
keyring-type.h treewide: Replace GPLv2 boilerplate/reference with SPDX - rule 152 2019-05-30 11:26:32 -07:00
request_key_auth-type.h request_key improvements 2019-07-08 19:19:37 -07:00
rxrpc-type.h rxrpc: Don't leak the service-side session key to userspace 2020-11-23 18:09:29 +00:00
system_keyring.h integrity: PowerVM support for loading third party code signing keys 2024-02-05 19:05:32 +08:00
trusted-type.h KEYS: trusted: Add generic trusted keys framework 2021-04-14 16:30:30 +03:00
trusted_tee.h KEYS: trusted: Introduce TEE based Trusted Keys 2021-04-14 16:30:30 +03:00
trusted_tpm.h KEYS: trusted: Add generic trusted keys framework 2021-04-14 16:30:30 +03:00
user-type.h KEYS: Replace zero-length array with flexible-array 2020-06-02 17:22:31 +01:00