14 Jul, 2017
1 commit
-
Provide more specific examples of keyring restrictions as applied to
X.509 signature chain verification.Signed-off-by: Mat Martineau
Signed-off-by: David Howells
Signed-off-by: James Morris
19 May, 2017
1 commit
-
This creates a new section in the security development index for kernel
keys, and adjusts for ReST markup.Cc: David Howells
Signed-off-by: Kees Cook
Signed-off-by: Jonathan Corbet
05 Apr, 2017
3 commits
-
Add a restrict_link_by_key_or_keyring_chain link restriction that
searches for signing keys in the destination keyring in addition to the
signing key or keyring designated when the destination keyring was
created. Userspace enables this behavior by including the "chain" option
in the keyring restriction:keyctl(KEYCTL_RESTRICT_KEYRING, keyring, "asymmetric",
"key_or_keyring::chain");Signed-off-by: Mat Martineau
-
Adds restrict_link_by_signature_keyring(), which uses the restrict_key
member of the provided destination_keyring data structure as the
key or keyring to search for signing keys.Signed-off-by: Mat Martineau
-
Look up asymmetric keyring restriction information using the key-type
lookup_restrict hook.Signed-off-by: Mat Martineau
31 May, 2016
1 commit
-
Signed-off-by: Andrea Gelmini
Signed-off-by: Herbert Xu
21 Oct, 2015
1 commit
-
Merge the type-specific data with the payload data into one four-word chunk
as it seems pointless to keep them separate.Use user_key_payload() for accessing the payloads of overloaded
user-defined keys.Signed-off-by: David Howells
cc: linux-cifs@vger.kernel.org
cc: ecryptfs@vger.kernel.org
cc: linux-ext4@vger.kernel.org
cc: linux-f2fs-devel@lists.sourceforge.net
cc: linux-nfs@vger.kernel.org
cc: ceph-devel@vger.kernel.org
cc: linux-ima-devel@lists.sourceforge.net
08 Oct, 2012
1 commit
-
In-source documentation for the asymmetric key type. This will be located in:
Documentation/crypto/asymmetric-keys.txt
Signed-off-by: David Howells
Signed-off-by: Rusty Russell