24 Jun, 2017
1 commit
-
There were a few bits and pieces left over from the now-disused DocBook
toolchain; git rid of them.Reported-by: Markus Heiser
Signed-off-by: Jonathan Corbet
26 Feb, 2016
1 commit
-
Place a system_extra_cert buffer of configurable size, right after the
system_certificate_list, so that inserted keys can be readily processed by
the existing mechanism. Added script takes a key file and a kernel image
and inserts its contents to the reserved area. The
system_certificate_list_size is also adjusted accordingly.Call the script as:
scripts/insert-sys-cert -b -c
If vmlinux has no symbol table, supply System.map file with -s flag.
Subsequent runs replace the previously inserted key, instead of appending
the new one.Signed-off-by: Mehmet Kayaalp
Signed-off-by: David Howells
Acked-by: Mimi Zohar
28 Sep, 2015
1 commit
-
Currently the encoding of documents generated by DocBook depends on
the current locale. Make the output reproducible independently of
the locale, by setting the encoding to UTF-8 (LC_CTYPE=C.UTF-8) by
preference, or ASCII (LC_CTYPE=C) as a fallback.LC_CTYPE can normally be overridden by LC_ALL, but the top-level
Makefile unsets that.Signed-off-by: Ben Hutchings
[jc: added check-lc_ctype to .gitignore]
Signed-off-by: Jonathan Corbet
27 Aug, 2015
1 commit
-
...so "git status" doesn't nag us about them.
Cc: David Woodhouse
Signed-off-by: Paul Gortmaker
Signed-off-by: David Howells
Signed-off-by: James Morris
09 Aug, 2014
1 commit
-
This patch series does not do kernel signature verification yet. I plan
to post another patch series for that. Now distributions are already
signing PE/COFF bzImage with PKCS7 signature I plan to parse and verify
those signatures.Primary goal of this patchset is to prepare groundwork so that kernel
image can be signed and signatures be verified during kexec load. This
should help with two things.- It should allow kexec/kdump on secureboot enabled machines.
- In general it can help even without secureboot. By being able to verify
kernel image signature in kexec, it should help with avoiding module
signing restrictions. Matthew Garret showed how to boot into a custom
kernel, modify first kernel's memory and then jump back to old kernel and
bypass any policy one wants to.This patch (of 15):
Kexec wants to use bin2c and it wants to use it really early in the build
process. See arch/x86/purgatory/ code in later patches.So move bin2c in scripts/basic so that it can be built very early and
be usable by arch/x86/purgatory/Signed-off-by: Vivek Goyal
Cc: Borislav Petkov
Cc: Michael Kerrisk
Cc: Yinghai Lu
Cc: Eric Biederman
Cc: H. Peter Anvin
Cc: Matthew Garrett
Cc: Greg Kroah-Hartman
Cc: Dave Young
Cc: WANG Chao
Cc: Baoquan He
Cc: Andy Lutomirski
Signed-off-by: Andrew Morton
Signed-off-by: Linus Torvalds
08 Oct, 2012
1 commit
-
Add a simple ASN.1 grammar compiler. This produces a bytecode output that can
be fed to a decoder to inform the decoder how to interpret the ASN.1 stream it
is trying to parse.Action functions can be specified in the grammar by interpolating:
({ foo })
after a type, for example:
SubjectPublicKeyInfo ::= SEQUENCE {
algorithm AlgorithmIdentifier,
subjectPublicKey BIT STRING ({ do_key_data })
}The decoder is expected to call these after matching this type and parsing the
contents if it is a constructed type.The grammar compiler does not currently support the SET type (though it does
support SET OF) as I can't see a good way of tracking which members have been
encountered yet without using up extra stack space.Currently, the grammar compiler will fail if more than 256 bytes of bytecode
would be produced or more than 256 actions have been specified as it uses
8-bit jump values and action indices to keep space usage down.Signed-off-by: David Howells
Signed-off-by: Rusty Russell
20 Apr, 2012
1 commit
-
Using this build-time sort saves time booting as we don't have to burn
cycles sorting the exception table.Signed-off-by: David Daney
Link: http://lkml.kernel.org/r/1334872799-14589-2-git-send-email-ddaney.cavm@gmail.com
Signed-off-by: H. Peter Anvin
03 May, 2011
1 commit
-
Move docproc from scripts/basic to scripts so it is only built for *doc
targets instead of every time the kernel is built.
25 Nov, 2010
1 commit
-
This file is generated, should be ignored by git.
Signed-off-by: WANG Cong
Signed-off-by: Michal Marek
07 Oct, 2009
1 commit
-
I've rewritten the extract-ikconfig script to extract the kernel
configuration from a kernel compiled with CONFIG_IKCONFIG. The main
motivation for the rewrite was to remove the dependency on the
external C program binoffset.c, which is compiled on the initial run.The binoffset executable is invoked with a relative path, which means
that the old script can only be run from the top of the kernel tree,
and only when you have write permission in the scripts directory.The new script uses tr/grep/tail/zcat only, and can be invoked from
anywhere. The binoffset.c program has been removed. This script
requires GNU grep 2.5 (released 2002-03-13) or higher, because the -o
option was introduced in that version.Signed-off-by: Dick Streefland
LKML-Reference:
Tested-by: Steven Rostedt
Cc: Sam Ravnborg
Signed-off-by: Steven Rostedt
27 Jun, 2009
1 commit
-
scripts/ihex2fw is a generated binary and should be ignored
Signed-off-by: Jaswinder Singh Rajput
Signed-off-by: Sam Ravnborg
07 Apr, 2009
1 commit
-
This reverts commit 8b249b6856f16f09b0e5b79ce5f4d435e439b9d6.
This 'fix' is not necessary; we just need to undo the damage caused
accidentally by Igor/Mauro in 4b29631db33292d416dc395c56122ea865e7635c
("V4L/DVB (9533): cx88: Add support for TurboSight TBS8910 DVB-S PCI card")Signed-off-by: David Woodhouse
08 Jan, 2009
1 commit
-
Rafael reported:
I get the following error from 'make modules_install' on my test boxes:
HOSTCC firmware/ihex2fw
/home/rafael/src/linux-2.6/firmware/ihex2fw.c:268: fatal error: opening dependency file firmware/.ihex2fw.d: Read-only file system
compilation terminated.
make[3]: *** [firmware/ihex2fw] Error 1
make[2]: *** [_modinst_post] Error 2
make[1]: *** [sub-make] Error 2
make: *** [all] Error 2where the configuration is that the kernel is compiled on a build box
with 'make O= -j5' and then is mounted over NFS read-only by
each test box (full path to this directory is the same on the build box and on
the test boxes). Then, I cd into , run 'make modules_install' and get
the error above.The issue turns out to be that we when we install firmware pick
up the list of firmware blobs from firmware/Makefile.
And this triggers the Makefile rules to update ihex2fw.There were two solutions for this issue:
1) Move the list of firmware blobs to a separate file
2) Avoid ihex2fw rebuild by moving it to scriptsAs I seriously beleive that the list of firmware blobs should be
done in a fundamental different way solution 2) was selected.Reported-and-tested-by: "Rafael J. Wysocki"
Signed-off-by: Sam Ravnborg
Cc: David Woodhouse
09 Feb, 2008
1 commit
-
Signed-off-by: Uwe Kleine-König
Signed-off-by: Sam Ravnborg
03 Oct, 2006
1 commit
-
This seems to have been missed when unifdef went in
via Sam's tree..Signed-off-by: Paul Mundt
Signed-off-by: Linus Torvalds
03 Jan, 2006
1 commit
-
Signed-off-by: Sam Ravnborg
18 Oct, 2005
1 commit
-
This still leaves driver and architecture-specific subdirectories alone,
but gets rid of the bulk of the "generic" generated files that we should
ignore.Signed-off-by: Linus Torvalds
