iv/linux
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
1,108,288 Commits 104 Branches 1,843 Tags
Go to file
Clone
Open with VS Code Open with VSCodium Open with Intellij IDEA
Coiby Xu 6871b2590a kexec, KEYS: make the code in bzImage64_verify_sig generic 
commit c903dae8941deb55043ee46ded29e84e97cd84bb upstream.

commit 278311e417be ("kexec, KEYS: Make use of platform keyring for
signature verify") adds platform keyring support on x86 kexec but not
arm64.

The code in bzImage64_verify_sig uses the keys on the
.builtin_trusted_keys, .machine, if configured and enabled,
.secondary_trusted_keys, also if configured, and .platform keyrings
to verify the signed kernel image as PE file.

Cc: kexec@lists.infradead.org
Cc: keyrings@vger.kernel.org
Cc: linux-security-module@vger.kernel.org
Reviewed-by: Michal Suchanek <msuchanek@suse.de>
Signed-off-by: Coiby Xu <coxu@redhat.com>
Signed-off-by: Mimi Zohar <zohar@linux.ibm.com>
Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org>
2022-08-21 15:20:08 +02:00
arch
kexec, KEYS: make the code in bzImage64_verify_sig generic
2022-08-21 15:20:08 +02:00
block
block: don't allow the same type rq_qos add more than once
2022-08-17 15:16:10 +02:00
certs
certs: make system keyring depend on x509 parser
2022-07-24 12:53:55 -07:00
crypto
KEYS: asymmetric: enforce SM2 signature use pkey algo
2022-08-17 15:16:17 +02:00
Documentation
xen-blkfront: Apply 'feature_persistent' parameter when connect
2022-08-17 15:16:18 +02:00
drivers
tee: add overflow check in register_shm_helper()
2022-08-21 15:20:08 +02:00
fs
btrfs: raid56: don't trust any cached sector in __raid56_parity_recover()
2022-08-21 15:20:08 +02:00
include
kexec, KEYS: make the code in bzImage64_verify_sig generic
2022-08-21 15:20:08 +02:00
init
stack: Declare {randomize_,}kstack_offset to fix Sparse warnings
2022-08-17 15:14:14 +02:00
io_uring
io_uring: mem-account pbuf buckets
2022-08-17 15:16:21 +02:00
ipc
ipc: Free mq_sysctls if ipc namespace creation failed
2022-06-22 17:47:41 -05:00
kernel
kexec, KEYS: make the code in bzImage64_verify_sig generic
2022-08-21 15:20:08 +02:00
lib
crypto: lib/blake2s - reduce stack frame usage in self test
2022-08-17 15:16:19 +02:00
LICENSES
LICENSES/LGPL-2.1: Add LGPL-2.1-or-later as valid identifiers
2021-12-16 14:33:10 +01:00
mm
Revert "mm: kfence: apply kmemleak_ignore_phys on early allocated pool"
2022-08-21 15:20:08 +02:00
net
net_sched: cls_route: disallow handle of 0
2022-08-21 15:20:08 +02:00
samples
sample: bpf: xdp_router_ipv4: Allow the kernel to send arp requests
2022-08-17 15:14:25 +02:00
scripts
scripts/faddr2line: Fix vmlinux detection on arm64
2022-08-17 15:16:01 +02:00
security
selinux: Add boundary check in put_entry()
2022-08-17 15:14:06 +02:00
sound
ASoC: Intel: avs: Use lookup table to create modules
2022-08-17 15:16:21 +02:00
tools
tools/thermal: Fix possible path truncations
2022-08-17 15:16:02 +02:00
usr
Not a lot of material this cycle. Many singleton patches against various
2022-05-27 11:22:03 -07:00
virt
KVM: Don't set Accessed/Dirty bits for ZERO_PAGE
2022-08-17 15:15:21 +02:00
.clang-format
clang-format: Fix space after for_each macros
2022-05-20 19:27:16 +02:00
.cocciconfig
.get_maintainer.ignore
Opt out of scripts/get_maintainer.pl
2019-05-16 10:53:40 -07:00
.gitattributes
.gitattributes: use 'dts' diff driver for dts files
2019-12-04 19:44:11 -08:00
.gitignore
kbuild: split the second line of *.mod into *.usyms
2022-05-08 03:16:59 +09:00
.mailmap
ARM: SoC fixes for 5.19, part 4
2022-07-27 09:43:07 -07:00
COPYING
COPYING: state that all contributions really are covered by this file
2020-02-10 13:32:20 -08:00
CREDITS
MAINTAINERS: mark ARM/PALM TREO SUPPORT orphan
2022-07-07 15:17:00 +02:00
Kbuild
kbuild: rename hostprogs-y/always to hostprogs/always-y
2020-02-04 01:53:07 +09:00
Kconfig
kbuild: ensure full rebuild when the compiler is updated
2020-05-12 13:28:33 +09:00
MAINTAINERS
io_uring: move to separate directory
2022-08-17 15:14:20 +02:00
Makefile
Linux 5.19.2
2022-08-17 15:16:21 +02:00
README
Drop all 00-INDEX files from Documentation/
2018-09-09 15:08:58 -06:00

README 

Linux kernel
============

There are several guides for kernel developers and users. These guides can
be rendered in a number of formats, like HTML and PDF. Please read
Documentation/admin-guide/README.rst first.

In order to build the documentation, use ``make htmldocs`` or
``make pdfdocs``.  The formatted documentation can also be read online at:

    https://www.kernel.org/doc/html/latest/

There are various text files in the Documentation/ subdirectory,
several of them using the Restructured Text markup notation.

Please read the Documentation/process/changes.rst file, as it contains the
requirements for building and running the kernel, and information about
the problems which may result by upgrading your kernel.
Description
No description provided
Readme 5.7 GiB
Languages
C 97.6%
Assembly 1%
Shell 0.5%
Python 0.3%
Makefile 0.3%