Show patches with: State = Action Required       |   2618 patches
« 1 2 ... 17 18 1926 27 »
Patch Series A/R/T S/W/F Date Submitter Delegate State
[v8,4/5] certs: Factor out the blacklist hash creation Enable root to update the blacklist keyring - - - --- 2021-07-12 Mickaël Salaün New
[v8,3/5] certs: Make blacklist_vet_description() more strict Enable root to update the blacklist keyring - 1 - --- 2021-07-12 Mickaël Salaün New
[v8,2/5] certs: Check that builtin blacklist hashes are valid Enable root to update the blacklist keyring - - - --- 2021-07-12 Mickaël Salaün New
[v8,1/5] tools/certs: Add print-cert-tbs-hash.sh Enable root to update the blacklist keyring - 1 - --- 2021-07-12 Mickaël Salaün New
X.509: Support parsing certificate using SM2 algorithm X.509: Support parsing certificate using SM2 algorithm 1 - - --- 2021-07-12 tianjia.zhang New
[RFC,12/12] integrity: Suppress error message for keys added to the mok keyring Enroll kernel keys thru MOK - - - --- 2021-07-07 Eric Snowberg New
[RFC,11/12] integrity: move keys from the mok keyring into the secondary keyring Enroll kernel keys thru MOK - - - --- 2021-07-07 Eric Snowberg New
[RFC,10/12] integrity: add new keyring handler Enroll kernel keys thru MOK - - - --- 2021-07-07 Eric Snowberg New
[RFC,09/12] integrity: accessor function to get trust_moklist Enroll kernel keys thru MOK - - - --- 2021-07-07 Eric Snowberg New
[RFC,08/12] integrity: restrict INTEGRITY_KEYRING_MOK to restrict_link_by_secondary_trusted_or_ca Enroll kernel keys thru MOK - - - --- 2021-07-07 Eric Snowberg New
[RFC,07/12] integrity: add add_to_mok_keyring Enroll kernel keys thru MOK - - - --- 2021-07-07 Eric Snowberg New
[RFC,06/12] integrity: Trust mok keys if MokListTrustedRT found Enroll kernel keys thru MOK - - - --- 2021-07-07 Eric Snowberg New
[RFC,05/12] integrity: Introduce mok keyring Enroll kernel keys thru MOK - - - --- 2021-07-07 Eric Snowberg New
[RFC,04/12] integrity: add integrity_destroy_keyring Enroll kernel keys thru MOK - - - --- 2021-07-07 Eric Snowberg New
[RFC,03/12] KEYS: CA link restriction Enroll kernel keys thru MOK - - - --- 2021-07-07 Eric Snowberg New
[RFC,02/12] KEYS: Allow unrestricted keys to be moved to the secondary keyring Enroll kernel keys thru MOK - - - --- 2021-07-07 Eric Snowberg New
[RFC,01/12] KEYS: Add KEY_ALLOC_BYPASS_RESTRICTION option to key_move Enroll kernel keys thru MOK - - - --- 2021-07-07 Eric Snowberg New
[v8,2/2] certs: Add support for using elliptic curve keys for signing modules Add support for ECDSA-signed kernel modules - - - --- 2021-06-29 Stefan Berger New
[v8,1/2] certs: Trigger creation of RSA module signing key if it's not an RSA key Add support for ECDSA-signed kernel modules - - - --- 2021-06-29 Stefan Berger New
[v7,2/2] certs: Add support for using elliptic curve keys for signing modules Add support for ECDSA-signed kernel modules - 1 - --- 2021-06-28 Stefan Berger New
[v7,1/2] certs: Trigger creation of RSA module signing key if it's not an RSA key Add support for ECDSA-signed kernel modules - 1 - --- 2021-06-28 Stefan Berger New
certs: Redirect openssl error message to null device certs: Redirect openssl error message to null device - - - --- 2021-06-25 Stefan Berger New
[v2] sign-file: Fix confusing error messages [v2] sign-file: Fix confusing error messages - - - --- 2021-06-24 tianjia.zhang New
[v3] pkcs7: make parser enable SM2 and SM3 algorithms combination [v3] pkcs7: make parser enable SM2 and SM3 algorithms combination 1 1 - --- 2021-06-24 tianjia.zhang New
[v2,2/6] KEYS: trusted: Allow import from existing key material for development KEYS: trusted: Introduce support for NXP CAAM-based trusted keys - - - --- 2021-06-22 Ahmad Fatoum New
[v2,6/6] KEYS: trusted: Introduce support for NXP CAAM-based trusted keys KEYS: trusted: Introduce support for NXP CAAM-based trusted keys - - - --- 2021-06-22 Ahmad Fatoum New
[v2,5/6] crypto: caam - add in-kernel interface for blob generator KEYS: trusted: Introduce support for NXP CAAM-based trusted keys - - - --- 2021-06-22 Ahmad Fatoum New
[v2,4/6] KEYS: trusted: allow trust sources to use kernel RNG for key material KEYS: trusted: Introduce support for NXP CAAM-based trusted keys - - - --- 2021-06-22 Ahmad Fatoum New
[v2,3/6] KEYS: trusted: allow users to use kernel RNG for key material KEYS: trusted: Introduce support for NXP CAAM-based trusted keys - - - --- 2021-06-22 Ahmad Fatoum New
[v2,1/6] KEYS: trusted: allow use of TEE as backend without TCG_TPM support KEYS: trusted: Introduce support for NXP CAAM-based trusted keys - - - --- 2021-06-22 Ahmad Fatoum New
[3/3] doc: trusted-encrypted: add DCP as new trust source DCP as trusted keys backend - - - --- 2021-06-14 Richard Weinberger New
[2/3] KEYS: trusted: Introduce support for NXP DCP-based trusted keys DCP as trusted keys backend - - - --- 2021-06-14 Richard Weinberger New
[1/3] crypto: mxs-dcp: Add support for hardware provided keys DCP as trusted keys backend - - - --- 2021-06-14 Richard Weinberger New
[v6,4/4] certs: Adjustment due to 'Check whether openssl tool is available' Add support for ECDSA-signed kernel modules - - - --- 2021-06-10 Stefan Berger New
[v6,3/4] certs: Add support for using elliptic curve keys for signing modules Add support for ECDSA-signed kernel modules 1 - 1 --- 2021-06-10 Stefan Berger New
[v6,2/4] certs: Check whether openssl tool is available Add support for ECDSA-signed kernel modules - - - --- 2021-06-10 Stefan Berger New
[v6,1/4] certs: Trigger creation of RSA module signing key if it's not an RSA key Add support for ECDSA-signed kernel modules - 1 1 --- 2021-06-10 Stefan Berger New
tpm2_load_command leaks memory tpm2_load_command leaks memory - - - --- 2021-06-10 Dhiraj Shah New
[v2] crypto: sm2 - fix a memory leak in sm2 [v2] crypto: sm2 - fix a memory leak in sm2 - 1 - --- 2021-06-04 Hongbo Li New
[v5,2/2] certs: Add support for using elliptic curve keys for signing modules Add support for ECDSA-signed kernel modules - - - --- 2021-06-02 Stefan Berger New
[v5,1/2] certs: Trigger creation of RSA module signing key if it's not an RSA key Add support for ECDSA-signed kernel modules - - - --- 2021-06-02 Stefan Berger New
[v5,2/2] certs: Add support for using elliptic curve keys for signing modules Add support for ECDSA-signed kernel modules 1 - 1 --- 2021-06-01 Stefan Berger New
[v5,1/2] certs: Trigger creation of RSA module signing key if it's not an RSA key Add support for ECDSA-signed kernel modules - 1 1 --- 2021-06-01 Stefan Berger New
crypto: sm2 - fix a memory leak in sm2 crypto: sm2 - fix a memory leak in sm2 - 1 - --- 2021-05-31 Hongbo Li New
crypto: fix a memory leak in sm2 crypto: fix a memory leak in sm2 - 1 - --- 2021-05-31 Hongbo Li New
[v2,7/7] crypto: add eddsa test vector crypto: add eddsa support for x509 - - - --- 2021-05-27 Hongbo Li New
[v2,6/7] crypto: ed25519 cert verification crypto: add eddsa support for x509 - - - --- 2021-05-27 Hongbo Li New
[v2,5/7] crypto: move common code in sm2 to ec_mpi.c and ec_mpi.h crypto: add eddsa support for x509 - - - --- 2021-05-27 Hongbo Li New
[v2,4/7] x509: add support for eddsa crypto: add eddsa support for x509 - - - --- 2021-05-27 Hongbo Li New
[v2,3/7] lib/mpi: export some common function crypto: add eddsa support for x509 - - - --- 2021-05-27 Hongbo Li New
[v2,2/7] lib/mpi: use kcalloc in mpi_resize crypto: add eddsa support for x509 - - - --- 2021-05-27 Hongbo Li New
[v2,1/7] crypto: fix a memory leak in sm2 crypto: add eddsa support for x509 - 1 - --- 2021-05-27 Hongbo Li New
[RESEND,2/2] keys: X.509 public key issuer lookup without AKID [RESEND,1/2] keys: crypto: Replace BUG_ON() with WARN() in find_asymmetric_key() - 1 - --- 2021-05-25 Andrew Zaborowski New
[RESEND,1/2] keys: crypto: Replace BUG_ON() with WARN() in find_asymmetric_key() [RESEND,1/2] keys: crypto: Replace BUG_ON() with WARN() in find_asymmetric_key() - - - --- 2021-05-25 Andrew Zaborowski New
[v2,1/1] doc: add draft RFC for TPM Key format draft RFC for TPM key format - - - --- 2021-05-24 James Bottomley New
certs: Fix kernel-doc certs: Fix kernel-doc - - - --- 2021-05-24 Yang Li New
[v8,4/4] Documentation/admin-guide/module-signing.rst: add openssl command option example for CodeS… Check codeSigning extended key usage extension - - - --- 2021-05-24 Lee, Chun-Yi New
[v8,3/4] modsign: Add codeSigning EKU when generating X.509 key generation config Check codeSigning extended key usage extension - - - --- 2021-05-24 Lee, Chun-Yi New
[v8,2/4] PKCS#7: Check codeSigning EKU for kernel module and kexec pe verification Check codeSigning extended key usage extension - - - --- 2021-05-24 Lee, Chun-Yi New
[v8,1/4] X.509: Add CodeSigning extended key usage parsing Check codeSigning extended key usage extension - - - --- 2021-05-24 Lee, Chun-Yi New
[1/1] doc: add draft RFC for TPM Key format draft RFC for TPM key format - - - --- 2021-05-22 James Bottomley New
[v7,4/4] Documentation/admin-guide/module-signing.rst: add openssl command option example for CodeS… Check codeSigning extended key usage extension - - - --- 2021-05-21 Lee, Chun-Yi New
[v7,3/4] modsign: Add codeSigning EKU when generating X.509 key generation config Check codeSigning extended key usage extension - - - --- 2021-05-21 Lee, Chun-Yi New
[v7,2/4] PKCS#7: Check codeSigning EKU for kernel module and kexec pe verification Check codeSigning extended key usage extension - - - --- 2021-05-21 Lee, Chun-Yi New
[v7,1/4] X.509: Add CodeSigning extended key usage parsing Check codeSigning extended key usage extension - - - --- 2021-05-21 Lee, Chun-Yi New
[4/4] security: keys: trusted: implement authorization policy Trusted Key policy for TPM 2.0 - - - --- 2021-05-21 James Bottomley New
[3/4] security: keys: trusted: implement counter/timer policy Trusted Key policy for TPM 2.0 - - - --- 2021-05-21 James Bottomley New
[2/4] security: keys: trusted: add ability to specify arbitrary policy Trusted Key policy for TPM 2.0 - - - --- 2021-05-21 James Bottomley New
[1/4] security: keys: trusted: add PCR policy to TPM2 keys Trusted Key policy for TPM 2.0 - - - --- 2021-05-21 James Bottomley New
[v2] integrity: add informational messages when revoking certs [v2] integrity: add informational messages when revoking certs - - - --- 2021-05-18 Dimitri John Ledkov New
[RFC,3/3] ima: Enable IMA SB Policy if MokIMAPolicy found Add additional MOK vars - - - --- 2021-05-17 Eric Snowberg New
[RFC,2/3] keys: Trust platform keyring if MokTrustPlatform found Add additional MOK vars - - - --- 2021-05-17 Eric Snowberg New
[RFC,1/3] keys: Add ability to trust the platform keyring Add additional MOK vars - - - --- 2021-05-17 Eric Snowberg New
sign-file: Fix confusing error messages sign-file: Fix confusing error messages - - - --- 2021-05-14 tianjia.zhang New
pkcs7: make parser enable SM2 and SM3 algorithms combination pkcs7: make parser enable SM2 and SM3 algorithms combination - - - --- 2021-05-14 tianjia.zhang New
integrity: Load mokx certs from the EFI MOK config table integrity: Load mokx certs from the EFI MOK config table 1 - - --- 2021-05-12 Dimitri John Ledkov New
[7/7] crypto: add eddsa test vector crypto: add eddsa support for x509 - - - --- 2021-05-12 Hongbo Li New
[6/7] crypto: ed25519 cert verification crypto: add eddsa support for x509 - - - --- 2021-05-12 Hongbo Li New
[5/7] crypto: move common code in sm2 to ec_mpi.c and ec_mpi.h crypto: add eddsa support for x509 - - - --- 2021-05-12 Hongbo Li New
[4/7] x509: add support for eddsa crypto: add eddsa support for x509 - - - --- 2021-05-12 Hongbo Li New
[3/7] lib/mpi: export some common function crypto: add eddsa support for x509 - - - --- 2021-05-12 Hongbo Li New
[2/7] lib/mpi: use kcalloc in mpi_resize crypto: add eddsa support for x509 - - - --- 2021-05-12 Hongbo Li New
[1/7] crypto: fix a memory leak in sm2 crypto: add eddsa support for x509 - 1 - --- 2021-05-12 Hongbo Li New
[v2,23/40] docs: security: keys: trusted-encrypted.rst: Use ASCII subset instead of UTF-8 alternate… Use ASCII subset instead of UTF-8 alternate symbols - - - --- 2021-05-12 Mauro Carvalho Chehab New
integrity: add informational messages when revoking certs integrity: add informational messages when revoking certs - - - --- 2021-05-12 Dimitri John Ledkov New
pkcs7: support EC-RDSA/streebog in SignerInfo pkcs7: support EC-RDSA/streebog in SignerInfo 1 2 - --- 2021-05-11 Elvira Khabirova New
[32/53] docs: security: keys: trusted-encrypted.rst: avoid using UTF-8 chars Get rid of UTF-8 chars that can be mapped as ASCII - - - --- 2021-05-10 Mauro Carvalho Chehab New
[06/53] docs: admin-guide: avoid using UTF-8 chars Get rid of UTF-8 chars that can be mapped as ASCII - - - --- 2021-05-10 Mauro Carvalho Chehab New
Keys: Remove redundant initialization of cred Keys: Remove redundant initialization of cred - 1 - --- 2021-05-08 Yang Li New
[RESEND,2/2] keys: X.509 public key issuer lookup without AKID [RESEND,1/2] keys: crypto: Replace BUG_ON() with WARN() in find_asymmetric_key() - 1 - --- 2021-04-30 Andrew Zaborowski New
[RESEND,1/2] keys: crypto: Replace BUG_ON() with WARN() in find_asymmetric_key() [RESEND,1/2] keys: crypto: Replace BUG_ON() with WARN() in find_asymmetric_key() - - - --- 2021-04-30 Andrew Zaborowski New
KEYS: trusted: fix memory leak KEYS: trusted: fix memory leak - - - --- 2021-04-30 Tom Rix New
KEYS: trusted: Fix memory leak on object td KEYS: trusted: Fix memory leak on object td - 3 - --- 2021-04-30 Colin King New
[v2] .gitignore: prefix local generated files with a slash [v2] .gitignore: prefix local generated files with a slash 5 - - --- 2021-04-30 Masahiro Yamada New
[v2,1/1] trusted-keys: match tpm_get_ops on all return paths trusted-keys: match tpm_get_ops on all return paths - 1 - --- 2021-04-29 Ben Boeckel New
[1/1] trusted-keys: match tpm_get_ops on all return paths trusted-keys: match tpm_get_ops on all return paths - - - --- 2021-04-29 Ben Boeckel New
[v6,4/4] Documentation/admin-guide/module-signing.rst: add openssl command option example for CodeS… Check codeSigning extended key usage extension - - - --- 2021-04-29 Lee, Chun-Yi New
[v6,3/4] modsign: Add codeSigning EKU when generating X.509 key generation config Check codeSigning extended key usage extension - - - --- 2021-04-29 Lee, Chun-Yi New
[v6,2/4] PKCS#7: Check codeSigning EKU for kernel module and kexec pe verification Check codeSigning extended key usage extension - - - --- 2021-04-29 Lee, Chun-Yi New
[v6,1/4] X.509: Add CodeSigning extended key usage parsing Check codeSigning extended key usage extension - - - --- 2021-04-29 Lee, Chun-Yi New
« 1 2 ... 17 18 1926 27 »