Linux Keyrings - Patchwork

Show patches with: State = Action Required | 2647 patches

« 1 2 ... 17 18 19 … 26 27 »

Patch	Series	A/R/T	S/W/F	Date	Submitter	State
X.509 asn1-encoder: Add linux/types.h include	X.509 asn1-encoder: Add linux/types.h include	- - -	---	2021-08-04	Jonathan Cameron	New
[v3] KEYS: trusted: Fix trusted key backends when building as module	[v3] KEYS: trusted: Fix trusted key backends when building as module	- 3 -	---	2021-07-30	Andreas Rammhold	New
[v2] KEYS: trusted: Fix trusted key backends when building as module	[v2] KEYS: trusted: Fix trusted key backends when building as module	- 1 -	---	2021-07-29	Andreas Rammhold	New
[RFC,v1] fscrypt: support encrypted and trusted keys	[RFC,v1] fscrypt: support encrypted and trusted keys	- - -	---	2021-07-27	Ahmad Fatoum	New
[RFC,v2,12/12] integrity: store reference to mok keyring	Enroll kernel keys thru MOK	- - -	---	2021-07-26	Eric Snowberg	New
[RFC,v2,11/12] integrity: Do not allow mok keyring updates following init	Enroll kernel keys thru MOK	- - -	---	2021-07-26	Eric Snowberg	New
[RFC,v2,10/12] KEYS: link system_trusted_keys to mok_trusted_keys	Enroll kernel keys thru MOK	- - -	---	2021-07-26	Eric Snowberg	New
[RFC,v2,09/12] KEYS: add a reference to mok keyring	Enroll kernel keys thru MOK	- - -	---	2021-07-26	Eric Snowberg	New
[RFC,v2,08/12] integrity: Suppress error message for keys added to the mok keyring	Enroll kernel keys thru MOK	- - -	---	2021-07-26	Eric Snowberg	New
[RFC,v2,07/12] integrity: add new keyring handler for mok keys	Enroll kernel keys thru MOK	- - -	---	2021-07-26	Eric Snowberg	New
[RFC,v2,06/12] integrity: accessor function to get trust_moklist	Enroll kernel keys thru MOK	- - -	---	2021-07-26	Eric Snowberg	New
[RFC,v2,05/12] integrity: restrict INTEGRITY_KEYRING_MOK to restrict_link_by_system_trusted_or_ca	Enroll kernel keys thru MOK	- - -	---	2021-07-26	Eric Snowberg	New
[RFC,v2,04/12] integrity: add add_to_mok_keyring	Enroll kernel keys thru MOK	- - -	---	2021-07-26	Eric Snowberg	New
[RFC,v2,03/12] integrity: Trust MOK keys if MokListTrustedRT found	Enroll kernel keys thru MOK	- - -	---	2021-07-26	Eric Snowberg	New
[RFC,v2,02/12] KEYS: CA link restriction	Enroll kernel keys thru MOK	- - -	---	2021-07-26	Eric Snowberg	New
[RFC,v2,01/12] integrity: Introduce a Linux keyring for the Machine Owner Key (MOK)	Enroll kernel keys thru MOK	- - -	---	2021-07-26	Eric Snowberg	New
[V2] security: keys: trusted: Fix memory leaks on allocated blob	[V2] security: keys: trusted: Fix memory leaks on allocated blob	1 - -	---	2021-07-26	Colin King	New
security: keys: trusted: Fix memory leaks on allocated blob	security: keys: trusted: Fix memory leaks on allocated blob	1 1 -	---	2021-07-23	Colin King	New
[RFC,v1,4/4] ubifs: auth: consult encrypted and trusted keys if no logon key was found	keys: introduce key_extract_material helper	- - -	---	2021-07-22	Ahmad Fatoum	New
[RFC,v1,3/4] ubifs: auth: remove never hit key type error check	keys: introduce key_extract_material helper	- - -	---	2021-07-22	Ahmad Fatoum	New
[RFC,v1,2/4] dm: crypt: use new key_extract_material helper	keys: introduce key_extract_material helper	- - -	---	2021-07-22	Ahmad Fatoum	New
[RFC,v1,1/4] keys: introduce key_extract_material helper	keys: introduce key_extract_material helper	- - -	---	2021-07-22	Ahmad Fatoum	New
[4/4] KEYS: trusted: Introduce support for NXP CAAM-based trusted keys	KEYS: trusted: Introduce support for NXP CAAM-based trusted keys	- - -	---	2021-07-21	Ahmad Fatoum	New
[3/4] crypto: caam - add in-kernel interface for blob generator	KEYS: trusted: Introduce support for NXP CAAM-based trusted keys	- 1 -	---	2021-07-21	Ahmad Fatoum	New
[2/4] KEYS: trusted: allow trust sources to use kernel RNG for key material	KEYS: trusted: Introduce support for NXP CAAM-based trusted keys	1 - -	---	2021-07-21	Ahmad Fatoum	New
[1/4] KEYS: trusted: allow users to use kernel RNG for key material	KEYS: trusted: Introduce support for NXP CAAM-based trusted keys	1 - -	---	2021-07-21	Ahmad Fatoum	New
[v2] KEYS: trusted: fix use as module when CONFIG_TCG_TPM=m	[v2] KEYS: trusted: fix use as module when CONFIG_TCG_TPM=m	- 1 1	---	2021-07-21	Ahmad Fatoum	New
KEYS: trusted: Fix trusted key backends when building as module	KEYS: trusted: Fix trusted key backends when building as module	- 1 -	---	2021-07-16	Andreas Rammhold	New
[v8,5/5] certs: Allow root user to append signed hashes to the blacklist keyring	Enable root to update the blacklist keyring	- - -	---	2021-07-12	Mickaël Salaün	New
[v8,4/5] certs: Factor out the blacklist hash creation	Enable root to update the blacklist keyring	- - -	---	2021-07-12	Mickaël Salaün	New
[v8,3/5] certs: Make blacklist_vet_description() more strict	Enable root to update the blacklist keyring	- 1 -	---	2021-07-12	Mickaël Salaün	New
[v8,2/5] certs: Check that builtin blacklist hashes are valid	Enable root to update the blacklist keyring	- - -	---	2021-07-12	Mickaël Salaün	New
[v8,1/5] tools/certs: Add print-cert-tbs-hash.sh	Enable root to update the blacklist keyring	- 1 -	---	2021-07-12	Mickaël Salaün	New
X.509: Support parsing certificate using SM2 algorithm	X.509: Support parsing certificate using SM2 algorithm	1 - -	---	2021-07-12	tianjia.zhang	New
[RFC,12/12] integrity: Suppress error message for keys added to the mok keyring	Enroll kernel keys thru MOK	- - -	---	2021-07-07	Eric Snowberg	New
[RFC,11/12] integrity: move keys from the mok keyring into the secondary keyring	Enroll kernel keys thru MOK	- - -	---	2021-07-07	Eric Snowberg	New
[RFC,10/12] integrity: add new keyring handler	Enroll kernel keys thru MOK	- - -	---	2021-07-07	Eric Snowberg	New
[RFC,09/12] integrity: accessor function to get trust_moklist	Enroll kernel keys thru MOK	- - -	---	2021-07-07	Eric Snowberg	New
[RFC,08/12] integrity: restrict INTEGRITY_KEYRING_MOK to restrict_link_by_secondary_trusted_or_ca	Enroll kernel keys thru MOK	- - -	---	2021-07-07	Eric Snowberg	New
[RFC,07/12] integrity: add add_to_mok_keyring	Enroll kernel keys thru MOK	- - -	---	2021-07-07	Eric Snowberg	New
[RFC,06/12] integrity: Trust mok keys if MokListTrustedRT found	Enroll kernel keys thru MOK	- - -	---	2021-07-07	Eric Snowberg	New
[RFC,05/12] integrity: Introduce mok keyring	Enroll kernel keys thru MOK	- - -	---	2021-07-07	Eric Snowberg	New
[RFC,04/12] integrity: add integrity_destroy_keyring	Enroll kernel keys thru MOK	- - -	---	2021-07-07	Eric Snowberg	New
[RFC,03/12] KEYS: CA link restriction	Enroll kernel keys thru MOK	- - -	---	2021-07-07	Eric Snowberg	New
[RFC,02/12] KEYS: Allow unrestricted keys to be moved to the secondary keyring	Enroll kernel keys thru MOK	- - -	---	2021-07-07	Eric Snowberg	New
[RFC,01/12] KEYS: Add KEY_ALLOC_BYPASS_RESTRICTION option to key_move	Enroll kernel keys thru MOK	- - -	---	2021-07-07	Eric Snowberg	New
[v8,2/2] certs: Add support for using elliptic curve keys for signing modules	Add support for ECDSA-signed kernel modules	- - -	---	2021-06-29	Stefan Berger	New
[v8,1/2] certs: Trigger creation of RSA module signing key if it's not an RSA key	Add support for ECDSA-signed kernel modules	- - -	---	2021-06-29	Stefan Berger	New
[v7,2/2] certs: Add support for using elliptic curve keys for signing modules	Add support for ECDSA-signed kernel modules	- 1 -	---	2021-06-28	Stefan Berger	New
[v7,1/2] certs: Trigger creation of RSA module signing key if it's not an RSA key	Add support for ECDSA-signed kernel modules	- 1 -	---	2021-06-28	Stefan Berger	New
certs: Redirect openssl error message to null device	certs: Redirect openssl error message to null device	- - -	---	2021-06-25	Stefan Berger	New
[v2] sign-file: Fix confusing error messages	[v2] sign-file: Fix confusing error messages	- - -	---	2021-06-24	tianjia.zhang	New
[v3] pkcs7: make parser enable SM2 and SM3 algorithms combination	[v3] pkcs7: make parser enable SM2 and SM3 algorithms combination	1 1 -	---	2021-06-24	tianjia.zhang	New
[v2,2/6] KEYS: trusted: Allow import from existing key material for development	KEYS: trusted: Introduce support for NXP CAAM-based trusted keys	- - -	---	2021-06-22	Ahmad Fatoum	New
[v2,6/6] KEYS: trusted: Introduce support for NXP CAAM-based trusted keys	KEYS: trusted: Introduce support for NXP CAAM-based trusted keys	- - -	---	2021-06-22	Ahmad Fatoum	New
[v2,5/6] crypto: caam - add in-kernel interface for blob generator	KEYS: trusted: Introduce support for NXP CAAM-based trusted keys	- - -	---	2021-06-22	Ahmad Fatoum	New
[v2,4/6] KEYS: trusted: allow trust sources to use kernel RNG for key material	KEYS: trusted: Introduce support for NXP CAAM-based trusted keys	- - -	---	2021-06-22	Ahmad Fatoum	New
[v2,3/6] KEYS: trusted: allow users to use kernel RNG for key material	KEYS: trusted: Introduce support for NXP CAAM-based trusted keys	- - -	---	2021-06-22	Ahmad Fatoum	New
[v2,1/6] KEYS: trusted: allow use of TEE as backend without TCG_TPM support	KEYS: trusted: Introduce support for NXP CAAM-based trusted keys	- - -	---	2021-06-22	Ahmad Fatoum	New
[3/3] doc: trusted-encrypted: add DCP as new trust source	DCP as trusted keys backend	- - -	---	2021-06-14	Richard Weinberger	New
[2/3] KEYS: trusted: Introduce support for NXP DCP-based trusted keys	DCP as trusted keys backend	- - -	---	2021-06-14	Richard Weinberger	New
[1/3] crypto: mxs-dcp: Add support for hardware provided keys	DCP as trusted keys backend	- - -	---	2021-06-14	Richard Weinberger	New
[v6,4/4] certs: Adjustment due to 'Check whether openssl tool is available'	Add support for ECDSA-signed kernel modules	- - -	---	2021-06-10	Stefan Berger	New
[v6,3/4] certs: Add support for using elliptic curve keys for signing modules	Add support for ECDSA-signed kernel modules	1 - 1	---	2021-06-10	Stefan Berger	New
[v6,2/4] certs: Check whether openssl tool is available	Add support for ECDSA-signed kernel modules	- - -	---	2021-06-10	Stefan Berger	New
[v6,1/4] certs: Trigger creation of RSA module signing key if it's not an RSA key	Add support for ECDSA-signed kernel modules	- 1 1	---	2021-06-10	Stefan Berger	New
tpm2_load_command leaks memory	tpm2_load_command leaks memory	- - -	---	2021-06-10	Dhiraj Shah	New
[v2] crypto: sm2 - fix a memory leak in sm2	[v2] crypto: sm2 - fix a memory leak in sm2	- 1 -	---	2021-06-04	Hongbo Li	New
[v5,2/2] certs: Add support for using elliptic curve keys for signing modules	Add support for ECDSA-signed kernel modules	- - -	---	2021-06-02	Stefan Berger	New
[v5,1/2] certs: Trigger creation of RSA module signing key if it's not an RSA key	Add support for ECDSA-signed kernel modules	- - -	---	2021-06-02	Stefan Berger	New
[v5,2/2] certs: Add support for using elliptic curve keys for signing modules	Add support for ECDSA-signed kernel modules	1 - 1	---	2021-06-01	Stefan Berger	New
[v5,1/2] certs: Trigger creation of RSA module signing key if it's not an RSA key	Add support for ECDSA-signed kernel modules	- 1 1	---	2021-06-01	Stefan Berger	New
crypto: sm2 - fix a memory leak in sm2	crypto: sm2 - fix a memory leak in sm2	- 1 -	---	2021-05-31	Hongbo Li	New
crypto: fix a memory leak in sm2	crypto: fix a memory leak in sm2	- 1 -	---	2021-05-31	Hongbo Li	New
[v2,7/7] crypto: add eddsa test vector	crypto: add eddsa support for x509	- - -	---	2021-05-27	Hongbo Li	New
[v2,6/7] crypto: ed25519 cert verification	crypto: add eddsa support for x509	- - -	---	2021-05-27	Hongbo Li	New
[v2,5/7] crypto: move common code in sm2 to ec_mpi.c and ec_mpi.h	crypto: add eddsa support for x509	- - -	---	2021-05-27	Hongbo Li	New
[v2,4/7] x509: add support for eddsa	crypto: add eddsa support for x509	- - -	---	2021-05-27	Hongbo Li	New
[v2,3/7] lib/mpi: export some common function	crypto: add eddsa support for x509	- - -	---	2021-05-27	Hongbo Li	New
[v2,2/7] lib/mpi: use kcalloc in mpi_resize	crypto: add eddsa support for x509	- - -	---	2021-05-27	Hongbo Li	New
[v2,1/7] crypto: fix a memory leak in sm2	crypto: add eddsa support for x509	- 1 -	---	2021-05-27	Hongbo Li	New
[RESEND,2/2] keys: X.509 public key issuer lookup without AKID	[RESEND,1/2] keys: crypto: Replace BUG_ON() with WARN() in find_asymmetric_key()	- 1 -	---	2021-05-25	Andrew Zaborowski	New
[RESEND,1/2] keys: crypto: Replace BUG_ON() with WARN() in find_asymmetric_key()	[RESEND,1/2] keys: crypto: Replace BUG_ON() with WARN() in find_asymmetric_key()	- - -	---	2021-05-25	Andrew Zaborowski	New
[v2,1/1] doc: add draft RFC for TPM Key format	draft RFC for TPM key format	- - -	---	2021-05-24	James Bottomley	New
certs: Fix kernel-doc	certs: Fix kernel-doc	- - -	---	2021-05-24	Yang Li	New
[v8,4/4] Documentation/admin-guide/module-signing.rst: add openssl command option example for CodeS…	Check codeSigning extended key usage extension	- - -	---	2021-05-24	Lee, Chun-Yi	New
[v8,3/4] modsign: Add codeSigning EKU when generating X.509 key generation config	Check codeSigning extended key usage extension	- - -	---	2021-05-24	Lee, Chun-Yi	New
[v8,2/4] PKCS#7: Check codeSigning EKU for kernel module and kexec pe verification	Check codeSigning extended key usage extension	- - -	---	2021-05-24	Lee, Chun-Yi	New
[v8,1/4] X.509: Add CodeSigning extended key usage parsing	Check codeSigning extended key usage extension	- - -	---	2021-05-24	Lee, Chun-Yi	New
[1/1] doc: add draft RFC for TPM Key format	draft RFC for TPM key format	- - -	---	2021-05-22	James Bottomley	New
[v7,4/4] Documentation/admin-guide/module-signing.rst: add openssl command option example for CodeS…	Check codeSigning extended key usage extension	- - -	---	2021-05-21	Lee, Chun-Yi	New
[v7,3/4] modsign: Add codeSigning EKU when generating X.509 key generation config	Check codeSigning extended key usage extension	- - -	---	2021-05-21	Lee, Chun-Yi	New
[v7,2/4] PKCS#7: Check codeSigning EKU for kernel module and kexec pe verification	Check codeSigning extended key usage extension	- - -	---	2021-05-21	Lee, Chun-Yi	New
[v7,1/4] X.509: Add CodeSigning extended key usage parsing	Check codeSigning extended key usage extension	- - -	---	2021-05-21	Lee, Chun-Yi	New
[4/4] security: keys: trusted: implement authorization policy	Trusted Key policy for TPM 2.0	- - -	---	2021-05-21	James Bottomley	New
[3/4] security: keys: trusted: implement counter/timer policy	Trusted Key policy for TPM 2.0	- - -	---	2021-05-21	James Bottomley	New
[2/4] security: keys: trusted: add ability to specify arbitrary policy	Trusted Key policy for TPM 2.0	- - -	---	2021-05-21	James Bottomley	New
[1/4] security: keys: trusted: add PCR policy to TPM2 keys	Trusted Key policy for TPM 2.0	- - -	---	2021-05-21	James Bottomley	New
[v2] integrity: add informational messages when revoking certs	[v2] integrity: add informational messages when revoking certs	- - -	---	2021-05-18	Dimitri John Ledkov	New
[RFC,3/3] ima: Enable IMA SB Policy if MokIMAPolicy found	Add additional MOK vars	- - -	---	2021-05-17	Eric Snowberg	New

« 1 2 ... 17 18 19 … 26 27 »