lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [thread-next>] [day] [month] [year] [list]
Message-ID: <20131213154508.3155.20275.stgit@warthog.procyon.org.uk>
Date:	Fri, 13 Dec 2013 15:45:08 +0000
From:	David Howells <dhowells@...hat.com>
To:	torvalds@...ux-foundation.org, jmorris@...ei.org
Cc:	dhowells@...hat.com, keyrings@...ux-nfs.org,
	linux-security-module@...r.kernel.org, linux-kernel@...r.kernel.org
Subject: [PATCH 0/4] Keys patches


Hi Linus, James,

Here are some more keyrings fixes plus some module signing documentation (if
you want it).  They can be found here also:

	http://git.kernel.org/cgit/linux/kernel/git/dhowells/linux-fs.git/log/?h=keys-devel

There are four items:

 (1) A patch to fix X.509 certificate gathering.  The problem was that I was
     coming up with a different path for signing_key.x509 in the build
     directory if it didn't exist to if it did exist.  This meant that the
     X.509 cert container object file would be rebuilt on the second rebuild in
     a build directory and the kernel would get relinked.

 (2) Unconditionally remove files generated by SYSTEM_TRUSTED_KEYRING=y when
     doing make mrproper.

 (3) Actually initialise the persistent-keyring semaphore for init_user_ns.  I
     have no idea why this works at all for users in the base user namespace
     unless it's something to do with systemd containerising the system.

 (4) Documentation for module signing.  Do you want this now or the next merge
     window?

David
---
David Howells (1):
      X.509: Fix certificate gathering

James Solner (1):
      Add Documentation/module-signing.txt file

Kirill Tkhai (1):
      KEYS: Remove files generated when SYSTEM_TRUSTED_KEYRING=y

Xiao Guangrong (1):
      KEYS: fix uninitialized persistent_keyring_register_sem


 Documentation/module-signing.txt |  240 ++++++++++++++++++++++++++++++++++++++
 kernel/Makefile                  |    7 +
 kernel/user.c                    |    6 -
 3 files changed, 247 insertions(+), 6 deletions(-)
 create mode 100644 Documentation/module-signing.txt

--
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@...r.kernel.org
More majordomo info at  http://vger.kernel.org/majordomo-info.html
Please read the FAQ at  http://www.tux.org/lkml/

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ