This website works better with JavaScript.
Explore
Help
Sign In
jenna
/
kernel_samsung_sm7125
Watch
1
Star
0
Fork
You've already forked kernel_samsung_sm7125
0
Code
Issues
Pull Requests
Releases
Wiki
Activity
You can not select more than 25 topics
Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
707689
Commits
5
Branches
0
Tags
1.2 GiB
Tag:
Branch:
Tree:
bb176f6709
fifteen
fourteen
tirimbino
urubino
urubino-ksu
Branches
Tags
${ item.name }
Create tag
${ searchTerm }
Create branch
${ searchTerm }
from 'bb176f6709'
${ noResults }
kernel_samsung_sm7125
/
certs
/
blacklist_nohashes.c
6 lines
85 B
Raw
Normal View
History
Unescape
Escape
KEYS: Add a system blacklist keyring Add the following: (1) A new system keyring that is used to store information about blacklisted certificates and signatures. (2) A new key type (called 'blacklist') that is used to store a blacklisted hash in its description as a hex string. The key accepts no payload. (3) The ability to configure a list of blacklisted hashes into the kernel at build time. This is done by setting CONFIG_SYSTEM_BLACKLIST_HASH_LIST to the filename of a list of hashes that are in the form: "<hash>", "<hash>", ..., "<hash>" where each <hash> is a hex string representation of the hash and must include all necessary leading zeros to pad the hash to the right size. The above are enabled with CONFIG_SYSTEM_BLACKLIST_KEYRING. Once the kernel is booted, the blacklist keyring can be listed: root@andromeda ~]# keyctl show %:.blacklist Keyring 723359729 ---lswrv 0 0 keyring: .blacklist 676257228 ---lswrv 0 0 \_ blacklist: 123412341234c55c1dcc601ab8e172917706aa32fb5eaf826813547fdf02dd46 The blacklist cannot currently be modified by userspace, but it will be possible to load it, for example, from the UEFI blacklist database. A later commit will make it possible to load blacklisted asymmetric keys in here too. Signed-off-by: David Howells <dhowells@redhat.com>
8 years ago
#
include
"blacklist.h"
const
char
__initdata
*
const
blacklist_hashes
[
]
=
{
NULL
}
;