powerpc: Load firmware trusted keys/hashes into kernel keyring - starfive-tech/linux.git - StarFive Tech Linux Kernel for VisionFive (JH7110) boards (mirror)

diff options

author	Nayna Jain <nayna@linux.ibm.com>	2019-11-11 06:10:36 +0300
committer	Michael Ellerman <mpe@ellerman.id.au>	2019-11-12 16:33:23 +0300
commit	8220e22d11a05049aab9693839ab82e5e177ccde (patch)
tree	565ae2c0ff755e7454f137a03bfc3e63870d8060 /crypto/crct10dif_generic.c
parent	ad723674d6758478829ee766e3f1a2a24d56236f (diff)
download	linux-8220e22d11a05049aab9693839ab82e5e177ccde.tar.xz

powerpc: Load firmware trusted keys/hashes into kernel keyring

The keys used to verify the Host OS kernel are managed by firmware as secure variables. This patch loads the verification keys into the .platform keyring and revocation hashes into .blacklist keyring. This enables verification and loading of the kernels signed by the boot time keys which are trusted by firmware. Signed-off-by: Nayna Jain <nayna@linux.ibm.com> Reviewed-by: Mimi Zohar <zohar@linux.ibm.com> Signed-off-by: Eric Richter <erichte@linux.ibm.com> [mpe: Search by compatible in load_powerpc_certs(), not using format] Signed-off-by: Michael Ellerman <mpe@ellerman.id.au> Link: https://lore.kernel.org/r/1573441836-3632-5-git-send-email-nayna@linux.ibm.com

Diffstat (limited to 'crypto/crct10dif_generic.c')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: