| /linux/Documentation/admin-guide/ |
| A D | module-signing.rst | 1 Kernel module signing facility
7 .. - Configuring module signing.
8 .. - Generating signing keys.
10 .. - Manually signing modules.
21 The kernel module signing facility cryptographically signs modules during
38 Configuring module signing
41 The module signing facility is enabled by going to the
96 (4) :menuselection:`File name or PKCS#11 URI of module signing key`
125 Generating signing keys
212 Manually signing modules
[all …]
|
| A D | index.rst | 103 module-signing
|
| /linux/certs/ |
| A D | Kconfig | 5 string "File name or PKCS#11 URI of module signing key"
16 certificate as described in Documentation/admin-guide/module-signing.rst
19 prompt "Type of module signing key to be generated"
22 The type of module signing key type to generate. This option
29 Use an RSA key for module signing.
36 Use an elliptic curve key (NIST P384) for module signing. Consider
39 Note: Remove all ECDSA signing keys, e.g. certs/signing_key.pem,
63 system keyring. Any certificate used for module signing is implicitly
|
| /linux/Documentation/kbuild/ |
| A D | reproducible-builds.rst | 74 Module signing
79 modules being unreproducible. However, including a signing key with
80 your source would presumably defeat the purpose of signing modules.
85 1. Generate a persistent signing key. Add the certificate for the key
89 signing key's certificate, set ``CONFIG_MODULE_SIG_KEY`` to an
|
| A D | kbuild.rst | 224 utility when signing kernel modules, if the private key requires such.
|
| /linux/fs/cifs/ |
| A D | smb2transport.c | 386 struct derivation signing; member
411 rc = generate_key(ses, ptriplet->signing.label, in generate_smb3signingkey()
412 ptriplet->signing.context, in generate_smb3signingkey()
418 rc = generate_key(ses, ptriplet->signing.label, in generate_smb3signingkey()
419 ptriplet->signing.context, in generate_smb3signingkey()
479 d = &triplet.signing; in generate_smb30signingkey()
507 d = &triplet.signing; in generate_smb311signingkey()
|
| A D | Kconfig | 45 signing, Unicode and other internationalization improvements.
|
| /linux/Documentation/crypto/ |
| A D | asymmetric-keys.rst | 343 The kernel builtin trusted keyring will be searched for the signing key.
354 signing key. If the secondary trusted keyring is not configured, this
367 a group of keys may be searched for the signing key by providing the
371 within the destination keyring will also be searched for signing keys.
394 keyring, we can be certain that it has a valid signing chain going back to
415 keyring, we can be certain that there is a valid signing chain going back
419 In all of these cases, if the signing key is found the signature of the key to
420 be linked will be verified using the signing key. The requested key is added
|
| /linux/fs/ksmbd/ |
| A D | server.h | 33 short signing; member
|
| A D | auth.c | 721 const struct derivation *signing) in generate_smb3signingkey() argument
731 if (sess->conn->dialect >= SMB30_PROT_ID && signing->binding) in generate_smb3signingkey()
736 rc = generate_key(sess, signing->label, signing->context, key, in generate_smb3signingkey()
741 if (!(sess->conn->dialect >= SMB30_PROT_ID && signing->binding)) in generate_smb3signingkey()
|
| A D | Kconfig | 41 compound requests, multi-credit, packet signing, RDMA(smbdirect),
|
| A D | ksmbd_netlink.h | 83 __s32 signing; /* Signing enabled */ member
|
| A D | transport_ipc.c | 291 server_conf.signing = req->signing; in ipc_server_config_on_startup()
|
| /linux/crypto/asymmetric_keys/ |
| A D | mscode.asn1 | 1 --- Microsoft individual code signing data blob parser
|
| /linux/Documentation/translations/zh_CN/admin-guide/ |
| A D | index.rst | 109 module-signing
|
| /linux/Documentation/translations/zh_TW/admin-guide/ |
| A D | index.rst | 109 module-signing
|
| /linux/Documentation/admin-guide/cifs/ |
| A D | usage.rst | 643 by intermediate systems in the route). Note that signing
673 Use Kerberos authentication and packet signing
677 Use NTLM password hashing with signing (if
679 server requires signing also can be the default)
683 Use NTLMv2 password hashing with packet signing
724 also packet signing. Authentication (may/must)
726 the signing flags. Specifying two different password
732 (NTLM, NTLMv2 and packet signing allowed). The maximum
735 plaintext, ntlm, ntlmv2, signing allowed). Some
747 may use packet signing 0x00001
[all …]
|
| A D | introduction.rst | 29 signing, large files, Unicode support and other internationalization
|
| A D | todo.rst | 123 and when signing is disabled to request larger read sizes (larger than
|
| /linux/ |
| A D | .gitignore | 137 # Leavings from module signing
|
| /linux/Documentation/security/ |
| A D | digsig.rst | 81 The signing and key management utilities evm-utils provide functionality
|
| /linux/Documentation/filesystems/nfs/ |
| A D | rpc-server-gss.rst | 36 - integrity/privacy protection (signing and encrypting of individual
|
| /linux/Documentation/process/ |
| A D | changes.rst | 137 Module signing and external certificate handling use the OpenSSL program and
140 You will need openssl to build kernels 3.7 and higher if module signing is
|
| A D | maintainer-pgp-guide.rst | 161 - **[S]** key can be used for signing
220 signing subkey::
237 recommend that you create an ECC signing subkey for your kernel
295 such as when making changes to your own key or signing other people's
319 like editing identities, adding or revoking subkeys, or signing other
789 this reason, most kernel developers don't bother signing their commits
|
| /linux/Documentation/ |
| A D | Changes | 137 Module signing and external certificate handling use the OpenSSL program and
140 You will need openssl to build kernels 3.7 and higher if module signing is
|