Google Git
Sign in
kernel / pub / scm / linux / kernel / git / dhowells / linux-modsign / refs/heads/modsign-uarg
commitb082e8fb62ebde68a221fbcc2629c055bd5a1400[log] [tgz]
authorDavid Howells <dhowells@redhat.com>Fri May 25 16:05:54 2012 +0100
committerDavid Howells <dhowells@redhat.com>Fri May 25 16:05:54 2012 +0100
treea74d9dd6c236451a1a31b60ec91563c1570e1659
parent7086db640d04893a433979794cc56dbc4cb53854 [diff]
MODSIGN: Panic the kernel if FIPS is enabled upon module signing failure

If module signing fails when the kernel is running with FIPS enabled then the
kernel should panic lest the crypto layer be compromised.  Possibly a panic
shouldn't happen on cases like ENOMEM.

Reported-by: Stephan Mueller <stephan.mueller@atsec.com>
Signed-off-by: David Howells <dhowells@redhat.com>
1 file changed
tree: a74d9dd6c236451a1a31b60ec91563c1570e1659
  1. arch/
  2. block/
  3. crypto/
  4. Documentation/
  5. drivers/
  6. firmware/
  7. fs/
  8. include/
  9. init/
  10. ipc/
  11. kernel/
  12. lib/
  13. mm/
  14. net/
  15. samples/
  16. scripts/
  17. security/
  18. sound/
  19. tools/
  20. usr/
  21. virt/
  22. .gitignore
  23. .mailmap
  24. COPYING
  25. CREDITS
  26. Kbuild
  27. Kconfig
  28. MAINTAINERS
  29. Makefile
  30. README
  31. REPORTING-BUGS