linux/certs
Nayna Jain 2434f7d2d4 certs: Add wrapper function to check blacklisted binary hash
The -EKEYREJECTED error returned by existing is_hash_blacklisted() is
misleading when called for checking against blacklisted hash of a
binary.

This patch adds a wrapper function is_binary_blacklisted() to return
-EPERM error if binary is blacklisted.

Signed-off-by: Nayna Jain <nayna@linux.ibm.com>
Reviewed-by: Mimi Zohar <zohar@linux.ibm.com>
Signed-off-by: Michael Ellerman <mpe@ellerman.id.au>
Link: https://lore.kernel.org/r/1572492694-6520-7-git-send-email-zohar@linux.ibm.com
2019-11-12 12:25:50 +11:00
..
.gitignore
blacklist.c certs: Add wrapper function to check blacklisted binary hash 2019-11-12 12:25:50 +11:00
blacklist.h
blacklist_hashes.c
blacklist_nohashes.c
Kconfig
Makefile
system_certificates.S
system_keyring.c PKCS#7: Refactor verify_pkcs7_signature() 2019-08-05 18:40:18 -04:00