Gitiles
Code Review Sign In
review.shift-gmbh.com / SHIFTPHONES / kernel / common / 84706caae9e06363db4f956cde4f9715ce5c0ef3
commit84706caae9e06363db4f956cde4f9715ce5c0ef3[log] [tgz]
authorDavid Woodhouse <David.Woodhouse@intel.com>Mon Jul 20 21:16:33 2015 +0100
committerDavid Howells <dhowells@redhat.com>Wed Aug 12 17:01:01 2015 +0100
tree282821472d398da61e41035646ab9a20085db816
parented8c20762a314124cbdd62e9d3e8aa7aa2a16020 [diff]
extract-cert: Cope with multiple X.509 certificates in a single file

This is not required for the module signing key, although it doesn't do any
harm — it just means that any additional certs in the PEM file are also
trusted by the kernel.

But it does allow us to use the extract-cert tool for processing the extra
certs from CONFIG_SYSTEM_TRUSTED_KEYS, instead of that horrid awk|base64
hack.

Also cope with being invoked with no input file, creating an empty output
file as a result.

Signed-off-by: David Woodhouse <David.Woodhouse@intel.com>
Signed-off-by: David Howells <dhowells@redhat.com>
1 file changed
tree: 282821472d398da61e41035646ab9a20085db816
  1. arch/
  2. block/
  3. crypto/
  4. Documentation/
  5. drivers/
  6. firmware/
  7. fs/
  8. include/
  9. init/
  10. ipc/
  11. kernel/
  12. lib/
  13. mm/
  14. net/
  15. samples/
  16. scripts/
  17. security/
  18. sound/
  19. tools/
  20. usr/
  21. virt/
  22. .gitignore
  23. .mailmap
  24. COPYING
  25. CREDITS
  26. Kbuild
  27. Kconfig
  28. MAINTAINERS
  29. Makefile
  30. README
  31. REPORTING-BUGS