Masahiro Yamada 6ce019f73d certs: include certs/signing_key.x509 unconditionally ... I do not see much sense in the #if conditional in system_certificates.S; even if the condition is true, there exists no signing key when CONFIG_MODULE_SIG_KEY="". So, certs/Makefile generates empty certs/signing_key.x509 in such a case. We can always do this, irrespective of CONFIG_MODULE_SIG or (CONFIG_IMA_APPRAISE_MODSIG && CONFIG_MODULES). We only need to check CONFIG_MODULE_SIG_KEY, then both *.S and Makefile will become much simpler. Signed-off-by: Masahiro Yamada <masahiroy@kernel.org>		2022-03-03 08:16:19 +09:00
..
.gitignore	certs: move scripts/extract-cert to certs/	2022-01-08 18:28:21 +09:00
Kconfig	certs: move the 'depends on' to the choice of module signing keys	2021-12-11 22:09:14 +09:00
Makefile	certs: include certs/signing_key.x509 unconditionally	2022-03-03 08:16:19 +09:00
blacklist.c	certs: Add ability to preload revocation certs	2021-03-11 16:33:49 +00:00
blacklist.h	certs: Add EFI_CERT_X509_GUID support for dbx entries	2021-03-11 16:31:28 +00:00
blacklist_hashes.c	License cleanup: add SPDX GPL-2.0 license identifier to files with no license	2017-11-02 11:10:55 +01:00
blacklist_nohashes.c	certs/blacklist_nohashes.c: fix const confusion in certs blacklist	2018-02-21 15:35:43 -08:00
common.c	certs: Move load_system_certificate_list to a common function	2021-03-11 16:32:38 +00:00
common.h	certs: Move load_system_certificate_list to a common function	2021-03-11 16:32:38 +00:00
default_x509.genkey	certs: check-in the default x509 config file	2021-12-11 22:09:14 +09:00
extract-cert.c	certs: move scripts/extract-cert to certs/	2022-01-08 18:28:21 +09:00
revocation_certificates.S	certs: Add ability to preload revocation certs	2021-03-11 16:33:49 +00:00
system_certificates.S	certs: include certs/signing_key.x509 unconditionally	2022-03-03 08:16:19 +09:00
system_keyring.c	integrity-v5.13	2021-05-01 15:32:18 -07:00