• David Howells's avatar
    X.509: Remove certificate date checks · d8f0a31a
    David Howells authored
    commit 124df926090b32a998483f6e43ebeccdbe5b5302 upstream.
    
    Remove the certificate date checks that are performed when a certificate is
    parsed.  There are two checks: a valid from and a valid to.  The first check is
    causing a lot of problems with system clocks that don't keep good time and the
    second places an implicit expiry date upon the kernel when used for module
    signing, so do we really need them?
    Signed-off-by: default avatarDavid Howells <dhowells@redhat.com>
    cc: David Woodhouse <dwmw2@infradead.org>
    cc: Rusty Russell <rusty@rustcorp.com.au>
    cc: Josh Boyer <jwboyer@redhat.com>
    cc: Alexander Holler <holler@ahsoftware.de>
    Signed-off-by: default avatarGreg Kroah-Hartman <gregkh@linuxfoundation.org>
    d8f0a31a
Name
Last commit
Last update
..
.gitignore Loading commit data...
Kconfig Loading commit data...
Makefile Loading commit data...
asymmetric_keys.h Loading commit data...
asymmetric_type.c Loading commit data...
public_key.c Loading commit data...
public_key.h Loading commit data...
rsa.c Loading commit data...
signature.c Loading commit data...
x509.asn1 Loading commit data...
x509_cert_parser.c Loading commit data...
x509_parser.h Loading commit data...
x509_public_key.c Loading commit data...
x509_rsakey.asn1 Loading commit data...