X.509: Remove certificate date checks - linux-crypto.git

diff options

author	David Howells <dhowells@redhat.com>	2013-06-18 17:40:44 +0100
committer	David Howells <dhowells@redhat.com>	2013-09-25 17:17:01 +0100
commit	bbeb4e247f8fa2c2c80f03512ce5089e20c2507c (patch)
tree	81257bf29536d63299327ebbe458a3952471c6bf /crypto/async_tx
parent	015cabd52e6578292bf108d46a257fbde5dc2016 (diff)
download	linux-crypto-bbeb4e247f8fa2c2c80f03512ce5089e20c2507c.tar.gz linux-crypto-bbeb4e247f8fa2c2c80f03512ce5089e20c2507c.zip

X.509: Remove certificate date checks

Remove the certificate date checks that are performed when a certificate is parsed. There are two checks: a valid from and a valid to. The first check is causing a lot of problems with system clocks that don't keep good time and the second places an implicit expiry date upon the kernel when used for module signing, so do we really need them? Signed-off-by: David Howells <dhowells@redhat.com> cc: David Woodhouse <dwmw2@infradead.org> cc: Rusty Russell <rusty@rustcorp.com.au> cc: Josh Boyer <jwboyer@redhat.com> cc: Alexander Holler <holler@ahsoftware.de> cc: stable@vger.kernel.org

Diffstat (limited to 'crypto/async_tx')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: