FROMLIST: modsign: use all trusted keys to verify module signature

Make mod_verify_sig to use all trusted keys. This allows keys in
secondary_trusted_keys to be used to verify PKCS#7 signature on a
kernel module.

Signed-off-by: Ke Wu <>
Signed-off-by: Jessica Yu <>
(am from

TEST=emerge-lakitu sys-kernel/lakitu-kernel-4_14

Change-Id: I9f414bb0ab0a23b97e798784c69d77a54fb9f200
Commit-Ready: ChromeOS CL Exonerator Bot <>
Tested-by: Ke Wu <>
Reviewed-by: Guenter Roeck <>
Reviewed-by: Douglas Anderson <>
(cherry picked from commit dbb279f07a8c8a12e03ed82b956104dac733803b)
Commit-Queue: Ke Wu <>
1 file changed