CyberLeo.Net >> Repos - FreeBSD/FreeBSD.git/commit

]> CyberLeo.Net >> Repos - FreeBSD/FreeBSD.git/commit

projects / FreeBSD / FreeBSD.git / commit

author	sjg <sjg@FreeBSD.org>
	Wed, 26 Jun 2019 23:33:32 +0000 (23:33 +0000)
committer	sjg <sjg@FreeBSD.org>
	Wed, 26 Jun 2019 23:33:32 +0000 (23:33 +0000)
commit	10c90a3b2aa1da44569acd69cd0d239635b278e4
tree	b718b14ac9447df1e131cb6e7ab9030ca1d04fbc	tree \| snapshot
parent	f18057177b20b404b392e839aaff14c466c90099	commit \| diff

libsecureboot: allow OpenPGP support to be dormant

Since we can now add OpenPGP trust anchors at runtime,
ensure the latent support is available.

Ensure we do not add duplicate keys to trust store.

Also allow reporting names of trust anchors added/revoked

We only do this for loader and only after initializing trust store.
Thus only changes to initial trust store will be logged.

Reviewed by: stevek
MFC after: 1 week
Differential Revision: https://reviews.freebsd.org/D20700

Unnamed repository; edit this file 'description' to name the repository.

RSS Atom

lib/libsecureboot/h/libsecureboot.h		diff \| blob \| history
lib/libsecureboot/libsecureboot-priv.h		diff \| blob \| history
lib/libsecureboot/local.trust.mk		diff \| blob \| history
lib/libsecureboot/openpgp/opgp_key.c		diff \| blob \| history
lib/libsecureboot/readfile.c		diff \| blob \| history
lib/libsecureboot/verify_file.c		diff \| blob \| history
lib/libsecureboot/vets.c		diff \| blob \| history