Lines Matching refs:keyring

50 	  Provide a system keyring to which trusted keys can be added.  Keys in
51 the keyring are considered to be trusted. Keys may be added at will
54 keys already in the keyring.
56 Keys in this keyring are used by module signature checking.
59 string "Additional X.509 keys for default system keyring"
64 system keyring. Any certificate used for module signing is implicitly
67 NOTE: If you previously provided keys for the system keyring in the
77 system keyring without recompiling the kernel.
88 bool "Provide a keyring to which extra trustable keys may be added"
91 If set, provide a keyring to which extra keys may be added, provided
93 into the kernel, machine keyring (if configured), or already in the
94 secondary trusted keyring.
97 bool "Only allow additional certs signed by keys on the builtin trusted keyring"
101 keyring may be loaded onto the secondary trusted keyring.
103 Note: The machine keyring, if configured, will be linked to the
104 secondary keyring. When enabling this option, it is recommended
107 trusted keyring.
113 Provide a system keyring to which blacklisted keys can be added.
114 Keys in the keyring are considered entirely untrusted. Keys in this
115 keyring are used by the module signature checking to reject loading
119 string "Hashes to be preloaded into the system blacklist keyring"
136 blacklist keyring and implements a hook whereby a PKCS#7 message can
140 string "X.509 certificates to be preloaded into the system blacklist keyring"
145 keyring.
154 keyring. The PKCS#7 signature of the description is set in the key