Page MenuHomeFreeBSD

libsecureboot: allow OpenPGP support to be dormant
ClosedPublic

Authored by sjg on Jun 19 2019, 7:22 PM.

Details

Summary

Since we can now add OpenPGP trust anchors at runtime,
ensure the latent support is available.

Ensure we do not add duplicate keys to trust store.

Also allow reporting names of trust anchors added/revoked

We only do this for loader and only after initializing trust store.
Thus only changes to initial trust store will be logged.

Diff Detail

Repository
rS FreeBSD src repository
Lint
Automatic diff as part of commit; lint not applicable.
Unit
Automatic diff as part of commit; unit tests not applicable.

Event Timeline

sjg created this revision.Jun 19 2019, 7:22 PM
stevek accepted this revision.Jun 26 2019, 8:26 PM
This revision is now accepted and ready to land.Jun 26 2019, 8:26 PM
This revision was automatically updated to reflect the committed changes.