Lines Matching +full:system +full:- +full:wide
1 # SPDX-License-Identifier: GPL-2.0
16 certificate as described in Documentation/admin-guide/module-signing.rst
43 bool "Provide system-wide ring of trusted keys"
48 Provide a system keyring to which trusted keys can be added. Keys in
50 by the kernel from compiled-in data and from hardware key stores, but
57 string "Additional X.509 keys for default system keyring"
60 If set, this option should be the filename of a PEM-formatted file
62 system keyring. Any certificate used for module signing is implicitly
65 NOTE: If you previously provided keys for the system keyring in the
66 form of DER-encoded *.x509 files in the top-level build directory,
75 system keyring without recompiling the kernel.
94 bool "Provide system-wide ring of blacklisted keys"
97 Provide a system keyring to which blacklisted keys can be added.
103 string "Hashes to be preloaded into the system blacklist keyring"
112 tools/certs/print-cert-tbs-hash.sh .
115 bool "Provide system-wide ring of revocation certificates"
124 string "X.509 certificates to be preloaded into the system blacklist keyring"
127 If set, this option should be the filename of a PEM-formatted file