43#define FINGERPRINT_LEN SHA256_DIGEST_SIZE
46#ifndef ALLOW_TRUST_OVERRIDE
48 #define ALLOW_TRUST_OVERRIDE 0
50 #define ALLOW_TRUST_OVERRIDE 1
58 0x9f, 0xaf, 0x71, 0x7b, 0x7f, 0x8c, 0xa2, 0xf9, 0x3c, 0x25, \
59 0x6c, 0x79, 0xf8, 0xac, 0x55, 0x91, 0x89, 0x5d, 0x66, 0xd1, \
60 0xff, 0x3b, 0xee, 0x63, 0x97, 0xa7, 0x0d, 0x29, 0xc6, 0x5e, \
73 .description =
"Trusted root certificate fingerprints",
75 .type = &setting_type_hex,
103 static int initialised;
104 void *external =
NULL;
116 &external ) ) >= 0 ) {
#define NULL
NULL pointer (VOID *)
#define DHCP_EB_TRUST
Trusted root certficate fingerprints.
#define FILE_LICENCE(_licence)
Declare a particular licence as applying to a file.
#define FILE_SECBOOT(_status)
Declare a file's UEFI Secure Boot permission status.
#define SETTING_CRYPTO
Cryptography settings.
#define STARTUP_LATE
Late startup.
Dynamic Host Configuration Protocol.
#define __setting(setting_order, name)
Declare a configuration setting.
#define __startup_fn(startup_order)
Declare a startup/shutdown function.
void ref_no_free(struct refcnt *refcnt __unused)
Do not free reference-counted object.
#define REF_INIT(free_fn)
Initialise a static reference counter.
static const uint8_t fingerprints[]
Root certificate fingerprints.
const int allow_trust_override
Flag indicating if root of trust may be overridden at runtime.
#define ALLOW_TRUST_OVERRIDE
#define FINGERPRINT_LEN
Length of a root certificate fingerprint.
struct x509_root root_certificates
Root certificates.
static void rootcert_init(void)
Initialise root certificate.
int fetch_raw_setting_copy(struct settings *settings, const struct setting *setting, void **data)
Fetch value of setting.
struct digest_algorithm sha256_algorithm
SHA-256 algorithm.
A startup/shutdown function.
An X.509 root certificate list.