iPXE
Functions | Variables
rootcert.h File Reference

Root certificate store. More...

#include <ipxe/x509.h>

Go to the source code of this file.

Functions

 FILE_LICENCE (GPL2_OR_LATER_OR_UBDL)
 FILE_SECBOOT (PERMITTED)

Variables

const int allow_trust_override
 Flag indicating if root of trust may be overridden at runtime.
struct x509_root root_certificates
 Root certificates.

Detailed Description

Root certificate store.

Definition in file rootcert.h.

Function Documentation

◆ FILE_LICENCE()

FILE_LICENCE ( GPL2_OR_LATER_OR_UBDL )

◆ FILE_SECBOOT()

FILE_SECBOOT ( PERMITTED )

References allow_trust_override, and root_certificates.

Variable Documentation

◆ allow_trust_override

const int allow_trust_override
extern

Flag indicating if root of trust may be overridden at runtime.

Definition at line 65 of file rootcert.c.

Referenced by efi_cacert(), and FILE_SECBOOT().

◆ root_certificates

struct x509_root root_certificates
extern

Root certificates.

Definition at line 79 of file rootcert.c.

79 {
80 .refcnt = REF_INIT ( ref_no_free ),
81 .digest = &sha256_algorithm,
82 .count = ( sizeof ( fingerprints ) / FINGERPRINT_LEN ),
83 .fingerprints = fingerprints,
84};
ref_no_free
void ref_no_free(struct refcnt *refcnt __unused)
Do not free reference-counted object.
Definition refcnt.c:102
REF_INIT
#define REF_INIT(free_fn)
Initialise a static reference counter.
Definition refcnt.h:78
fingerprints
static const uint8_t fingerprints[]
Root certificate fingerprints.
Definition rootcert.c:68
FINGERPRINT_LEN
#define FINGERPRINT_LEN
Length of a root certificate fingerprint.
Definition rootcert.c:43
sha256_algorithm
struct digest_algorithm sha256_algorithm
SHA-256 algorithm.
Definition sha256.c:265

Referenced by add_tls(), efi_cacert(), FILE_SECBOOT(), ocsp_prepare_test(), rootcert_init(), x509_is_valid(), and x509_validate().

Generated by doxygen 1.14.0