X.509 certificates to be preloaded into the system blacklist keyring
configname: CONFIG_SYSTEM_REVOCATION_KEYS
Linux Kernel Configuration
└─>Cryptographic API
└─>Certificates for signature checking
└─>X.509 certificates to be preloaded into the system blacklist keyring
In linux kernel since version 5.2 (release Date: 2019-07-07)
If set, this option should be the filename of a PEM-formatted file
containing X.509 certificates to be included in the default blacklist
keyring.
containing X.509 certificates to be included in the default blacklist
keyring.