Provide system-wide ring of revocation certificates
modulename: revocation_certificates.ko
configname: CONFIG_SYSTEM_REVOCATION_LIST
Linux Kernel Configuration
└─>Cryptographic API
└─>Certificates for signature checking
└─>Provide system-wide ring of revocation certificates
In linux kernel since version 5.2 (release Date: 2019-07-07)
If set, this allows revocation certificates to be stored in the
blacklist keyring and implements a hook whereby a PKCS#7 message can
be checked to see if it matches such a certificate.
blacklist keyring and implements a hook whereby a PKCS#7 message can
be checked to see if it matches such a certificate.