xref: /linux/security/integrity/platform_certs/keyring_handler.h (revision a1c3be890440a1769ed6f822376a3e3ab0d42994)
1 /* SPDX-License-Identifier: GPL-2.0 */
2 
3 #ifndef PLATFORM_CERTS_INTERNAL_H
4 #define PLATFORM_CERTS_INTERNAL_H
5 
6 #include <linux/efi.h>
7 
8 void blacklist_hash(const char *source, const void *data,
9 		    size_t len, const char *type,
10 		    size_t type_len);
11 
12 /*
13  * Blacklist an X509 TBS hash.
14  */
15 void blacklist_x509_tbs(const char *source, const void *data, size_t len);
16 
17 /*
18  * Blacklist the hash of an executable.
19  */
20 void blacklist_binary(const char *source, const void *data, size_t len);
21 
22 /*
23  * Return the handler for particular signature list types found in the db.
24  */
25 efi_element_handler_t get_handler_for_db(const efi_guid_t *sig_type);
26 
27 /*
28  * Return the handler for particular signature list types found in the dbx.
29  */
30 efi_element_handler_t get_handler_for_dbx(const efi_guid_t *sig_type);
31 
32 #endif
33