1 // SPDX-License-Identifier: GPL-2.0
2 
3 #include <linux/kernel.h>
4 #include <linux/sched.h>
5 #include <linux/cred.h>
6 #include <linux/err.h>
7 #include <linux/efi.h>
8 #include <linux/slab.h>
9 #include <keys/asymmetric-type.h>
10 #include <keys/system_keyring.h>
11 #include <asm/boot_data.h>
12 #include "../integrity.h"
13 
14 /*
15  * Load the certs contained in the IPL report created by the machine loader
16  * into the platform trusted keyring.
17  */
load_ipl_certs(void)18 static int __init load_ipl_certs(void)
19 {
20 	void *ptr, *end;
21 	unsigned int len;
22 
23 	if (!ipl_cert_list_addr)
24 		return 0;
25 	/* Copy the certificates to the system keyring */
26 	ptr = (void *) ipl_cert_list_addr;
27 	end = ptr + ipl_cert_list_size;
28 	while ((void *) ptr < end) {
29 		len = *(unsigned int *) ptr;
30 		ptr += sizeof(unsigned int);
31 		add_to_platform_keyring("IPL:db", ptr, len);
32 		ptr += len;
33 	}
34 	return 0;
35 }
36 late_initcall(load_ipl_certs);
37