b31eea2e04c1 ("efi: Don't use knowledge about efi_guid_t internals")
0bc9ae395b3f ("efi: Add an EFI signature blob parser")
9dc92c45177a ("integrity: Define a trusted platform keyring")
2ab5daf867d1 ("security/integrity: remove unnecessary 'init_keyring' variable")
2b6aa412ff23 ("KEYS: Use structure to capture key restriction function and data")
aaf66c883813 ("KEYS: Split role of the keyring pointer for keyring restrict functions")
469ff8f7d46d ("KEYS: Use a typedef for restrict_link function pointers")
56104cf2b8d2 ("IMA: Use the the system trusted keyrings instead of .ima_mok")
d3bfe84129f6 ("certs: Add a secondary system keyring that can be added to dynamically")
77f68bac9481 ("KEYS: Remove KEY_FLAG_TRUSTED and KEY_ALLOC_TRUSTED")
a511e1af8b12 ("KEYS: Move the point of trust determination to __key_link()")
cfb664ff2b71 ("X.509: Move the trust validation code out to its own file")
5f7f5c81e59b ("X.509: Use verify_signature() if we have a struct key * to use")
9eb029893ad5 ("KEYS: Generalise x509_request_asymmetric_key()")
983023f28bff ("KEYS: Move x509_request_asymmetric_key() to asymmetric_type.c")
5ac7eace2d00 ("KEYS: Add a facility to restrict new links into a keyring")
bda850cd214e ("PKCS#7: Make trust determination dependent on contents of trust keyring")
e68503bd6836 ("KEYS: Generalise system_verify_data() to provide access to internal content")
6c2dc5ae4ab7 ("X.509: Extract signature digest and make self-signed cert checks earlier")
566a117a8b24 ("PKCS#7: Make the signature a pointer rather than embedding it")