projects / linux.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 11415f6) | patch
trust machine keyring (MoK) by default
authorLuca Boccassi <bluca@debian.org>
Sun, 22 Oct 2023 19:28:21 +0000 (21:28 +0200)
committerSalvatore Bonaccorso <carnil@debian.org>
Sun, 22 Oct 2023 19:28:21 +0000 (21:28 +0200)
commit513a75890928613789ef61848c7803ef5fc9fdf0
tree1a0e3bb84c5c6d742b96c41dd082b8410bd9a236tree | snapshot
parent11415f6cb86d505c0db73e6154fcd8961429dd0ccommit | diff
trust machine keyring (MoK) by default

Debian always trusted keys in MoK by default. Upstream made it conditional on
a new EFI variable being set. To keep backward compatibility skip this check.

Gbp-Pq: Topic features/all/db-mok-keyring
Gbp-Pq: Name trust-machine-keyring-by-default.patch
security/integrity/platform_certs/machine_keyring.c diff | blob | history
Unnamed repository; edit this file 'description' to name the repository.