projects / linux.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 7e8277d) | patch
trust machine keyring (MoK) by default
authorLuca Boccassi <bluca@debian.org>
Sun, 19 Mar 2023 14:46:34 +0000 (14:46 +0000)
committerSalvatore Bonaccorso <carnil@debian.org>
Sun, 19 Mar 2023 14:46:34 +0000 (14:46 +0000)
commit4ebaeb55fc42aef2d99e8d034bf26167b0c81715
treea095d6cc75eae9e88395cd1497312089b6cbd308tree | snapshot
parent7e8277d4a1870e22a0bba3abd4e05a7536e6a0c4commit | diff
trust machine keyring (MoK) by default

Debian always trusted keys in MoK by default. Upstream made it conditional on
a new EFI variable being set. To keep backward compatibility skip this check.

Gbp-Pq: Topic features/all/db-mok-keyring
Gbp-Pq: Name trust-machine-keyring-by-default.patch
security/integrity/platform_certs/machine_keyring.c diff | blob | history
Unnamed repository; edit this file 'description' to name the repository.