projects / linux.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: d6f1068) | patch
trust machine keyring (MoK) by default
authorLuca Boccassi <bluca@debian.org>
Tue, 23 Jul 2024 19:44:04 +0000 (19:44 +0000)
committerRaspbian forward porter <root@raspbian.org>
Tue, 23 Jul 2024 19:44:04 +0000 (19:44 +0000)
commit3bd60bfc4d45bb85a40e10e5d15fe7c174842108
tree4c23b4e28035f52663b1b6ab3060361ab612a1e6tree | snapshot
parentd6f106838591a5b1fa923914ab6a5dad4d2e039ccommit | diff
trust machine keyring (MoK) by default

Debian always trusted keys in MoK by default. Upstream made it conditional on
a new EFI variable being set. To keep backward compatibility skip this check.

Gbp-Pq: Topic features/all/db-mok-keyring
Gbp-Pq: Name trust-machine-keyring-by-default.patch
security/integrity/platform_certs/machine_keyring.c diff | blob | history
Unnamed repository; edit this file 'description' to name the repository.