blob: 8cd28aae6a801d8985445eeb8a4a2c4b100c4830 (
plain) (
blame)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
|
Description: Does not enforce the Secure Boot Forbidden Signature Database (aka dbx) protection mechanism
References:
https://lkml.org/lkml/2020/9/15/1871
https://lore.kernel.org/lkml/20200916004927.64276-1-eric.snowberg@oracle.com/
https://lore.kernel.org/lkml/2660556.1610545213@warthog.procyon.org.uk/
Notes:
bwh> This is only relevant to kernel versions that support the
bwh> UEFI Secure Boot key store and/or are themselves signed.
Bugs:
upstream: needed
5.10-upstream-stable: needed
4.19-upstream-stable: N/A "Secure Boot key import not supported"
4.9-upstream-stable: N/A "Secure Boot key import not supported"
sid: needed
4.19-buster-security: needed
4.9-stretch-security: N/A "Secure Boot key import not supported"
|