diff options
| author | Daniel Baumann <daniel.baumann@progress-linux.org> | 2024-04-28 09:20:55 +0000 |
|---|---|---|
| committer | Daniel Baumann <daniel.baumann@progress-linux.org> | 2024-04-28 09:20:55 +0000 |
| commit | 751abe5af6e60af060ea7979512574d903a49eb0 (patch) | |
| tree | 991d21305c4f60a4b0c13964436f8b8e08fee34b /debian/patches/reinstate-enroll.patch | |
| parent | Adding upstream version 3.0.10. (diff) | |
| download | dkms-751abe5af6e60af060ea7979512574d903a49eb0.tar.xz dkms-751abe5af6e60af060ea7979512574d903a49eb0.zip | |
Adding debian version 3.0.10-8+deb12u1.debian/3.0.10-8+deb12u1debian
Signed-off-by: Daniel Baumann <daniel.baumann@progress-linux.org>
Diffstat (limited to 'debian/patches/reinstate-enroll.patch')
| -rw-r--r-- | debian/patches/reinstate-enroll.patch | 16 |
1 files changed, 16 insertions, 0 deletions
diff --git a/debian/patches/reinstate-enroll.patch b/debian/patches/reinstate-enroll.patch new file mode 100644 index 0000000..0c46db8 --- /dev/null +++ b/debian/patches/reinstate-enroll.patch @@ -0,0 +1,16 @@ +Description: Upstream pull request incorrectly drops enroll-key option + When a brand new secureboot key is created, and it hasn't been + previously enrolled as a mok key, it will be rejected by the + kernel. After creating a new key, one should be enrolling it. +Index: dkms/dkms.in +=================================================================== +--- dkms.orig/dkms.in ++++ dkms/dkms.in +@@ -956,6 +956,7 @@ prepare_signing() + fi + echo "Certificate or key are missing, generating them using update-secureboot-policy..." + SHIM_NOTRIGGER=y update-secureboot-policy --new-key &>/dev/null ++ update-secureboot-policy --enroll-key + fi + + ;; |