[PATCH] efi: Do not import certificates from UEFI Secure Boot for T2 Macs
Aditya Garg
gargaditya08 at live.com
Fri Feb 11 04:51:22 UTC 2022
>
> I'm sorry, I'd build tested it here but clearly screwed that up. Try
> this one?
>
>
With this patch, I built 2 kernels, one with CONFIG_LOAD_UEFI_KEYS=y and other with CONFIG_LOAD_UEFI_KEYS=n. I have got different variables causing panics in both cases. The logs couldn't get saved in journalctl so, I clicked a picture of the same. The kernel anyways was refusing to boot after these logs.
With CONFIG_LOAD_UEFI_KEYS=y, this variable seems to be causing panics
MokIgnoreDB-605dab50-e046-4300-abb6-3dd810dd8b23
The link of the logs :- https://gist.githubusercontent.com/AdityaGarg8/8e820c2724a65fb4bbb5deae2b358dc8/raw/2d3ef24c2b5025d500c5bebd418db5c185a47328/CONFIG_LOAD_UEFI_KEYS=y.jpeg
With CONFIG_LOAD_UEFI_KEYS=n, this variable seems to be causing panics
AppleSecureBootPolicy-94b73556-2197-4702-82a8-3e1337dafbfb
The link of the logs :- https://gist.githubusercontent.com/AdityaGarg8/8e820c2724a65fb4bbb5deae2b358dc8/raw/2d3ef24c2b5025d500c5bebd418db5c185a47328/CONFIG_LOAD_UEFI_KEYS=n.jpeg
More information about the Linux-security-module-archive
mailing list