rpms/kernel
3
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

Switch Secure Boot to lock down in integrity mode (rhbz 1815571)

Browse source
This commit is contained in:
Jeremy Cline 2020-03-20 17:56:53 -04:00
commit abd266769c
3 changed files with 6 additions and 3 deletions
Download patch file Download diff file Expand all files Collapse all files

2
efi-secureboot.patch
View file

@ -303,7 +303,7 @@ index 77ea96b794bd..a119e1bc9623 100644
+
+#ifdef CONFIG_LOCK_DOWN_IN_EFI_SECURE_BOOT
+ if (efi_enabled(EFI_SECURE_BOOT))
+ security_lock_kernel_down("EFI Secure Boot mode", LOCKDOWN_CONFIDENTIALITY_MAX);
+ security_lock_kernel_down("EFI Secure Boot mode", LOCKDOWN_INTEGRITY_MAX);
+#endif
+
dmi_setup();