Disallow unsigned kernels if UEFI Secure Boot is enabled (fe06193f) · Commits · Philipp Hahn / grub

Commit fe06193f authored Apr 05, 2016 by Linn Crosetto Committed by Philipp Hahn Apr 17, 2018

Disallow unsigned kernels if UEFI Secure Boot is enabled



If UEFI Secure Boot is enabled and kernel signature verification fails, do not
boot the kernel. Before this change, if kernel signature verification failed
then GRUB would fall back to calling ExitBootServices() and continuing the
boot.

Patch-Name: linuxefi_disable_sb_fallback.patch

Signed-off-by: Linn Crosetto <linn@hpe.com>

parent e0e73b7b

Hide whitespace changes

Inline Side-by-side

Please register or to comment