[shim] Dummy entry for empty mokx db
Ilya Okomin
ilya.okomin at oracle.com
Mon Sep 20 19:08:26 BST 2021
Hello,
It is observed according to
https://github.com/rhboot/shim/blob/main/mok.c#L707 dummy empty entry
added to the mokx.
As a result on the running system this entry persists until user
populates mokx with data:
/-- # mokutil --list-enrolled --mokx [key 1] [SHA-256]
0000000000000000000000000000000000000000000000000000000000000000 /--
Is it expected to have dummy data after empty db was initiated?
With older shim implementations before
https://github.com/rhboot/shim/commit/dd3a5d71252a1f94e37f1a4c8841d253630b305a
commit "/MokListXRT is empty/" returned for empty mokx.
Best regards,
Ilya.
//
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.einval.com/pipermail/efi/attachments/20210920/5b45f0ab/attachment.htm>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: OpenPGP_signature
Type: application/pgp-signature
Size: 840 bytes
Desc: OpenPGP digital signature
URL: <http://lists.einval.com/pipermail/efi/attachments/20210920/5b45f0ab/attachment.sig>
More information about the Efi
mailing list