Overview

File 0040-squash-linuxefi-fail-kernel-validation-without-shim-.patch of Package grub2.26830

From f2e378efd50ba0e757cd87ab58c64b92f2864ffb Mon Sep 17 00:00:00 2001
From: Michael Chang <mchang@suse.com>
Date: Fri, 11 Dec 2020 23:16:50 +0800
Subject: [PATCH 40/41] squash! linuxefi: fail kernel validation without shim
 protocol.

Use grub_efi_get_secureboot to get secure boot status
---
 grub-core/loader/i386/efi/linux.c | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

Index: grub-2.02/grub-core/loader/i386/efi/linux.c
===================================================================
--- grub-2.02.orig/grub-core/loader/i386/efi/linux.c
+++ grub-2.02/grub-core/loader/i386/efi/linux.c
@@ -26,6 +26,7 @@
 #include <grub/i18n.h>
 #include <grub/lib/cmdline.h>
 #include <grub/efi/efi.h>
+#include <grub/efi/sb.h>
 
 GRUB_MOD_LICENSE ("GPLv3+");
 
@@ -231,7 +232,7 @@ grub_cmd_linux (grub_command_t cmd __att
       goto fail;
     }
 
-  if (grub_efi_secure_boot ())
+  if (grub_efi_get_secureboot () == GRUB_EFI_SECUREBOOT_MODE_ENABLED)
     {
       int rc;
openSUSE Build Service is sponsored by
Places