proxmox-mirrors/fwupd
1
0
Fork 0
mirror of https://git.proxmox.com/git/fwupd synced 2025-07-17 08:20:33 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity

trivial: don't allow turning on secure boot if 3rd party CA is off

Browse Source 
Turning on UEFI secure boot on Lenovo systems with 3rd party CA
turned off will cause a boot loop.
This commit is contained in:
Mario Limonciello 2022-08-25 16:13:53 -05:00 committed by Mario Limonciello
parent 273a363a71
commit 22b477bff5
1 changed files with 21 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

21
libfwupdplugin/fu-bios-settings.c
View File

@ -409,6 +409,25 @@ fu_bios_settings_populate_read_only(FuBiosSettings *self)
g_strdup(_("Enabled")));
}
static void
fu_bios_settings_combination_fixups(FuBiosSettings *self)
{
FwupdBiosSetting *thinklmi_sb = fu_bios_settings_get_attr(self, "com.thinklmi.SecureBoot");
FwupdBiosSetting *thinklmi_3rd =
fu_bios_settings_get_attr(self, "com.thinklmi.Allow3rdPartyUEFICA");
if (thinklmi_sb != NULL && thinklmi_3rd != NULL) {
const gchar *val = fwupd_bios_setting_get_current_value(thinklmi_sb);
if (g_strcmp0(val, "Disable") == 0) {
g_debug("Disabling changing %s since %s is %s",
fwupd_bios_setting_get_name(thinklmi_sb),
fwupd_bios_setting_get_name(thinklmi_3rd),
val);
fwupd_bios_setting_set_read_only(thinklmi_sb, TRUE);
}
}
}
/**
* fu_bios_settings_setup:
* @self: a #FuBiosSettings
@ -482,6 +501,8 @@ fu_bios_settings_setup(FuBiosSettings *self, GError **error)
} while (TRUE);
g_debug("loaded %u BIOS settings", count);
fu_bios_settings_combination_fixups(self);
return TRUE;
}