lcp
commented
7 years ago I'll take that into consideration. Thanks. Meanwhile, you can check /sys/firmware/efi/efivars/MokSBStateRT-* for the validation state.
Open wesinator opened 7 years ago
lcp
commented
7 years ago I'll take that into consideration. Thanks. Meanwhile, you can check /sys/firmware/efi/efivars/MokSBStateRT-* for the validation state.
wesinator
commented
7 years ago There is no MokSBState file (Ubuntu 16.04)
lcp
commented
6 years ago MokSBStateRT only exists if MoKSBState is set.
Add a
--validation-state | -vcommand line option to show the current shim validation process state (enabled or disabled).If I understand correctly, the validation state is different than the sb-state; sb-state can be
SecureBoot enabledeven if the shim validation is disabled (https://askubuntu.com/questions/831574/re-enable-secure-boot-mok-secure-boot).