On Wed, Jul 9 2025 at 11:28:19 AM +02:00:00, Gerd Hoffmann
<kraxel@xxxxxxxxxx> wrote:
Problem with that is not so much linux, but that a KEK update has
never
happened before so there are chances that bios vendors messed up
things
and updating the KEK doesn't work. Also not sure how good older
hardware is covered.
I received a KEK update for my laptop just yesterday via GNOME
Software. Checking with 'fwupdmgr get-history' I can see the update
description: "This updates the UEFI Signature Database (the "KEK") to
the latest release from Microsoft, signed by LENOVO." Nice when things
just work.
But it's clearly a Thinkpad-specific update, so this does no good for
most of our users.
--
_______________________________________________
devel mailing list -- devel@xxxxxxxxxxxxxxxxxxxxxxx
To unsubscribe send an email to devel-leave@xxxxxxxxxxxxxxxxxxxxxxx
Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/
List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
List Archives: https://lists.fedoraproject.org/archives/list/devel@xxxxxxxxxxxxxxxxxxxxxxx
Do not reply to spam, report it: https://pagure.io/fedora-infrastructure/new_issue
