On 7/9/25 11:21 AM, Alexander F. Lent wrote:
I usually use mokutil to list keys: (it should be installed by default)
$ mokutil -l --kek
$ mokutil -l --db
Thanks! This list showed I missed the CA in the hexdump. My Supermicro server has
the 2023 CA.
However, when I ran the same commands on my Gigabyte motherboard there was no output.
My server has secure boot enabled, but the desktop does not. Does mokutil depend on
Secure Boot being enabled? The efivar command dumped without secure boot.
$ mokutil -l -a
[MokListRT]
2bb010e24d fedoraca
[MokListXRT]
0000000000 (sha256)
[PK]
[KEK]
[db]
[dbx]
*sigh* UEFI. :(
--
_______________________________________________
devel mailing list -- devel@xxxxxxxxxxxxxxxxxxxxxxx
To unsubscribe send an email to devel-leave@xxxxxxxxxxxxxxxxxxxxxxx
Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/
List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
List Archives: https://lists.fedoraproject.org/archives/list/devel@xxxxxxxxxxxxxxxxxxxxxxx
Do not reply to spam, report it: https://pagure.io/fedora-infrastructure/new_issue
