From patchwork Thu Oct 27 09:57:47 2022 Content-Type: text/plain; charset="utf-8" MIME-Version: 1.0 Content-Transfer-Encoding: 7bit X-Patchwork-Submitter: Aditya Garg X-Patchwork-Id: 13021858 Return-Path: X-Spam-Checker-Version: SpamAssassin 3.4.0 (2014-02-07) on aws-us-west-2-korg-lkml-1.web.codeaurora.org Received: from vger.kernel.org (vger.kernel.org [23.128.96.18]) by smtp.lore.kernel.org (Postfix) with ESMTP id 6B500C67871 for ; Thu, 27 Oct 2022 09:59:01 +0000 (UTC) Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S234377AbiJ0J66 (ORCPT ); Thu, 27 Oct 2022 05:58:58 -0400 Received: from lindbergh.monkeyblade.net ([23.128.96.19]:39010 "EHLO lindbergh.monkeyblade.net" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S234847AbiJ0J6N (ORCPT ); Thu, 27 Oct 2022 05:58:13 -0400 Received: from IND01-MAX-obe.outbound.protection.outlook.com (mail-maxind01olkn2013.outbound.protection.outlook.com [40.92.102.13]) by lindbergh.monkeyblade.net (Postfix) with ESMTPS id 755D997D4C; Thu, 27 Oct 2022 02:57:53 -0700 (PDT) ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=j+eu0zSYzQ5+Nn99iwkuAzLUI1DawQU7nghyy4x9dhM2bTC6Ybd2mtErobA0dJvMeL1+ptZMPIqJX81vR+eSyFYLGIeHQMW7pubGevj5piZg/j42Z1MJWn1SlvAET2OokEKdfhsbmu73HH8zxsnUTFqnLKE2z2UdiJK68vRE4WYIfQ2eUJ3GCB7OC/3hqFD4RObnpK4z+/UBTCKlKk9EHnStk0a3Fsqb22rprwHESDf5exwknj5wqlvsTX4lj0OdzS5jVfzpOsxr6vbYgb5K5+YZ71ov6U+C+tahJmHBmO/rx0zRgMXkHgcILPN9zxSCC1FIJcGrgiSEjUQExr+5hg== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=0J/K0jHKE+VWvSv2kPNuWSM721hfnQcQ6L5uCrWFK2c=; b=bT/Askdk08Jibf2XqQln2Y+HPMkWI9o+awzQ/rbiGbcrTjSrdKNOUq2IciEo/1j7MAKGb0J6lm7JembHHZ2vDMBDt4NAS4MQufGsYay02IZDB5m6WSqZs8yl+I1718ylcIIBTZedkXdoPd/UBKwzmfK7Ls8L220JPRT1vTzYsu/RRC5eKiWX2l565QPJ7UayzGgrV28YDC9RgqfWUSrjHPhT6EF6EXE8tZ+9zuhnXpSs0D1dneof7N1luehXYGelzSD+dsma8ABq1DgrAblMskoGW/E6A8uPxHCkesLUMbFIVUTvwbkbqW18YhEy9InGVPrVzuU+248G0dARM1C+9A== ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=none; dmarc=none; dkim=none; arc=none DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=live.com; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=0J/K0jHKE+VWvSv2kPNuWSM721hfnQcQ6L5uCrWFK2c=; b=GvA3bfT6mdBFNMedVDmv898FdJyKqvNIFBt3SO3jpC0XeRZlbq5yM9fRLnPfAAD4MMvAeE7/UN76fuDIS0ddTaEZbXGYZc6Y04Tck01pe5oqBhVacmTOCa7cKMBj02+QAdjWZz91MC0BVb9Iix/DYynThLaj79mXJYsddHHisABiJzsmHQ/eqnjHFH2MLvo7AD+E4LSbNbrWsFVd6mYCCmH1U4LB1ye2V384usCQDcEKaT3k8qyx85gYTuJJkvyKxHU7RXRPwTAL+yxJNYAceVaK+dt1/8rpg1f3kF2kuiXqXIqCvSN3lcBoCGoiHkX3MpIhvxwNmKpk4ARO4bBJuQ== Received: from BM1PR01MB0931.INDPRD01.PROD.OUTLOOK.COM (2603:1096:b00:2::9) by PN3PR01MB6485.INDPRD01.PROD.OUTLOOK.COM (2603:1096:c01:84::10) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.5746.28; Thu, 27 Oct 2022 09:57:47 +0000 Received: from BM1PR01MB0931.INDPRD01.PROD.OUTLOOK.COM ([fe80::3dc1:f6bc:49e4:b294]) by BM1PR01MB0931.INDPRD01.PROD.OUTLOOK.COM ([fe80::3dc1:f6bc:49e4:b294%9]) with mapi id 15.20.5746.029; Thu, 27 Oct 2022 09:57:47 +0000 From: Aditya Garg To: "zohar@linux.ibm.com" , "chyishian.jiang@gmail.com" , "linux-kernel@vger.kernel.org" , "jarkko@kernel.org" , "dmitry.kasatkin@gmail.com" , "paul@paul-moore.com" , "jmorris@namei.org" , "serge@hallyn.com" , "linux-integrity@vger.kernel.org" , "keyrings@vger.kernel.org" , "linux-security-module@vger.kernel.org" CC: "stable@vger.kernel.org" , Orlando Chamberlain Subject: efi: Add iMac Pro 2017 to uefi skip cert quirk Thread-Topic: efi: Add iMac Pro 2017 to uefi skip cert quirk Thread-Index: AQHY6eqR5YhWYy3yGEqpjWLgtMkkQQ== Date: Thu, 27 Oct 2022 09:57:47 +0000 Message-ID: <6E49388A-E403-4F99-BF7C-34BA9D489A02@live.com> Accept-Language: en-US Content-Language: en-US X-MS-Has-Attach: X-MS-TNEF-Correlator: x-ms-exchange-messagesentrepresentingtype: 1 x-tmn: [NtkeS8GdP+nI3u5G6SaNiyLK/JbBgRfN] x-ms-publictraffictype: Email x-ms-traffictypediagnostic: BM1PR01MB0931:EE_|PN3PR01MB6485:EE_ x-ms-office365-filtering-correlation-id: 34c345f3-7f61-447e-7d1d-08dab801b3b0 x-microsoft-antispam: BCL:0; x-microsoft-antispam-message-info: wCdVgOfoMYk44de463SE/W4fy22M7+xZQAd0x3Jvqe1SDPZR5ncF3LSOMlSqd9ZQu/YDwp53EQrJZ8rtE1RGTmaakXhhh1Py0Mk+Njyatp+3gRXKDz85/7anR/vHPZqiC9HctE0cBCfi9uysq34+5aNW658DES+e/3N6bFT7neMyR5hIFVINKdByBt4/vbHYwQCeH+BS8ACxLOM8ceB7oI0JicRiOo9O5MbBtM+W2tGm3GmfOG14uopw7vEnZ+gBjAxP6Rv4+Fpzz+cVILjElc2ir5i4p3oq2Smhz8lgtQZPg4jJic5ZsruEQEWrMKChl5Gbp9PsgMaH1rdrcuwy6smpA5iIPCr0lFIZlXQMy3TbXCFwMqKhkC8G3WE8DcxhZ+4i+tsbUON70V2RROYX/5Wu0PLJyfGn56Bx6VO2M9/AKf0/ZkSxBvxUwEQaMaEXUqBB+FwsF8OYDkOb24HpF3nzitEBJ9ZjcbOtwHY9wCWLfxbgKcj10w6XzOe9IgKwKs5nmwkkhrpLqzrNIn0hU/wD01dgJnLwhvkrV0JnQd41yZ9AzxsaQLoIP2GyCvT1YR8GZPPcu1J2QU4b5JHhgXJZum6LR9R4W+zRIu+kxnsnDT9JiDU6Px9tEuiy2oszXsNmF1fmHX8hv5gLMoP1+Q== x-ms-exchange-antispam-messagedata-chunkcount: 1 x-ms-exchange-antispam-messagedata-0: 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 Content-ID: <9F8838A4ED268D4C9F39B330B4B0CDC6@INDPRD01.PROD.OUTLOOK.COM> MIME-Version: 1.0 X-OriginatorOrg: sct-15-20-4755-11-msonline-outlook-42ed3.templateTenant X-MS-Exchange-CrossTenant-AuthAs: Internal X-MS-Exchange-CrossTenant-AuthSource: BM1PR01MB0931.INDPRD01.PROD.OUTLOOK.COM X-MS-Exchange-CrossTenant-RMS-PersistedConsumerOrg: 00000000-0000-0000-0000-000000000000 X-MS-Exchange-CrossTenant-Network-Message-Id: 34c345f3-7f61-447e-7d1d-08dab801b3b0 X-MS-Exchange-CrossTenant-originalarrivaltime: 27 Oct 2022 09:57:47.5043 (UTC) X-MS-Exchange-CrossTenant-fromentityheader: Hosted X-MS-Exchange-CrossTenant-id: 84df9e7f-e9f6-40af-b435-aaaaaaaaaaaa X-MS-Exchange-CrossTenant-rms-persistedconsumerorg: 00000000-0000-0000-0000-000000000000 X-MS-Exchange-Transport-CrossTenantHeadersStamped: PN3PR01MB6485 Precedence: bulk List-ID: From: Aditya Garg The iMac Pro 2017 is also a T2 Mac. Thus add it to the list of uefi skip cert. Cc: stable@vger.kernel.org Signed-off-by: Aditya Garg --- security/integrity/platform_certs/load_uefi.c | 1 + 1 file changed, 1 insertion(+) diff --git a/security/integrity/platform_certs/load_uefi.c b/security/integrity/platform_certs/load_uefi.c index b78753d27d8ea6..d1fdd113450a63 100644 --- a/security/integrity/platform_certs/load_uefi.c +++ b/security/integrity/platform_certs/load_uefi.c @@ -35,6 +35,7 @@ static const struct dmi_system_id uefi_skip_cert[] = { { UEFI_QUIRK_SKIP_CERT("Apple Inc.", "MacPro7,1") }, { UEFI_QUIRK_SKIP_CERT("Apple Inc.", "iMac20,1") }, { UEFI_QUIRK_SKIP_CERT("Apple Inc.", "iMac20,2") }, + { UEFI_QUIRK_SKIP_CERT("Apple Inc.", "iMacPro1,1") }, { } };