Not to be fixed
Created: Nov 11, 2019
Updated: Apr 29, 2021
Resolved Date: Apr 29, 2021
Found In Version: 10.19.45.1
Severity: Standard
Applicable for: Wind River Linux LTS 19
Component/s: Userspace
The "enrollement " should be "enrollment"
logs:
root@intel-x86-64:~# mokutil --import shim_cert.cer
input password:
input password again:
root@intel-x86-64:~# mokutil --import shim_cert.cer
SKIP: shim_cert.cer is already in the enrollement request
root@intel-x86-64:~#
TEST_STEP
/folk/lpg-build/cdc/fast_prod/WRL10_19/WRL10_19_GIT/wrlinux-10/setup.sh --machines=intel-x86-64 --distros=wrlinux --dl-layers --templates feature/ima feature/efi-secure-boot --accept-eula=yes
. ./oe-init-build-env build
echo PREFERRED_PROVIDER_virtual/kernel = "linux-yocto" >> conf/local.conf
bitbake wrlinux-image-std
In conf/local.conf :
#jhu2 append as below:
PREFERRED_PROVIDER_virtual/kernel = "linux-yocto"
BB_NUMBER_THREADS ?= "24"
PARALLEL_MAKE ?= "-j 24"
1. copy layers/wrlinux/wrlinux-distro/files/sample-keys/mok_sb_keys/shim_cert.crt to target:
2. openssl x509 -in shim_cert.crt -inform PEM -out shim_cert.cer -outform DER
3. mokutil --import shim_cert.cer