FS#75102: Revert "Enable KEXEC_SIG and IMA"

Enabling IMA makes it impossible to load unsigned kernel modules when secure boot is in use, and without shim in the boot you can't get the kernel to trust a local key for module signing. This reverts commit 6a241232a3275ef3e314b5b7167e13fffff71282.
2022-06-19 20:12:31 +00:00
parent 0724b8895c
commit 1eaae5d53f
2 changed files with 13 additions and 40 deletions
--- a/2
+++ b/2
@@ -26,7 +26,7 @@ validpgpkeys=(
  'C7E7849466FE2358343588377258734B41C31549'  # David Runge <dvzrv@archlinux.org>
 )
 sha256sums=('SKIP'
-            '74d99c4a5aaf75b9a8bc62af3cae6500759575aded4fd5625b22dd8c2c2686b5')
+            'ee1f138da9c39bc2510f25cd7bfc00edaa6e418b35e52ce7f8392135e51068b9')

 export KBUILD_BUILD_HOST=archlinux
 export KBUILD_BUILD_USER=$pkgbase