English Community

ThinkPad NotebooksThinkPad: X Series Laptops
All Forum Topics
Options

1 Posts

05-01-2020

UA

2 Signins

20 Page Views

  • Posts: 1
  • Registered: ‎05-01-2020
  • Location: UA
  • Views: 20
  • Message 1 of 1

Can't upload own PK for SecureBoot on ThinkPad X260

2020-07-01, 13:06 PM

Hi All,

 

My environment is

===================

BIOS R02ET73W (1.46 ) 01/08/2020

 

Kubuntu 20.04 (5.4.0-28-generic)

Latest efitools: http://ftp.ua.debian.org/debian/pool/main/e/efitools/efitools_1.9.2-1_amd64.deb

 

Windows 10 2004

Windows 10 SDK (10.0.19041.0)

===================

 

I have an issue with SecureBoot setup. I can't write my custom PK cert into UEFI variables (DB and KEK are wrote successfully)

 

For Linux I use this guide: https://ruderich.org/simon/notes/secure-boot-with-grub-and-signed-linux-and-initrd

The error I get is:

===================

root@tiguan:# efi-updatevar -f ./tiguan-pk-signature.auth PK

Failed to update PK: Invalid argument

 

KeyTool.efi - Error 26 “Security Violation”.

===================

 

For Win10  this guides: 

- http://h10032.www1.hp.com/ctg/Manual/c05649759

- https://forums.lenovo.com/t5/ThinkPad-11e-Windows-13-E-and-Edge-series-Laptops/Cannot-install-custom-secure-boot-PK-platform-key/m-p/4318378

Error is quite similar:

===================

PS D:> Set-SecureBootUEFI `

>>                    -Name PK `

>>                    -ContentFilePath . ouareg-pk-signature_siglist.bin `

>>                    -SignedFilePath  . ouareg-pk-signature_siglist_serialization.bin.p7 `

>>                    -Time $DATE_PK

Set-SecureBootUEFI : Incorrect authentication data: 0xC0000022

At line:1 char:1

+ Set-SecureBootUEFI `

+ ~~~~~~~~~~~~~~~~~~~~

   + CategoryInfo          : PermissionDenied: (Microsoft.Secur...BootUefiCommand:SetSecureBootUefiCommand) [Set-SecureBootUEFI], UnauthorizedAccesception

   + FullyQualifiedErrorId : SetFWVarFailed,Microsoft.SecureBoot.Commands.SetSecureBootUefiCommand

===================

 

I suspect that the BIOS/UEFI firmware is bugged somehow.

 

Any help appreciated.

Reply
Forum Home

Community Guidelines

Please review our Guidelines before posting.

Learn More

Check out current deals!

Go Shop
X

Save

X

Delete