pp48711
August 3rd, 2017, 01:16 AM
I have a Ubuntu 17.04 system with SecureBoot enabled and have been rebuilding the kernel per the instructions found here:
https://wiki.ubuntu.com/Kernel/BuildYourOwnKernel
On a fresh install from a Ubuntu install ISO, I can see the keys pulled from UEFI when I run cat /proc/keys as root. However, when I rebuild and reload the kernel without any configuration modifications or code modifications., I no longer see any of the UEFI keys when I run cat /proc/keys and instead only see a build time autogenerated kernel key.
Is there a kernel configuration parameter or option I need to set in order to pull keys from UEFI instead of the autogenerated kernel key?
I have reviewed the kconfigs and the options that enable the inclusion of modsign_uefi.c is enabled (CONFIG_MODULE_SIG_UEFI).
Any help would be appreciated!
https://wiki.ubuntu.com/Kernel/BuildYourOwnKernel
On a fresh install from a Ubuntu install ISO, I can see the keys pulled from UEFI when I run cat /proc/keys as root. However, when I rebuild and reload the kernel without any configuration modifications or code modifications., I no longer see any of the UEFI keys when I run cat /proc/keys and instead only see a build time autogenerated kernel key.
Is there a kernel configuration parameter or option I need to set in order to pull keys from UEFI instead of the autogenerated kernel key?
I have reviewed the kconfigs and the options that enable the inclusion of modsign_uefi.c is enabled (CONFIG_MODULE_SIG_UEFI).
Any help would be appreciated!