891931 – Chapter 3

Bug 891931 - Chapter 3

Summary: Chapter 3

Keywords:
Status:	CLOSED DEFERRED
Alias:	None
Product:	Fedora Documentation
Classification:	Fedora
Component:	uefi-secure-boot-guide
Sub Component:
Version:	devel
Hardware:	Unspecified
OS:	Unspecified
Priority:	unspecified
Severity:	unspecified
Target Milestone:	---
Assignee:	Eric Christensen
QA Contact:	Fedora Docs QA
Docs Contact:
URL:
Whiteboard:
Depends On:
Blocks:
TreeView+	depends on / blocked

Reported:	2013-01-04 14:37 UTC by Josh Boyer
Modified:	2014-06-27 18:19 UTC (History)
CC List:	4 users (show)
Fixed In Version:
Doc Type:	Bug Fix
Doc Text:
Clone Of:
Environment:
Last Closed:	2014-06-27 18:19:50 UTC
Embargoed:

Attachments	(Terms of Use)

Description Josh Boyer 2013-01-04 14:37:20 UTC

Description of problem:

I wrote this a couple of weeks ago:

http://jwboyer.livejournal.com/46149.html

It details building a custom kernel.  Feel free to use anything you'd like from there.  However, it doesn't cover:

- generating your own key/certs
- signing shim or grub2 (trivially derived from the existing kernel example)
- third party module signing

Peter is working on a tool to make generating certs that UEFI likes easier for people.  I was waiting for that tool to be available before really covering those aspects, as that is what we want users to use.

Comment 1 eric 2013-01-04 18:26:11 UTC

I'm going to defer on getting the information from Peter before updating this chapter.  I've removed the chapter from the final product for now.

Comment 2 Bruce Jerrick 2013-02-07 07:21:53 UTC

On a related topic:
There's no Documentation/module-signing.txt file.
Under "config MODULE_SIG", init/Kconfig, states:
  For more information see Documentation/module-signing.txt.

Note You need to log in before you can comment on or make changes to this bug.