Secure Boot and Out of Tree Linux Kernel Drivers

If UEFI Secure Boot is enabled, the boot loader, the Linux kernel, and all kernel modules must be signed with a private key and authenticated with the corresponding public key.

A certificate is called Machine Owner Key (MOK), and the keys can be maintained using the mokutil program.


For additional info, search for secure boot and out of tree kernel drivers.

Martin Burnicki martin.burnicki@burnicki.net, last updated 2022-01-19

  • miscellaneous_tips/20_software_development/kernel_drivers/secure_boot_and_out_of_tree_kernel_drivers.txt
  • Zuletzt geändert: 2022-01-19 12:20
  • von martin