I compiled a fedora kernel locally. When I tried to boot it in UEFI, it failed because it wasn't signed. Which it is supposed to. I then searched and found the procedure for generating local keys using openssl, getting the public key into mok, generating the certificate, the pkcs12 structure, putting it in the pesign database, signing the kernel, and rebooting. It still doesn't boot. Is there anyone here who has a successful technique for signing a locally compiled kernel so it will boot under UEFI? I found some extreme measures like taking over all signing, but I think it is a little early for those. And, of course, I could turn off secure boot, but I'll give it a chance before doing that. Thanks. _______________________________________________ users mailing list -- users@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe send an email to users-leave@xxxxxxxxxxxxxxxxxxxxxxx Fedora Code of Conduct: https://getfedora.org/code-of-conduct.html List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/users@xxxxxxxxxxxxxxxxxxxxxxx
