least).
Best,
Simon
[0]
https://www.kernel.org/doc/html/v6.11/admin-guide/module-signing.html
[1]
https://gist.github.com/lijikun/22be09ec9b178e745758a29c7a147cc9
[2]
https://aur.archlinux.org/packages/verity-squash-root
Regards,
Johan
September 26, 2024 at 12:09 PM, "Johan Dahlberg
For the last couple of years I've been rolling my own kernels on a
couple of machines in order to have better support for secure boot and
especially mok keys. This has been necessary for being able to boot with
lockdown=confidentiality/integrity and still be able to load any signed
out-of-tree
