Create self-signing-modules.md

AdnanHodzic · Apr 30, 2020 · ea25e72 · ea25e72
1 parent 30f7eed
commit ea25e72
Showing 1 changed file with 18 additions and 0 deletions.
diff --git a/self-signing-modules.md b/self-signing-modules.md
@@ -0,0 +1,18 @@
+You might not want to (or be able to) disable UEFI Secure Boot. In this case you can selfsign the evdi module.
+
+[Øyvind Stegard](https://github.com/oyvindstegard) wrote a very clear and helpful [guide](http://web.archive.org/web/20191119232110/https://stegard.net/2016/10/virtualbox-secure-boot-ubuntu-fail/) for signing VirtualBox modules. You only have to replace step 5 by this:
+
+`# nano /root/module-signing/sign-evdi-module.sh`
+```
+#!/bin/bash
+
+for modfile in $(dirname $(modinfo -n evdi))/*.ko; do
+  echo "Signing $modfile"
+  /usr/src/linux-headers-$(uname -r)/scripts/sign-file sha256 \
+                                /root/module-signing/MOK.priv \
+                                /root/module-signing/MOK.der "$modfile"
+done
+```
+`# chmod 700 /root/module-signing/sign-evdi-module.sh`
+
+And you can ignore step 7.