Join GitHub today
GitHub is home to over 50 million developers working together to host and review code, manage projects, and build software together.Sign up
kernel: enable module signing #87426
This suffers from the same pitfalls as #86835, if the kernel needs to be rebuilt twice, the generated certificate will be wrong and thus the module is unable to be loaded due to the invalid certificate.
Though with the flawed approach to force the kernel to be the same, I included an example to show it works (zfs).
Motivation for this change
If lockdown is enabled, or module signatures are forced, unsigned modules are unable to be loaded.