On Aarch64 - Secure Boot Enable Kernel is Signing Is Support ?

Support for security such as Firewalls and securing linux
Post Reply
cipher
Posts: 2
Joined: 2018/10/17 10:00:36

On Aarch64 - Secure Boot Enable Kernel is Signing Is Support ?

Post by cipher » 2018/10/17 10:21:41

Hi,

I have install centos 7.5 on my system and at the UEFI menu "Secure Boot" is enable, also enroll grub, shim file, create to signing the PK, DB, KEK keys... but still can't boot up to OS. So that question the Kernel Image from http://mirror.centos.org/altarch/7/isos/aarch64/ is support signing kernel ?

--Regards,

hughesjr
Site Admin
Posts: 254
Joined: 2004/12/05 01:51:26
Location: Corpus Christi, Texas, USA
Contact:

Re: On Aarch64 - Secure Boot Enable Kernel is Signing Is Support ?

Post by hughesjr » 2018/10/17 13:38:38

No, we do not plan on using secureboot on aarch64 at this time. It is possible to make it happen, however the aarch64 builders are not currently 'physically' located in a place where we can use the secureboot key with that build system.

It may be possible at some point in the future, but it is not on our current roadmap.

cipher
Posts: 2
Joined: 2018/10/17 10:00:36

Re: On Aarch64 - Secure Boot Enable Kernel is Signing Is Support ?

Post by cipher » 2018/10/18 01:45:19

Thanks for reply,

So Did you know in any Centos release we will have this ? and Do you know for the procedure to sign the kernel ? Just wanted to have a signed kernel to test the my system.

--Regards,

Post Reply