Copy kmod signing key from ~canonical-signing/ubuntu/primary to ~canonical-signing/ubuntu/fips
Kernels for FIPS (linux-*fips) are signed with a different EFI master key and therefore pass through a different signing PPA (~canonical-
It should be noted that a module signed with the drivers key can still only be loaded into the specific kernel for which it is compiled as we have (the recommended) MODVERSION configuration enabled. So there is no risk of these semi-private artifacts being loaded into our public kernels.
Could we get the KMOD key for the ~canonical-
Question information
- Language:
- English Edit question
- Status:
- Answered
- Assignee:
- No assignee Edit question
- Last query:
- Last reply:
Can you help with this problem?
Provide an answer of your own, or ask Andy Whitcroft for more information if necessary.