21.04 - MOK signed custom kernel not booting "invalid signature"
I'm running a surface 6 pro with a customized kernel which is MOK signed for secure boot.
The system ran a customized MOK signed 5.8.16 kernel when I upgraded from 20.10 to 21.04.
The upgrade worked smooth without errors.
The system also started well on reboot booting the ubuntu shipped 5.11.0-17-generic kernel.
To have full advantages of the system I use surface kernel patches from github:
https:/
So once and a while I compile a fresh surface-patched kernel to stay up-to-date. For secure boot I followed the MOK shim signing process described here:
https:/
This worked out so far, but not after upgrade to 21.04. Already signed kernel which have worked before and also newly signed kernel cannot boot due to "invalid signature" error.
I found shim-signed related bugs:
https:/
https:/
But I think this issue isn't covered by them.
Any help is appreciated.
Cheers
Roman
Question information
- Language:
- English Edit question
- Status:
- Solved
- For:
- Ubuntu Edit question
- Assignee:
- No assignee Edit question
- Solved by:
- Bruno Demartino
- Solved:
- Last query:
- Last reply: