thr3ads.net - CentOS - [CentOS] How to get UEFI setting by shell? [Jan 2016]

If this information is useful, please help other people find it:
Share via:

2016-Jan-22 07:33 UTC

[CentOS] How to get UEFI setting by shell?

Hi,
    another question.With secure boot on,
    I make a kernel module test.ko
    Then insmod test.ko:
    [root at localhost linux]# insmod test.ko 
   insmod: ERROR: could not insert module test.ko: Required key not available

     How can I sign my test.ko for CentOS7.1?
  
    If I set secure boot off, insmod test.ko will be successful.
 w.k.

 ------------------ Original ------------------
  From:  "??????";<304702903 at qq.com>;
 Date:  Fri, Jan 22, 2016 03:07 PM
 To:  "eero.volotinen"<eero.volotinen at iki.fi>;
"gordon.messmer"<gordon.messmer at gmail.com>;
 Cc:  "centos"<centos at centos.org>; 
 Subject:  Re: [CentOS] How to get UEFI setting by shell?

 

 volotinen and gordon.messmer:
  
    thank you for your answers.
  
 w.k.
  
 
 ------------------ Original ------------------
  From:  "Gordon Messmer";<gordon.messmer at gmail.com>;
 Date:  Fri, Jan 22, 2016 02:13 PM
 To:  "CentOS mailing list"<centos at centos.org>; 
 
 Subject:  Re: [CentOS] How to get UEFI setting by shell?

 

On 01/21/2016 09:47 PM, wk wrote:>     How to check/get UEFI information by shell/bash terminal ?   example:if
UEFI is enabled? if secure boot is enabled?
Systems that boot via UEFI will have /sys/firmware/efi.

You may have access to your secure boot setting in 
/sys/firmware/efi/efivars/, or in the output of "bootctl --path 
/boot/efi status"


_______________________________________________
CentOS mailing list
CentOS at centos.org
https://lists.centos.org/mailman/listinfo/centos

Eero Volotinen

2016-Jan-22 07:42 UTC

head link

[CentOS] How to get UEFI setting by shell?

http://unix.stackexchange.com/questions/157539/cant-load-zfs-kernel-module-on-fedora-with-secure-boot-required-key-not-avai

So, module must be signed with trusted key, or else it just fails.

Eero
22.1.2016 9.34 ap. "wk" <304702903 at qq.com> kirjoitti:
> Hi,
>     another question.With secure boot on,
>     I make a kernel module test.ko
>     Then insmod test.ko:
>     [root at localhost linux]# insmod test.ko
>    insmod: ERROR: could not insert module test.ko: Required key not
> available
>
>      How can I sign my test.ko for CentOS7.1?
>
>     If I set secure boot off, insmod test.ko will be successful.
>  w.k.
>
>  ------------------ Original ------------------
>   From:  "??????";<304702903 at qq.com>;
>  Date:  Fri, Jan 22, 2016 03:07 PM
>  To:  "eero.volotinen"<eero.volotinen at iki.fi>;
"gordon.messmer"<
> gordon.messmer at gmail.com>;
>  Cc:  "centos"<centos at centos.org>;
>  Subject:  Re: [CentOS] How to get UEFI setting by shell?
>
>
>
>  volotinen and gordon.messmer:
>
>     thank you for your answers.
>
>  w.k.
>
>
>  ------------------ Original ------------------
>   From:  "Gordon Messmer";<gordon.messmer at gmail.com>;
>  Date:  Fri, Jan 22, 2016 02:13 PM
>  To:  "CentOS mailing list"<centos at centos.org>;
>
>  Subject:  Re: [CentOS] How to get UEFI setting by shell?
>
>
>
> On 01/21/2016 09:47 PM, wk wrote:
> >     How to check/get UEFI information by shell/bash terminal ?
>  example:if UEFI is enabled? if secure boot is enabled?
>
> Systems that boot via UEFI will have /sys/firmware/efi.
>
> You may have access to your secure boot setting in
> /sys/firmware/efi/efivars/, or in the output of "bootctl --path
> /boot/efi status"
>
>
> _______________________________________________
> CentOS mailing list
> CentOS at centos.org
> https://lists.centos.org/mailman/listinfo/centos
> _______________________________________________
> CentOS mailing list
> CentOS at centos.org
> https://lists.centos.org/mailman/listinfo/centos
>

2016-Jan-22 10:39 UTC

head link

[CentOS] 回复： How to get UEFI setting by shell?

Hi,volotinen:
   
      as it mentioned in your web link:
      "Your on the right track your module need to be signed", my
question how to sign test_file_system.ko?

 thanks,
 w.k.
  
 

 ------------------ ???? ------------------
  ???: "eero.volotinen";<eero.volotinen at iki.fi>;
 ????: 2016?1?22?(???) ??3:42
 ???: "CentOS mailing list"<centos at centos.org>; 
 
 ??: Re: [CentOS] How to get UEFI setting by shell?

 

http://unix.stackexchange.com/questions/157539/cant-load-zfs-kernel-module-on-fedora-with-secure-boot-required-key-not-avai

So, module must be signed with trusted key, or else it just fails.

Eero
22.1.2016 9.34 ap. "wk" <304702903 at qq.com> kirjoitti:
> Hi,
>     another question.With secure boot on,
>     I make a kernel module test.ko
>     Then insmod test.ko:
>     [root at localhost linux]# insmod test.ko
>    insmod: ERROR: could not insert module test.ko: Required key not
> available
>
>      How can I sign my test.ko for CentOS7.1?
>
>     If I set secure boot off, insmod test.ko will be successful.
>  w.k.
>
>  ------------------ Original ------------------
>   From:  "??????";<304702903 at qq.com>;
>  Date:  Fri, Jan 22, 2016 03:07 PM
>  To:  "eero.volotinen"<eero.volotinen at iki.fi>;
"gordon.messmer"<
> gordon.messmer at gmail.com>;
>  Cc:  "centos"<centos at centos.org>;
>  Subject:  Re: [CentOS] How to get UEFI setting by shell?
>
>
>
>  volotinen and gordon.messmer:
>
>     thank you for your answers.
>
>  w.k.
>
>
>  ------------------ Original ------------------
>   From:  "Gordon Messmer";<gordon.messmer at gmail.com>;
>  Date:  Fri, Jan 22, 2016 02:13 PM
>  To:  "CentOS mailing list"<centos at centos.org>;
>
>  Subject:  Re: [CentOS] How to get UEFI setting by shell?
>
>
>
> On 01/21/2016 09:47 PM, wk wrote:
> >     How to check/get UEFI information by shell/bash terminal ?
>  example:if UEFI is enabled? if secure boot is enabled?
>
> Systems that boot via UEFI will have /sys/firmware/efi.
>
> You may have access to your secure boot setting in
> /sys/firmware/efi/efivars/, or in the output of "bootctl --path
> /boot/efi status"
>
>
> _______________________________________________
> CentOS mailing list
> CentOS at centos.org
> https://lists.centos.org/mailman/listinfo/centos
> _______________________________________________
> CentOS mailing list
> CentOS at centos.org
> https://lists.centos.org/mailman/listinfo/centos
>_______________________________________________
CentOS mailing list
CentOS at centos.org
https://lists.centos.org/mailman/listinfo/centos

Gordon Messmer

2016-Jan-22 15:04 UTC

head link

[CentOS] How to get UEFI setting by shell?

On 01/21/2016 11:33 PM, wk wrote:>       How can I sign my test.ko for CentOS7.1?
https://access.redhat.com/documentation/en-US/Red_Hat_Enterprise_Linux/7/html/System_Administrators_Guide/sect-signing-kernel-modules-for-secure-boot.html

John R Pierce

2016-Jan-22 18:53 UTC

head link

[CentOS] How to get UEFI setting by shell?

On 1/22/2016 7:04 AM, Gordon Messmer wrote:> On 01/21/2016 11:33 PM, wk wrote:
>>       How can I sign my test.ko for CentOS7.1?
>
>
https://access.redhat.com/documentation/en-US/Red_Hat_Enterprise_Linux/7/html/System_Administrators_Guide/sect-signing-kernel-modules-for-secure-boot.html

what a pile of security theater that MOK thing is.   theater of the 
absurd, anyways.



-- 
john r pierce, recycling bits in santa cruz

Possibly Parallel Threads

Search for more seemingly similar threads

CentOS - Jan 2016 - How to get UEFI setting by shell?

[CentOS] How to get UEFI setting by shell?

[CentOS] How to get UEFI setting by shell?

[CentOS] 回复： How to get UEFI setting by shell?

[CentOS] How to get UEFI setting by shell?

[CentOS] How to get UEFI setting by shell?

Possibly Parallel Threads