c/pve-kernel-qoup
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
345bdbd264
pve-kernel-qoup/debian
History
Fabian Grünbichler 345bdbd264 build: sign modules and set trust anchor/lockdown 
this is required for secure boot support.

at build time, an ephemeral key pair will be generated and all built modules
will be signed with it. the private key is discarded, and the public key
embedded in the kernel image for signature validation at module load time.

this change means that every kernel release must be considered an ABI change
from now on, else the signatures of on-disk modules and the signing key
embedded in the running kernel image might not match.

Signed-off-by: Fabian Grünbichler <f.gruenbichler@proxmox.com>
2023-08-02 14:14:00 +02:00
..
rules.d build: move build and packaging to debian/ 2018-03-09 09:19:58 +01:00
scripts scripts: modernize abi-generate & find-firmware 2023-06-13 16:14:24 +02:00
source integrate meta packages and change prefix 2023-08-01 14:27:29 +02:00
changelog bump version to 6.2.16-7 2023-08-01 14:27:29 +02:00
control.in integrate meta packages and change prefix 2023-08-01 14:27:29 +02:00
copyright debian: update some meta and copyright information 2022-06-17 13:42:23 +02:00
proxmox-headers.postinst.in integrate meta packages and change prefix 2023-08-01 14:27:29 +02:00
proxmox-kernel-meta.postinst.in integrate meta packages and change prefix 2023-08-01 14:27:29 +02:00
proxmox-kernel-meta.postrm.in integrate meta packages and change prefix 2023-08-01 14:27:29 +02:00
proxmox-kernel.postinst.in integrate meta packages and change prefix 2023-08-01 14:27:29 +02:00
proxmox-kernel.postrm.in integrate meta packages and change prefix 2023-08-01 14:27:29 +02:00
proxmox-kernel.prerm.in integrate meta packages and change prefix 2023-08-01 14:27:29 +02:00
rules build: sign modules and set trust anchor/lockdown 2023-08-02 14:14:00 +02:00