Could not load vboxdrv in Ubuntu 14.04 (and I want to keep secure boot)
I encounter the exact same problem as here except I'm not able to recover using the proposed solution.
Could not load 'vboxdrv' after upgrade to Ubuntu 16.04 (and I want to keep secure boot)
I have followed the recommended solution and everything seems fine but still the module could not be loaded.
The key seems correctly loaded:
$ sudo mokutil --list-enrolled
[key 1]
[…]
[key 2]
SHA1 Fingerprint: 0f:6f:8e:7a:39:d0:27:33:7d:eb:e0:62:cf:38:b1:af:4c:82:98:c4
Certificate:
[…]
Issuer: CN=modssign
[…]
X509v3 extensions:
X509v3 Subject Key Identifier:
83:83:25:5B:D6:6E:A0:BB:87:44:A9:8C:EA:47:58:DD:07:B9:A6:C7
X509v3 Authority Key Identifier:
keyid:83:83:25:5B:D6:6E:A0:BB:87:44:A9:8C:EA:47:58:DD:07:B9:A6:C7
[…]
And the module is signed with this key:
$ sudo modinfo vboxdrv
filename: /lib/modules/3.16.0-77-generic/misc/vboxdrv.ko
version: 5.1.0 r108711 (0x00260000)
license: GPL
description: Oracle VM VirtualBox Support Driver
author: Oracle Corporation
srcversion: 32F3C607C8086AE6187D18B
depends:
vermagic: 3.16.0-77-generic SMP mod_unload modversions
signer: modssign
sig_key: 83:83:25:5B:D6:6E:A0:BB:87:44:A9:8C:EA:47:58:DD:07:B9:A6:C7
sig_hashalgo: sha256
But the module still failed to insert:
$ sudo modprobe vboxdrv
modprobe: ERROR: could not insert 'vboxdrv': Required key not available
Do you have any idea?
I thought I had correctly follow all the steps (including enrolling the new key at boot, etc)
More technical information:
- Ubuntu 14.04.4 LTS freshly updated
- Linux 3.16.0-77-generic
- Virtualbox 5.1.0 r108711 freshly downloaded from the Virtualbox.org website
Thanks in advance for your hints!
Edit of 2016-08-23:
I think the issue is due to the fact my certificate is never loaded by the kernel at boot.
The certificate loaded by the kernel is 4a94:
$ sudo dmesg | grep 'Loaded X.509 cert'
[ 1.126207] Loaded X.509 cert 'Magrathea: Glacier signing key: 4a94aff5eff7b539906b3f2a9d0cca00dac4cbb0'
And all modules are well loaded because they are signed with this specific key (4a94):
$ sudo modinfo ip_tables | grep sig_key
sig_key: 4A:94:AF:F5:EF:F7:B5:39:90:6B:3F:2A:9D:0C:CA:00:DA:C4:CB:B0
But even if my certificate is shown in mokutil --list-enrolled, it seems to not be loaded at boot.
How could I add my certificate to the kernel at boot sequence?
Do I have to rebuild a new kernel with my certificate in it?
14.04 drivers virtualbox secure-boot
edited Apr 13 '17 at 12:23
Community♦
1
asked Jul 19 '16 at 13:17
yaapyaap
113
add a comment |
I encounter the exact same problem as here except I'm not able to recover using the proposed solution.
Could not load 'vboxdrv' after upgrade to Ubuntu 16.04 (and I want to keep secure boot)
I have followed the recommended solution and everything seems fine but still the module could not be loaded.
The key seems correctly loaded:
$ sudo mokutil --list-enrolled
[key 1]
[…]
[key 2]
SHA1 Fingerprint: 0f:6f:8e:7a:39:d0:27:33:7d:eb:e0:62:cf:38:b1:af:4c:82:98:c4
Certificate:
[…]
Issuer: CN=modssign
[…]
X509v3 extensions:
X509v3 Subject Key Identifier:
83:83:25:5B:D6:6E:A0:BB:87:44:A9:8C:EA:47:58:DD:07:B9:A6:C7
X509v3 Authority Key Identifier:
keyid:83:83:25:5B:D6:6E:A0:BB:87:44:A9:8C:EA:47:58:DD:07:B9:A6:C7
[…]
And the module is signed with this key:
$ sudo modinfo vboxdrv
filename: /lib/modules/3.16.0-77-generic/misc/vboxdrv.ko
version: 5.1.0 r108711 (0x00260000)
license: GPL
description: Oracle VM VirtualBox Support Driver
author: Oracle Corporation
srcversion: 32F3C607C8086AE6187D18B
depends:
vermagic: 3.16.0-77-generic SMP mod_unload modversions
signer: modssign
sig_key: 83:83:25:5B:D6:6E:A0:BB:87:44:A9:8C:EA:47:58:DD:07:B9:A6:C7
sig_hashalgo: sha256
But the module still failed to insert:
$ sudo modprobe vboxdrv
modprobe: ERROR: could not insert 'vboxdrv': Required key not available
Do you have any idea?
I thought I had correctly follow all the steps (including enrolling the new key at boot, etc)
More technical information:
- Ubuntu 14.04.4 LTS freshly updated
- Linux 3.16.0-77-generic
- Virtualbox 5.1.0 r108711 freshly downloaded from the Virtualbox.org website
Thanks in advance for your hints!
Edit of 2016-08-23:
I think the issue is due to the fact my certificate is never loaded by the kernel at boot.
The certificate loaded by the kernel is 4a94:
$ sudo dmesg | grep 'Loaded X.509 cert'
[ 1.126207] Loaded X.509 cert 'Magrathea: Glacier signing key: 4a94aff5eff7b539906b3f2a9d0cca00dac4cbb0'
And all modules are well loaded because they are signed with this specific key (4a94):
$ sudo modinfo ip_tables | grep sig_key
sig_key: 4A:94:AF:F5:EF:F7:B5:39:90:6B:3F:2A:9D:0C:CA:00:DA:C4:CB:B0
But even if my certificate is shown in mokutil --list-enrolled, it seems to not be loaded at boot.
How could I add my certificate to the kernel at boot sequence?
Do I have to rebuild a new kernel with my certificate in it?
14.04 drivers virtualbox secure-boot
edited Apr 13 '17 at 12:23
Community♦
1
asked Jul 19 '16 at 13:17
yaapyaap
113
add a comment |
I encounter the exact same problem as here except I'm not able to recover using the proposed solution.
Could not load 'vboxdrv' after upgrade to Ubuntu 16.04 (and I want to keep secure boot)
I have followed the recommended solution and everything seems fine but still the module could not be loaded.
The key seems correctly loaded:
$ sudo mokutil --list-enrolled
[key 1]
[…]
[key 2]
SHA1 Fingerprint: 0f:6f:8e:7a:39:d0:27:33:7d:eb:e0:62:cf:38:b1:af:4c:82:98:c4
Certificate:
[…]
Issuer: CN=modssign
[…]
X509v3 extensions:
X509v3 Subject Key Identifier:
83:83:25:5B:D6:6E:A0:BB:87:44:A9:8C:EA:47:58:DD:07:B9:A6:C7
X509v3 Authority Key Identifier:
keyid:83:83:25:5B:D6:6E:A0:BB:87:44:A9:8C:EA:47:58:DD:07:B9:A6:C7
[…]
And the module is signed with this key:
$ sudo modinfo vboxdrv
filename: /lib/modules/3.16.0-77-generic/misc/vboxdrv.ko
version: 5.1.0 r108711 (0x00260000)
license: GPL
description: Oracle VM VirtualBox Support Driver
author: Oracle Corporation
srcversion: 32F3C607C8086AE6187D18B
depends:
vermagic: 3.16.0-77-generic SMP mod_unload modversions
signer: modssign
sig_key: 83:83:25:5B:D6:6E:A0:BB:87:44:A9:8C:EA:47:58:DD:07:B9:A6:C7
sig_hashalgo: sha256
But the module still failed to insert:
$ sudo modprobe vboxdrv
modprobe: ERROR: could not insert 'vboxdrv': Required key not available
Do you have any idea?
I thought I had correctly follow all the steps (including enrolling the new key at boot, etc)
More technical information:
- Ubuntu 14.04.4 LTS freshly updated
- Linux 3.16.0-77-generic
- Virtualbox 5.1.0 r108711 freshly downloaded from the Virtualbox.org website
Thanks in advance for your hints!
Edit of 2016-08-23:
I think the issue is due to the fact my certificate is never loaded by the kernel at boot.
The certificate loaded by the kernel is 4a94:
$ sudo dmesg | grep 'Loaded X.509 cert'
[ 1.126207] Loaded X.509 cert 'Magrathea: Glacier signing key: 4a94aff5eff7b539906b3f2a9d0cca00dac4cbb0'
And all modules are well loaded because they are signed with this specific key (4a94):
$ sudo modinfo ip_tables | grep sig_key
sig_key: 4A:94:AF:F5:EF:F7:B5:39:90:6B:3F:2A:9D:0C:CA:00:DA:C4:CB:B0
But even if my certificate is shown in mokutil --list-enrolled, it seems to not be loaded at boot.
How could I add my certificate to the kernel at boot sequence?
Do I have to rebuild a new kernel with my certificate in it?
14.04 drivers virtualbox secure-boot
edited Apr 13 '17 at 12:23
Community♦
1
asked Jul 19 '16 at 13:17
yaapyaap
113
I encounter the exact same problem as here except I'm not able to recover using the proposed solution.
Could not load 'vboxdrv' after upgrade to Ubuntu 16.04 (and I want to keep secure boot)
I have followed the recommended solution and everything seems fine but still the module could not be loaded.
The key seems correctly loaded:
$ sudo mokutil --list-enrolled
[key 1]
[…]
[key 2]
SHA1 Fingerprint: 0f:6f:8e:7a:39:d0:27:33:7d:eb:e0:62:cf:38:b1:af:4c:82:98:c4
Certificate:
[…]
Issuer: CN=modssign
[…]
X509v3 extensions:
X509v3 Subject Key Identifier:
83:83:25:5B:D6:6E:A0:BB:87:44:A9:8C:EA:47:58:DD:07:B9:A6:C7
X509v3 Authority Key Identifier:
keyid:83:83:25:5B:D6:6E:A0:BB:87:44:A9:8C:EA:47:58:DD:07:B9:A6:C7
[…]
And the module is signed with this key:
$ sudo modinfo vboxdrv
filename: /lib/modules/3.16.0-77-generic/misc/vboxdrv.ko
version: 5.1.0 r108711 (0x00260000)
license: GPL
description: Oracle VM VirtualBox Support Driver
author: Oracle Corporation
srcversion: 32F3C607C8086AE6187D18B
depends:
vermagic: 3.16.0-77-generic SMP mod_unload modversions
signer: modssign
sig_key: 83:83:25:5B:D6:6E:A0:BB:87:44:A9:8C:EA:47:58:DD:07:B9:A6:C7
sig_hashalgo: sha256
But the module still failed to insert:
$ sudo modprobe vboxdrv
modprobe: ERROR: could not insert 'vboxdrv': Required key not available
Do you have any idea?
I thought I had correctly follow all the steps (including enrolling the new key at boot, etc)
More technical information:
- Ubuntu 14.04.4 LTS freshly updated
- Linux 3.16.0-77-generic
- Virtualbox 5.1.0 r108711 freshly downloaded from the Virtualbox.org website
Thanks in advance for your hints!
Edit of 2016-08-23:
I think the issue is due to the fact my certificate is never loaded by the kernel at boot.
The certificate loaded by the kernel is 4a94:
$ sudo dmesg | grep 'Loaded X.509 cert'
[ 1.126207] Loaded X.509 cert 'Magrathea: Glacier signing key: 4a94aff5eff7b539906b3f2a9d0cca00dac4cbb0'
And all modules are well loaded because they are signed with this specific key (4a94):
$ sudo modinfo ip_tables | grep sig_key
sig_key: 4A:94:AF:F5:EF:F7:B5:39:90:6B:3F:2A:9D:0C:CA:00:DA:C4:CB:B0
But even if my certificate is shown in mokutil --list-enrolled, it seems to not be loaded at boot.
How could I add my certificate to the kernel at boot sequence?
Do I have to rebuild a new kernel with my certificate in it?
14.04 drivers virtualbox secure-boot
14.04 drivers virtualbox secure-boot
edited Apr 13 '17 at 12:23
Community♦
1
asked Jul 19 '16 at 13:17
yaapyaap
113
edited Apr 13 '17 at 12:23
Community♦
1
asked Jul 19 '16 at 13:17
yaapyaap
113
edited Apr 13 '17 at 12:23
Community♦
1
edited Apr 13 '17 at 12:23
Community♦
1
edited Apr 13 '17 at 12:23
Community♦
1
1
asked Jul 19 '16 at 13:17
yaapyaap
113
asked Jul 19 '16 at 13:17
yaapyaap
113
asked Jul 19 '16 at 13:17
yaapyaap
113
113
add a comment |
add a comment |
0
active
oldest
votes
Your Answer
StackExchange.ready(function() {
var channelOptions = {
tags: "".split(" "),
id: "89"
};
initTagRenderer("".split(" "), "".split(" "), channelOptions);
StackExchange.using("externalEditor", function() {
// Have to fire editor after snippets, if snippets enabled
if (StackExchange.settings.snippets.snippetsEnabled) {
StackExchange.using("snippets", function() {
createEditor();
});
}
else {
createEditor();
}
});
function createEditor() {
StackExchange.prepareEditor({
heartbeatType: 'answer',
autoActivateHeartbeat: false,
convertImagesToLinks: true,
noModals: true,
showLowRepImageUploadWarning: true,
reputationToPostImages: 10,
bindNavPrevention: true,
postfix: "",
imageUploader: {
brandingHtml: "Powered by u003ca class="icon-imgur-white" href="https://imgur.com/"u003eu003c/au003e",
contentPolicyHtml: "User contributions licensed under u003ca href="https://creativecommons.org/licenses/by-sa/3.0/"u003ecc by-sa 3.0 with attribution requiredu003c/au003e u003ca href="https://stackoverflow.com/legal/content-policy"u003e(content policy)u003c/au003e",
allowUrls: true
},
onDemand: true,
discardSelector: ".discard-answer"
,immediatelyShowMarkdownHelp:true
});
}
});
Sign up or log in
StackExchange.ready(function () {
StackExchange.helpers.onClickDraftSave('#login-link');
});
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
StackExchange.ready(
function () {
StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2faskubuntu.com%2fquestions%2f800477%2fcould-not-load-vboxdrv-in-ubuntu-14-04-and-i-want-to-keep-secure-boot%23new-answer', 'question_page');
}
);
Post as a guest
Required, but never shown
0
active
oldest
votes
0
active
oldest
votes
active
oldest
votes
active
oldest
votes
Thanks for contributing an answer to Ask Ubuntu!
- Please be sure to answer the question. Provide details and share your research!
But avoid …
- Asking for help, clarification, or responding to other answers.
- Making statements based on opinion; back them up with references or personal experience.
To learn more, see our tips on writing great answers.
Sign up or log in
StackExchange.ready(function () {
StackExchange.helpers.onClickDraftSave('#login-link');
});
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
StackExchange.ready(
function () {
StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2faskubuntu.com%2fquestions%2f800477%2fcould-not-load-vboxdrv-in-ubuntu-14-04-and-i-want-to-keep-secure-boot%23new-answer', 'question_page');
}
);
Post as a guest
Required, but never shown
Sign up or log in
StackExchange.ready(function () {
StackExchange.helpers.onClickDraftSave('#login-link');
});
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
Sign up or log in
StackExchange.ready(function () {
StackExchange.helpers.onClickDraftSave('#login-link');
});
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
Sign up or log in
StackExchange.ready(function () {
StackExchange.helpers.onClickDraftSave('#login-link');
});
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
