Linux Foundation Released UEFI Secure Boot Loader
The Linux Foundation made a promise a while back that they would bring us Linux users a UEFI secure bootloader image to overcome the controversial Windows 8 locked bootloader.
Many people were wondering when this would come to light, and some even thought that the Linux Foundation had, through no fault of their own, negated on this promise. However, a couple of days ago James Bottomley of the Linux Foundation announced in an official blog post that the Linux Foundation has finally got their own key from Microsoft.
Accompanying the UEFI secure boot key there was supposed to be a keytool as well but unfortunately that has been delayed even more than the bootloader itself. James had this to say about the keytool situation:
Originally this was going to be part of our signed release kit. However, during testing Microsoft discovered that because of a bug in one of the UEFI platforms, it could be used to remove the platform key programmatically, which would rather subvert the UEFI security system. Until we can resolve this (we’ve now got the particular vendor in the loop), they declined to sign KeyTool.efi although you can, of course, authorize it by hash in the MOK variables if you want to run it.
If you want to get your hands on the Linux Foundation’s UEFI secure boot image then head on over to their blog post were direct download links are posted for both the PreLoader and the HashTool. James has also put together a bootable mini USB image for you to download.
For your convenience we have also included download links below:
This is great news for us Linux users because it means that we are no longer governed by the silly rules that Microsoft have put in place in order for OEM’s to get the “Certified by Microsoft” sticker on their hardware. Another win for FOSS!