I installed VirtualBox but since SecureBoot is enabled, i need to sign Vbox’s kernel modules first.
I followed Fedora guide regarding signing kernel modules with no luck.
I’ve generated x.509 key pair, then imported the public key using mokutil --import and then rebooted to enroll the key. It’s shown in mokutil as enrolled, and it’s listed in keyctl list %:.platform (FedoraDocs states it should be in the builtin_trusted_keys keyring, not in ‘platform’, maybe that’s the problem).
But after signing the modules,
modprobe vboxdrv gets
PKCS#7 signature not signed with a trusted key error.
/usr/src/kernels/$(uname -r)/scripts/sign-file sha256 ./private_key.priv ./public_key.der $module_name_here to sign the modules.