|-V||Determine whether the file is signed. Note that this does not verify the correctness of the signature; only that the file contains a signature.|
|-k||Name of file containing the private key used to sign the binary.|
|-c||Name of file containing the certificate used to sign the binary.|
|-o||Name of file to write the signed binary to.|
The uefisign utility exits 0 on success, and >0 if an error occurs.
Generate self-signed certificate and use it to sign a binary:
uefisign -c testcert.pem -k testcert.key -o signed-binary binary
uefisign -Vv binary
The uefisign command appeared in
.Fx 10.2 .
The uefisign utility was developed by
.An Edward Tomasz Napierala Aq Mt trasz@FreeBSD.org under sponsorship from the FreeBSD Foundation.