[20:17] <cmack2> How is the kernel for the ubuntu-server ISO compiled? Are there scripts for this?
[20:19] <CarlFK> cmack2: I am sure it is a package, and I think the -server and desktop now use the same kernel
[20:20] <cmack2> Which package?
[20:23] <CarlFK> linux-image-3.13.0-24-generic (that is what is installed on my desktop )
[20:24] <CarlFK> I am pretty sure, but it would be good if you have a server install handy: apt-cache policy linux-image-3.13.0-24-generic
[21:03] <cmack2> The vmlinuz file from http://security.ubuntu.com/ubuntu/pool/main/l/linux/linux-image-3.13.0-24-generic_3.13.0-24.47_amd64.deb differs from vmlinuz file from http://releases.ubuntu.com/14.04/ubuntu-14.04-server-amd64.iso
[21:04] <cmack2> It does not look like the kernel for ubuntu-14.04-server-amd64.iso comes from the linux-image-3.13.0-24-generic_3.13.0-24.47_amd64 package
[21:07] <cmack2> Where else could the kernel in ubuntu-14.04-server-amd64.iso come from?
[21:08] <infinity> cmack2: It's 24.46, not 24.47
[21:09] <infinity> 24.47 was a post-release security update, we didn't hop in a time machine to build the release ISOs with it. ;)
[21:12] <cmack2> The vmlinuz file in the server ISO seems to have additional content at the end than the vmlinuz file in linux-image-3.13.0-24-generic_3.13.0-24.46_amd64.deb
[21:13] <cmack2> It looks like a secure boot signing in the server ISO
[21:13] <cmack2> How is this added?
[21:14] <xnox> linux-image-signed (well the real one) does sbattach to add back the secure-boot signature to the kernel.
[21:14] <xnox> in postinst.
[21:28] <cmack2> xnox: What is "the real one" of linux-image-signed?
[21:31] <xnox> cmack2: linux-signed-generic is just a metapackage which depends on a package with a signature for a matching kernel.
[21:32] <xnox> e.g. linux-image-3.10.0-3-generic 's signature is in linux-signed-image-3.10.0-3-generic