Download Libreboot Free/Opensource BIOS/UEFI firmware

New releases are announced in the main news section.

If you’re more interested in libreboot development, go to the libreboot development page, which also includes links to the Git repositories. The page on /docs/maintain/ describes how Libreboot is put together, and how to maintain it. If you wish to build Libreboot from source, read this page.

Buy Libreboot pre-installed

If you want professional installation, Minifree Ltd sells Libreboot pre-installed on select hardware, and it also provides a Libreboot preinstall service if you want to send your machine in to have Libreboot installed for you.

Leah Rowe, the founder and lead developer of Libreboot, also owns and operates Minifree Ltd; sales provide funding for the Libreboot project.

Safety warning

PLEASE READ THESE INSTRUCTIONS BEFORE INSTALLING, OR YOU MAY BRICK YOUR MACHINE!! - Please click the link and follow the instructions there, before flashing. For posterity, here is the link again.

GPG signing key

The latest release is Libreboot 25.06, under the stable directory.

NEW KEY

Full key fingerprint: 8BB1 F7D2 8CF7 696D BF4F 7192 5C65 4067 D383 B1FF

This key is for Libreboot releases after the 20240126 release. It applies to all Libreboot releases from the year 2024, and it will expire (unless revoked early) on 26 December 2028.

Download the key here: lbkey.asc

Libreboot releases are signed using GPG.

OLD KEY

Full key fingerprint: 98CC DDF8 E560 47F4 75C0 44BD D0C6 2464 FA8B 4856

This key is for Libreboot releases after the 20160907 release, and up to the Libreboot 20240126 release. This key expired during December 2023, so you should use the newer key (see above) for the releases after Libreboot 20240126.

Download the key here: lbkey.asc

Libreboot releases are signed using GPG.

OLD OLD KEY:

This key is for Libreboot 20160907, and releases older than 20160907:

Full key fingerprint: CDC9 CAE3 2CB4 B7FC 84FD C804 969A 9795 05E8 C5B2

The GPG key can also be downloaded with this exported dump of the pubkey: lbkeyold.asc.

sha512sum -c sha512sum.txt
gpg --verify sha512sum.txt.sig

Git repository

Links to regular release archives are listed on this page.

However, for the absolute most bleeding edge up-to-date version of Libreboot, there is a Git repository that you can download from. Go here:

How to download Libreboot from Git

HTTPS mirrors

The latest release is Libreboot 25.06, under the stable directory.

These mirrors are recommended, since they use TLS (https://) encryption.

You can download Libreboot from these mirrors:

https://mirror.math.princeton.edu/pub/libreboot/ (Princeton university, USA)
https://mirror.shapovalov.website/libreboot/ (shapovalov.website, Ukraine)
https://www.mirrorservice.org/sites/libreboot.org/release/ (University of Kent, UK)
https://mirrors.mit.edu/libreboot/ (MIT university, USA)
https://mirror.koddos.net/libreboot/ (koddos.net, Netherlands)
https://mirror-hk.koddos.net/libreboot/ (koddos.net, Hong Kong)
https://mirror.cyberbits.eu/libreboot/ (cyberbits.eu, France)
https://mirror.diyarciftci.xyz/libreboot/ (diyarciftci.xyz, Deutschland)
http://5gxsihf4vjdhimiotrhchihrfujoanondrplizofwparrtmgbwsafhid.onion/libreboot/ (diyarciftci.xyz Hidden Mirror)
http://iue4ubnjvskey5gop7n3odkylyjvelb5sl7z4cx6xjwdnthv2hba.b32.i2p/libreboot/ (diyarciftci.xyz Hidden Mirror)
https://ca.mirrors.cicku.me/libreboot/ (cicku, Canada)
https://au.mirrors.cicku.me/libreboot/ (cicku, Australia)
https://in.mirrors.cicku.me/libreboot/ (cicku, India)
https://za.mirrors.cicku.me/libreboot/ (cicku, South Africa)

NOTE: the “hidden” mirrors are encrypted by virtue of the network they’re on, so they’re still listed under the HTTPS (encrypted) section, despite actually using plain HTTP, because i2p and/or Tor provide encryption instead; on these networks, it’s normal to use plain HTTP.

RSYNC mirrors

The following rsync mirrors are available publicly:

rsync://rsync.mirrorservice.org/libreboot.org/release/ (University of Kent, UK)
rsync://mirror.math.princeton.edu/pub/libreboot/ (Princeton university, USA)
rsync://rsync.shapovalov.website/libreboot/ (shapovalov.website, Ukraine)
rsync://ftp.linux.ro/libreboot/ (linux.ro, Romania)
rsync://mirror.koddos.net/libreboot/ (koddos.net, Netherlands)
rsync://mirror-hk.koddos.net/libreboot/ (koddos.net, Hong Kong)
rsync://mirror.diyarciftci.xyz/libreboot/ (diyarciftci.xyz, Deutschland)

The official RSYNC server for Libreboot is: rsync://rsync.libreboot.org/mirrormirror/

You can mirror from the official Libreboot server, and then contact the Libreboot project informing about your new mirror. It will then be listed on this page.

It is requested, by the Libreboot project, that only mirrors pull from the official Rsync. Everyone else should use one of the third party mirrors. Thank you.

It is highly recommended that you use the libreboot.org mirror, if you wish to host an official mirror. Otherwise, if you simply want to create your own local mirror, you should use one of the other mirrors, which sync from libreboot.org.

Before you create the mirror, make a directory on your web server. For example:

mkdir /var/www/html/libreboot/

Now you can run rsync, for instance:

rsync -avz --delete-after rsync://rsync.libreboot.org/mirrormirror/ /var/www/html/libreboot/

You might put this in an hourly crontab. For example:

crontab -e

Then in crontab, add this line and save/exit (hourly crontab):

0 * * * * rsync -avz --delete-after rsync://rsync.libreboot.org/mirrormirror/ /var/www/html/libreboot/

It’s extremely important to have the final forward slash (/) at the end of each path, in the above rsync command. Otherwise, rsync will behave very strangely.

If you wish to regularly keep your rsync mirror updated, you can add it to a crontab. This page tells you how to use crontab: https://man7.org/linux/man-pages/man5/crontab.5.html

NOTE: Some people use systemd timers now instead of crontab. That’s OK too! Whatever floats your boat.

HTTP mirrors

The latest release is Libreboot 25.06, under the stable directory.

WARNING: these mirrors are non-HTTPS which means that they are unencrypted. Your traffic could be subject to interference by adversaries. Make especially sure to check the GPG signatures, assuming that you have the right key. Of course, you should do this anyway, even if using HTTPS.

http://mirror.linux.ro/libreboot/ (linux.ro, Romania)
http://mirror.helium.in-berlin.de/libreboot/ (in-berlin.de, Germany)

FTP mirrors

The latest release is Libreboot 25.06, under the stable directory.

WARNING: FTP is also unencrypted, like HTTP. The same risks are present.

ftp://ftp.mirrorservice.org/sites/libreboot.org/release/ (University of Kent, UK)
ftp://ftp.linux.ro/libreboot/ (linux.ro, Romania)

Statically linked

Libreboot includes statically linked executables in some releases, built from the available source code. Those executables have certain libraries built into them, so that the executables will work on many Linux distros.

To comply with GPL v2, source ISOs are supplied by the Libreboot project. You can find these source ISOs in the ccsource directory on the rsync mirrors.

Libreboot releases past version 20160907 do not distribute statically linked binaries. Instead, these releases are source-only, besides pre-compiled ROM images for which the regular Libreboot source code archives suffice. These newer releases instead automate the installation of build dependencies, with instructions in the documentation for building various utilities from source.

These executables are utilities such as flashprog.

The Canoeboot version of this page is: https://canoeboot.org/download.html

RSS
Binary Blob Reduction Policy
Canoeboot
Edit this page
Template
Logo
Authors
Libreboot is part of Software in the Public Interest

This page is released under license term:

SPDX-License-Identifier: GFDL-1.3-or-later

Please check the COPYING file in the website Markdown repository for more information.

Markdown file for this page: https://libreboot.org/download.md

Site map

This HTML page was generated by the Libreboot Static Site Generator.