[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Enabling secure boot support on the generic / generic-cloud images


As you may know, OpenStack has out-of-the-box UEFI secure boot support (a bit more details: it needs a few tweaks in the image properties, the ovmf package must be installed in the compute nodes, plus the compute node must have the correct "trait" in OpenStack placement).

However, our image doesn't have secure boot support by default if I'm not mistaking.

What would it take to add such support? Would it be "just" installing shim-signed? I know we're using "grub-cloud", instead of the standard grub, so I don't really understand what this mean: cat we install grub-efi-amd64-signed on the image then?

Bastian, I'm sure you have the info, especially concerning grub...


Thomas Goirand (zigo)

Reply to: