kairos icon indicating copy to clipboard operation
kairos copied to clipboard

Published 20 hours ago verified publisher icon kairos-io

EFI raw image cant boot on secureboot

Open Itxaka opened this issue 1 year ago • 3 comments

Seems like we are not using the proper artifacts to boot so it wont work like a normal iso.

we should be using the grub.efi and shim.efi from the rootfs provided instead of whatever artifacts we are using like when building an iso, otherwise we dont support secureboot under raw images.

Itxaka avatar Nov 19 '24 12:11 Itxaka

This issue is stale because it has been open 30 days with no activity. Remove stale label or comment or this will be closed in 5 days.

github-actions[bot] avatar May 31 '25 02:05 github-actions[bot]

Was it fixed here @Itxaka ? https://github.com/kairos-io/kairos/issues/2980

jimmykarily avatar Jun 04 '25 05:06 jimmykarily

I think so, but it might need testing to confirm

Itxaka avatar Jun 04 '25 06:06 Itxaka

Confirmed by building an image with:

docker run --rm --privileged -v /var/run/docker.sock:/var/run/docker.sock -v $PWD/build/:/output quay.io/kairos/auroraboot:v0.8.6 --debug --set "disable_http_server=true" --set "disable_netboot=true" --set "container_image=quay.io/kairos/ubuntu:24.04-core-amd64-generic-v3.4.2" --set "state_dir=/output" --set "disk.efi=true" --set "disk.state_size=20000"

And then booting it with secureboot enabled.

Itxaka avatar Jul 17 '25 15:07 Itxaka