4863a485cd
Currently uefi_pxe_bootfile_name defaults to bootx86.efi, but puppet doesn't copy any file to this location. This change copies the signed grub shim efi to tftp root bootx86.efi, and also the signed grub binary to grubx64.efi. This means UEFI boot with PXE will now work by default by doing a grub network boot instead of using iPXE. And since all EFI binaries are signed, it should even be possible to enable Secure Boot for the whole baremetal provisioning process. Change-Id: I59850eca971d57464efe85ffea723f19f9855353 Closes-Bug: #1975543
12 lines
490 B
YAML
12 lines
490 B
YAML
---
|
|
features:
|
|
- |
|
|
The pxe parameter `uefi_pxe_bootfile_name` is now managed by puppet, keeping
|
|
the ironic default of `bootx64.efi`.
|
|
|
|
The shim EFI binary is copied to the TFTP root directory, to a file named
|
|
the value of `uefi_pxe_bootfile_name`. The grub EFI binary is copied to
|
|
the TFTP root directory to a file named `grubx64.efi`.
|
|
|
|
With these changes, using the pxe boot driver with UEFI boot will result in
|
|
a grub network boot which is Secure Boot capable. |