Bug#820050: Monolithic grub for signing (grub2-signed/secure-boot)
Helen Koike
helen.koike at collabora.co.uk
Thu Oct 20 19:32:53 UTC 2016
Hi,
To be able to create grub2-signed package we need a monolithic version
of grub available, as grub doesn't know how verify the signatures of its
modules loaded from the disk, so we need a monolithic version containing
grub and all it's modules into a single image to be signed. Then
grub2-signed package can depend on the signature and on monolithic grub
package to be used when secure boot is enabled.
So I was wondering it is would be ok to change the packages
grub-efi-....deb to create a monolithic version of grub or if it will be
preferable to create a grub-efi-monolithic....deb, or do you have any
other idea?
Thanks
Helen Koike
More information about the Pkg-grub-devel
mailing list