]> gitweb.fluxo.info Git - hydra.git/commitdiff
projects / hydra.git / commitdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | patch | inline | side by side (parent: 5cf0c43)
Fix: provision: UEFI: mount /sys/firmware/efi/efivars and use --uefi-secure-boot...
authorSilvio Rhatto <rhatto@riseup.net>
Tue, 25 Jan 2022 17:26:03 +0000 (14:26 -0300)
committerSilvio Rhatto <rhatto@riseup.net>
Tue, 25 Jan 2022 17:26:03 +0000 (14:26 -0300)
share/hydractl/provision patch | blob | history

diff --git a/share/hydractl/provision b/share/hydractl/provision
index 26ed8689de4455c9df60e26c6b0ed6013096e056..6d4dbaabbb0052337a5b17d51f40cd26e6ed2e06 100755 (executable)
--- a/share/hydractl/provision
+++ b/share/hydractl/provision
@@ -479,6 +479,10 @@ hydra_sudo_run mount -o bind /dev/    $WORK/dev
 hydra_sudo_run mount -o bind /dev/pts $WORK/dev/pts
 echo LANG=C | $SUDO tee $WORK/etc/default/locale > /dev/null
 
+if [ "$boot_mode" == "bios" ]; then
+  hydra_sudo_run mount none -t efivarfs $WORK/sys/firmware/efi/efivars
+fi
+
 # Resolver configuration.
 echo "domain $domain"            | $SUDO tee    $WORK/etc/resolv.conf > /dev/null
 echo "search $hostname.$domain"  | $SUDO tee -a $WORK/etc/resolv.conf > /dev/null
@@ -593,7 +597,7 @@ fi
 
 # LVM.
 if [ "$discards" == "y" ]; then
-  $SUDO sed -i -e 's/issue_discards = 0/issue_discards = 1' $WORK/etc/lvm/lvm.conf
+  $SUDO sed -i -e 's/issue_discards = 0/issue_discards = 1/' $WORK/etc/lvm/lvm.conf
 fi
 
 # Boot device must be available before installing kernel and initramfs.
@@ -667,6 +671,8 @@ if [ "$grub" == "y" ]; then
     fi
 
     if [ "$secure_boot" == "y" ]; then
+      grub_uefi_secure_boot="--uefi-secure-boot"
+
       $APT_INSTALL grub-efi-${arch}-signed -y
     else
       $APT_INSTALL grub-efi-${arch} -y
@@ -713,7 +719,9 @@ EOF
   if [ "$boot_mode" == "bios" ]; then
     hydra_sudo_run chroot $WORK/ grub-install --recheck --force $device
   else
-    hydra_sudo_run chroot $WORK/ grub-install --target=${grub_arch}-efi --efi-directory=/boot/efi $grub_uefi_nvram
+    hydra_sudo_run chroot $WORK/ grub-install --target=${grub_arch}-efi \
+                                              --efi-directory=/boot/efi \
+                                              $grub_uefi_nvram $grub_uefi_secure_boot
   fi
 fi
 
@@ -779,6 +787,7 @@ echo "Umounting installation device..."
 
 if [ "$boot_mode" == "uefi" ]; then
   hydra_sudo_run umount $WORK/boot/efi
+  hydra_sudo_run umount $WORK/sys/firmware/efi/efivars
 fi
 
 if [ "$grub" == "y" ] && [ "$encrypt" != "y" ]; then
Hydra Suite