I'm noticing the only release criterion that has secure boot listed is an exception for Windows dual booting that I think is obsolete:
https://fedoraproject.org/wiki/Fedora_32_Final_Release_Criteria#Windows_dual...
The bootloader entry part of this criterion does not apply when Secure Boot is enabled (because it has not yet been made to work, and fixing it is not trivial). cases.
I ran into that while trying to find a criterion for this bug being a blocker: https://bugzilla.redhat.com/show_bug.cgi?id=1782778
The inability to boot UEFI VMs seems like a blocker, but I have to infer it from the pull down: https://fedoraproject.org/wiki/Fedora_32_Beta_Release_Criteria#Virtualizatio...
"What does that mean? This rather concise criterion means effectively means that both virtual host and virtual guest functionality must work - it's implied, if you think about it. It also means that there must be no showstopper bugs in the installer when installing to a virtual machine..."
But since there's no explicit statement, I could also make the case that these days we should also block on bugs related to Secure Boot in VMs, now that there's explicit support for it upstream. *shrug*
On Sat, 2019-12-28 at 16:36 -0700, Chris Murphy wrote:
I'm noticing the only release criterion that has secure boot listed is an exception for Windows dual booting that I think is obsolete:
https://fedoraproject.org/wiki/Fedora_32_Final_Release_Criteria#Windows_dual...
The bootloader entry part of this criterion does not apply when Secure Boot is enabled (because it has not yet been made to work, and fixing it is not trivial). cases.
I ran into that while trying to find a criterion for this bug being a blocker: https://bugzilla.redhat.com/show_bug.cgi?id=1782778
It's mentioned in the footnotes for the 'Release-blocking images must boot' criterion in Basic:
https://fedoraproject.org/wiki/Basic_Release_Criteria#Release-blocking_image...
"Supported firmware types Release-blocking images must boot from all system firmware types that are commonly found on the primary architectures. For the x86_64 architecture, UEFI with Secure Boot configured in accordance with Microsoft's Windows certification requirements is considered a 'commonly found' firmware type."
The 'installer requirements' header then mentions:
"Except where otherwise specified, each of these requirements applies to all supported configurations described above."