diff --git a/overlay.d/15fcos/usr/lib/systemd/system/coreos-bootupctl-update-secureboot.service b/overlay.d/15fcos/usr/lib/systemd/system/coreos-bootupctl-update-secureboot.service new file mode 100644 index 000000000..38bdc682f --- /dev/null +++ b/overlay.d/15fcos/usr/lib/systemd/system/coreos-bootupctl-update-secureboot.service @@ -0,0 +1,18 @@ +# Remove after the next barrier release +# https://github.com/coreos/fedora-coreos-tracker/issues/1752 + +[Unit] +Description=Update Bootloader for secureboot-enabled systems +ConditionSecurity=uefi-secureboot +ConditionFirmware=uefi +# make sure to run after the aleph file is fixed +# see https://github.com/coreos/fedora-coreos-tracker/issues/1724 +After=coreos-fix-aleph-file.service + +[Service] +Type=oneshot +ExecStart=/usr/bin/bootupctl update +RemainAfterExit=yes + +[Install] +WantedBy=multi-user.target