What were you trying to do that didn't work?

I was trying to boot CentOS Stream 10 with secure boot enabled on libvirt.

What is the impact of this issue to you?

One cannot use CentOS Stream with secure boot. This makes it less secure than other distros.

Please provide the package NVR for which the bug is seen:

I have no idea of what an NRV is...

How reproducible is this bug?:

You just boot CentOS Stream 10 while secure boot is enabled. It won't boot.

Steps to reproduce

# set release
r=10

# get a date
date

# setup an admin password file
echo 'My super password.' > pass

# install
virt-install \
  --connect=qemu:///system \
  --name=cs$r \
  --vcpus=2 \
  --memory=4096 \
  --boot=uefi \
  --osinfo=centos-stream9 \
  --disk=/var/lib/libvirt/images/cs$r.qcow2,size=100 \
  --location=https://mirror.stream.centos.org/$r-stream/BaseOS/x86_64/os/ \
  --unattended=profile=jeos,admin-password-file=pass

Expected results

It should boot, as Fedora does.

Actual results

It installs successfully but it doesn't boot. If one turns off secure boot, it boots normally. Here're a few screenshots:

Secure boot enabled:

Installation happens normally:

Fails to boot:

Disable secure boot and retry:

And, like I said, it works fine with Fedora 41:

virt-install \
  --connect=qemu:///system \
  --name=f41 \
  --vcpus=2 \
  --memory=4096 \
  --boot=uefi \
  --osinfo=fedora40 \
  --location=https://download.fedoraproject.org/pub/fedora/linux/releases/41/Everything/x86_64/os/ \
  --unattended=profile=jeos,admin-password-file=pass