For certain deployments, it will be great to have secure boot support
Notes
- https://www.kernel.org/doc/html/v4.15/admin-guide/module-signing.html
- https://techcommunity.microsoft.com/t5/hardware-dev-center/updated-uefi-signing-requirements/ba-p/1062916
- https://github.com/Xdavius/debian-sb-kernel-signing
- https://github.com/rhuefi/qemu-ovmf-secureboot
- https://blog.lazy-evaluation.net/posts/linux/switching-to-secureboot.html
- https://wiki.ubuntu.com/UEFI/SecureBoot/KeyManagement/KeyGeneration