[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Xen-users] booting debian/stretch as EFI guest on Xen 4.9.0 host -- ​\EFI\debian\grubx64.efi "not recognized"?



On 10/18/17 8:22 AM, Robert McNicol wrote:
Shell> vmlinuz rw root=/dev/xvdg initrd=\initrd.gz
        Script Error Status: Security Violation (line number 1)
        Shell>

If I understand correctly, secure boot looks for a signed binary to execute. That 
signature has to chain back to a Microsoft key. Debian doesn’t play 
proprietary. I have been reading that they are making efforts to become secure boot 
compatible, but its not there yet. So that message makes sense.

Hm. In TianoCore settings, I've *disabled* "try secure boot". As I said, I'm not convinced yet that's working correctly. It'd clearly NOT write to a read-only mounted installer image, leaving a write to NvVars in RAM. I don't know if/how that's handled in a Xen guest ... digging around about that now.

I've tried to engage with the OpenSUSE Xen folks re: launching Debian guest launch. So far, not a peep ...





_______________________________________________
Xen-users mailing list
Xen-users@xxxxxxxxxxxxx
https://lists.xen.org/xen-users

 


Rackspace

Lists.xenproject.org is hosted with RackSpace, monitoring our
servers 24x7x365 and backed by RackSpace's Fanatical Support®.