[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Xen-users] booting debian/stretch as EFI guest on Xen 4.9.0 host -- \EFI\debian\grubx64.efi "not recognized"?

To: Robert McNicol <rmcnicol@xxxxxxxxxxxxxxxxxx>, "xen-users@xxxxxxxxxxxxx" <xen-users@xxxxxxxxxxxxx>
From: PGNet Dev <pgnet.dev@xxxxxxxxx>
Date: Wed, 18 Oct 2017 08:31:36 -0700
Delivery-date: Wed, 18 Oct 2017 15:32:51 +0000
List-id: Xen user discussion <xen-users.lists.xen.org>

On 10/18/17 8:22 AM, Robert McNicol wrote:

Shell> vmlinuz rw root=/dev/xvdg initrd=\initrd.gz
        Script Error Status: Security Violation (line number 1)
        Shell>


If I understand correctly, secure boot looks for a signed binary to execute. That 
signature has to chain back to a Microsoft key. Debian doesn’t play 
proprietary. I have been reading that they are making efforts to become secure boot 
compatible, but its not there yet. So that message makes sense.

Hm. In TianoCore settings, I've *disabled* "try secure boot". As Isaid, I'm not convinced yet that's working correctly. It'd clearly NOTwrite to a read-only mounted installer image, leaving a write to NvVarsin RAM. I don't know if/how that's handled in a Xen guest ... diggingaround about that now.

I've tried to engage with the OpenSUSE Xen folks re: launching Debianguest launch. So far, not a peep ...






_______________________________________________
Xen-users mailing list
Xen-users@xxxxxxxxxxxxx
https://lists.xen.org/xen-users

References:
- [Xen-users] booting debian/stretch as EFI guest on Xen 4.9.0 host -- \EFI\debian\grubx64.efi "not recognized"?
  - From: pgndev
- Re: [Xen-users] booting debian/stretch as EFI guest on Xen 4.9.0 host -- \EFI\debian\grubx64.efi "not recognized"?
  - From: PGNet Dev
- Re: [Xen-users] booting debian/stretch as EFI guest on Xen 4.9.0 host -- \EFI\debian\grubx64.efi "not recognized"?
  - From: PGNet Dev
- Re: [Xen-users] booting debian/stretch as EFI guest on Xen 4.9.0 host -- \EFI\debian\grubx64.efi "not recognized"?
  - From: PGNet Dev
- Re: [Xen-users] booting debian/stretch as EFI guest on Xen 4.9.0 host -- \EFI\debian\grubx64.efi "not recognized"?
  - From: PGNet Dev
- Re: [Xen-users] booting debian/stretch as EFI guest on Xen 4.9.0 host -- \EFI\debian\grubx64.efi "not recognized"?
  - From: PGNet Dev
- Re: [Xen-users] booting debian/stretch as EFI guest on Xen 4.9.0 host -- \EFI\debian\grubx64.efi "not recognized"?
  - From: PGNet Dev

Prev by Date: [Xen-users] Xen Security Advisory 239 (CVE-2017-15589) - hypervisor stack leak in x86 I/O intercept code
Next by Date: Re: [Xen-users] booting debian/stretch as EFI guest on Xen 4.9.0 host -- \EFI\debian\grubx64.efi "not recognized"?
Previous by thread: Re: [Xen-users] booting debian/stretch as EFI guest on Xen 4.9.0 host -- \EFI\debian\grubx64.efi "not recognized"?
Next by thread: Re: [Xen-users] booting debian/stretch as EFI guest on Xen 4.9.0 host -- \EFI\debian\grubx64.efi "not recognized"?
Index(es):
- Date
- Thread

Lists.xenproject.org is hosted with RackSpace, monitoring our
servers 24x7x365 and backed by RackSpace's Fanatical Support®.

Re: [Xen-users] booting debian/stretch as EFI guest on Xen 4.9.0 host -- ​\EFI\debian\grubx64.efi "not recognized"?

Re: [Xen-users] booting debian/stretch as EFI guest on Xen 4.9.0 host -- \EFI\debian\grubx64.efi "not recognized"?