Creating secure-boot VM in virt-manager in 22.04
Sam Varshavchik
mrsam at courier-mta.com
Wed Jun 5 12:01:10 UTC 2024
I have an existing qemu VM that's using UEFI firmware and secure boot
(Windows 11), running in Fedora 40 that I want to move to 22.04
Looking at the VM's definition on Fedora I have:
<loader readonly='yes' secure='yes' type='pflash' format='qcow2'>/usr/share/edk2/ovmf/OVMF_CODE_4M.secboot.qcow2</loader>
<nvram template='/usr/share/edk2/ovmf/OVMF_VARS_4M.secboot.qcow2' format='qcow2'>/var/lib/libvirt/qemu/nvram/WINDOWS10-EFI_VARS.qcow2</nvram>
I am looking at what I have in 22.04 in /usr/share/OVMF.
I see OVMF_CODE_4M.secboot.fd in there, that should work for <loader>,
however I do not see OVMF_VARS_4M.secboot.fd. There is a OVMF_VARS_4M.fd in
there, but I don't think that one will work.
The version of ovmf in 22.04 is older than the one in Fedora, so perhaps
24.04 might have the requisite support, does anyone know?
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 228 bytes
Desc: not available
URL: <https://lists.ubuntu.com/archives/ubuntu-users/attachments/20240605/da6db710/attachment.sig>
More information about the ubuntu-users
mailing list