fyi, I have now disabled the memory attribute protocol for all *.secboot.fd images in Debian. I've added *.secboot.strictnx.fd images that users can opt-in to, if they know their guest OS is compatible:
https://salsa.debian.org/qemu- team/edk2/-/commit/766e4f3cb33136c9411746c417d95283e6300dff I think we can now sync this package over, since there's no longer a practical delta. But note that my plan is also to immediately re-enable the memory attribute protocol for *.secboot.fd in Debian experimental with the next edk2 upstream release (expected this month), and then into unstable once forky opens for devel. Of course, it will still be possible to override this with a `-fw_cfg` flag. How should we handle that with Ubuntu? -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to systemd in Ubuntu. https://bugs.launchpad.net/bugs/2104316 Title: 25.04 beta TPMFDE: first boot failure Status in Gadget snap for Personal Computers using Intel or AMD processors: New Status in edk2 package in Ubuntu: Fix Released Status in grub2 package in Ubuntu: New Status in systemd package in Ubuntu: New Bug description: 25.04 beta hybrid TPMFDE: first boot failure Using virt-manager, creating a VM, adjusting the firmware for UEFI (.ms), and adding a TPM (default settings), the resulting system appears to install but fails on first boot. The screen shows TianoCore along with BdsDxe: loading Booot0003... BdsDxe: starting Booot0003... If I repeat this test with ubuntu 24.04.2 boot makes it boots as expected, showing this prior to continuing to the desktop: BdsDxe: loading Booot0003... BdsDxe: starting Booot0003... /EndEntire /EndEntire On 24.04.2, if I hit escape during the /EndEntire bit, I can see the Grub menu offering the "Run Ubuntu Core" option, which never seems to work on the 25.04 beta install. To manage notifications about this bug go to: https://bugs.launchpad.net/snap-pc/+bug/2104316/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
