[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Bug#909718: debian-live: bootia32.efi + UEFI32 + SecureBoot => certificate error

On Thu, Sep 27, 2018 at 08:45:17AM +0200, beta-tester wrote:
>Package: debian-live
>Severity: normal
>
>Dear Maintainer,
>
>i have a tablet/netbook with:
>
>- 32bit UEFI (only),
>- SecureBoot enabled,
>- 32/64bit CPU,
>- Windows 10 Pro (32bit)
>
>i can't use the live-dvd 64bit, 32bit version nor the multi-arch
>(debian-9.5.0-amd64-i386-netinst.iso) to boot LiveDVD or LiveUSB,
>because bootia32.efi on the Live iso media isn't signed properly. i
>get a signed certificat error at boot time from UEFI.
>
>on a PC with 64bit UEFI and SecureBoot enabled i don't have that problem.
>
>why is the bootx64.efi signed properly for SecureBoot an UEFI 64bit,
>but bootia32.efi isn't signed properly for SecureBoot an UEFI 32bit ?

We don't have Secure Boot enabled for *any* of our 9.x images
yet. Your 64-bit PC must have SB disabled, or it's ignoring the lack
of signature. Maybe it's booting in BIOS mode?

-- 
Steve McIntyre, Cambridge, UK.                                steve@einval.com
< Aardvark> I dislike C++ to start with. C++11 just seems to be
            handing rope-creating factories for users to hang multiple
            instances of themselves.
Reply to: