bootc-image-builder Failed to virt-install fedora image under secure_boot enabled uefi with error "verification failed :security violation"

Failed to virt-install fedora image under secure_boot enabled uefi with error "verification failed :security violation"

Open chunfuwen opened this issue 10 months ago • 3 comments

succeed to build out fedora image on rhel9.4 host as below

sudo podman run --rm -it --privileged --pull=newer --security-opt label=type:unconfined_t -v /var/lib/libvirt/images/output:/output -v /var/lib/libvirt/images/config.json:/config.json   quay.io/centos-bootc/bootc-image-builder:latest  --type raw --tls-verify=true  --config /config.json  quay.io/centos-bootc/fedora-bootc:eln  --chown 107:107

use virt-install to install image with secure_boot enabled uefi

virt-install --import --connect qemu:///system -n fedora-uefi --hvm --accelerate -r 3096 --vcpus=3 --os-variant rhel9.0 --disk path=/var/lib/libvirt/images/output/image/disk.raw,bus=virtio,format=raw,size=10 --network network=default,model=virtio  --debug --memballoon model=virtio --cpu host,disable=vmx --graphics vnc --video virtio --machine q35 --boot uefi,firmware.feature0.name=secure-boot,firmware.feature0.enabled=yes,firmware.feature1.name=enrolled-keys,firmware.feature1.enabled=yes

Error happen with attached screenshot

Apr 12 '24 01:04 chunfuwen

bootc-image-builder bootc-image-builder copied to clipboard

Failed to virt-install fedora image under secure_boot enabled uefi with error "verification failed :security violation"

bootc-image-builder
bootc-image-builder copied to clipboard