On Fri, 2016-10-21 at 12:22 +0800, Paul Wise wrote: > On Fri, Oct 21, 2016 at 4:20 AM, Tollef Fog Heen wrote: > > > If there are machines with free firmware that also support secure boot, > > we can look at this. So far, I don't believe there are any. > > Tianocore (edk2 in Debian) supports virtual machines and also any > device that supports coreboot could chainload to Tianocore. > > https://wiki.ubuntu.com/SecurityTeam/SecureBoot > https://github.com/tianocore/tianocore.github.io/wiki/Coreboot_UEFI_payload
I think there are also physical arm64 systems using EDK2/Tianocore as their firmware. Ian.