Hi, I noticed that tboot grub2 scripts add the noefi kernel argument when generating a grub2 config. There doesn’t seem to be anything in the tboot change logs explaining the need for this argument.
I suspect that this was added to ensure the kernel doesn’t make use of EFI runtime services after dynamic launch, since EFI code isn’t being measured. Would be great if someone can confirm. Thanks, Sahil
------------------------------------------------------------------------------
_______________________________________________ tboot-devel mailing list tboot-devel@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/tboot-devel
