RomanNum3ral
/
quickemu
mirror of https://github.com/quickemu-project/quickemu.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

fix(quickemu): enable pflash secure property only when secureboot on 

Signed-off-by: Martin Wimpress <martin@wimpress.org>
This commit is contained in:
Martin Wimpress 2026-01-24 19:49:04 +00:00 committed by Martin Wimpress
parent aa4211b38a
commit 5dfe6c9cf7
1 changed files with 6 additions and 3 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

9
quickemu
View File

@ -1781,10 +1781,13 @@ function vm_boot() {
args+=(-blockdev node-name=rom,driver=file,filename="${EFI_CODE}",read-only=true
-blockdev node-name=efivars,driver=file,filename="${EFI_VARS}")
else
# x86 uses traditional pflash drives with secure boot support
# x86 uses traditional pflash drives
# Only enable secure pflash property when SecureBoot is requested
# shellcheck disable=SC2054
args+=(-global driver=cfi.pflash01,property=secure,value=on
-drive if=pflash,format="${EFI_CODE_FORMAT}",unit=0,file="${EFI_CODE}",readonly=on
if [ "${secureboot}" == "on" ]; then
args+=(-global driver=cfi.pflash01,property=secure,value=on)
fi
args+=(-drive if=pflash,format="${EFI_CODE_FORMAT}",unit=0,file="${EFI_CODE}",readonly=on
-drive if=pflash,format="${EFI_VARS_FORMAT}",unit=1,file="${EFI_VARS}")
fi
fi