search

system76 / firmware-open

System76 Open Firmware
Other
949 stars 86 forks source link

lemp12 cannot install Windows 11 with Secure Boot enabled #445

Open ahoneybun opened 1 year ago

ahoneybun commented 1 year ago

Steps to reproduce

  1. Create install media using either Rufus in Windows or WoeUSB-ng on Linux per this article: https://support.system76.com/articles/windows

  2. Enable Secure Boot in BIOS

  3. Boot from flash drive using One Time Boot

  4. Go though the steps and then error appears

Expected behavior

Windows installs without issues

Actual behavior

Error appears about system requirements not being met.

PXL_20230802_161152811 MP

crawfxrd commented 1 year ago

Testing with Windows 10 on galp7: msinfo32 reports PCR7 as unusable/unsupported and makes the TPM unavailable.

coreboot TPM measured boot works fine, and Linux reports the TPM device as working.

ahoneybun commented 1 year ago

It sounds like you can't upgrade Windows 10 due to this either so trying to upgrade should also be a good test.

jackpot51 commented 11 months ago

Regarding the PCR7 message, it appears that "Modern Suspend" (S0iX) is required for that feature...