In libvirt version 6.0.0
I have following configuration
<type arch="x86_64" machine="pc-q35-4.2">hvm</type>
<loader readonly="yes" secure="no" type="pflash">/usr/share/OVMF/OVMF_CODE_4M.ms.fd</loader>
<nvram>/var/lib/libvirt/qemu/nvram/root-test-uefi_VARS.fd</nvram>
Before I start the vm, i also remove the root-test-uefi_VARS.fd to let it create a new one from default. However, the secure boot is still activated.
dmpstore SecureBoot
Variable RT+BS 'EFIGlobalVariable:SecureBoot' DataSize = 0x01
00000000: 01
I have to go into the uefi graphic interface to disable it, as long as I do not clear out the VAR file, it seems persistent.
Is this a known bug for 6.0.0, is this fixed in future version? Or this is rather some kind of feature than I do not understand?
