-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256
On 01/07/16 03:02, Marek Marczykowski-Górecki wrote:
> On Thu, Jun 30, 2016 at 09:51:25PM -0400, Chris Laprise wrote:
>> For people using a libre BIOS, running a distro like Trisquel in
>> dom0 would be very attractive.
>
> Yes, that's right. But for this to make reasonable platform for
> Qubes OS, such libre BIOS need to support VT-d. As far as I know,
> none does. Unfortunately.
>
>
Libreboot removes all the proprietary software that is normally needed
to boot the computer, including the Intel Management Engine. As far as
I know, Qemu in dual core mode and Qemu-kvm don't work in some cases,
causing a kernel panic. Coreboot, on the other hand, leaves the Intel
Management Engine software intact, so you don't get rid of the worst
spyware (for that is what it is, in the wrong hands). I'm not sure
what this means for VT-d and Qubes, though, because I haven't managed
to install Libreboot yet.
Looking around the world wide web, I have found this page on VT-d,
which appears to be a special virtualisation mode that has access to
the peripherals:
https://en.wikipedia.org/wiki/IOMMU#Virtualization
Here is more info:
https://en.wikipedia.org/wiki/VT-d#I.2FO_MMU_virtualization_.28AMD-Vi_an
d_Intel_VT-d.29
What I am confused about is that is says that VT-d is "included in
most high-end (but not all) Nehalem and newer Intel processors". This
suggests that my computer, the X200 based on Core 2 Duo processor,
will not run this as VT-d is not supported.
Does Qubes require VT-d, or just rely on it with certain features? At
the moment, my computer seems to work fine with Qubes, and does not
appear to support VT-d, although I am confused about how I would check
this.
Therefore, my question is, would a libre BIOS going to boot Qubes at
all? Perhaps it would boot, but just with fewer features? Does anyone
have any information about this? Once I install it I suppose I could
test it and see.
Thanks again,
D.
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2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=uoTO
-----END PGP SIGNATURE-----