Source: hw-detect Version: 1.155 Severity: normal Tags: d-i When bookworm is installed on a virtualized system, the non-free-firmware component will be enabled even if this is not needed: firmwares cannot be loaded on virtualized systems because guests usually lack direct access to the hardware. As a workaround I had to preseed: d-i hw-detect/firmware-lookup string never As discussed on IRC with kibi, this is caused by hw-detect trying to install the microcode packages. This is the relevant code: https://salsa.debian.org/installer-team/hw-detect/-/blob/master/hw-detect.post-base-installer.d/50install-firmware#L51 https://salsa.debian.org/installer-team/hw-detect/-/blob/master/hw-detect.finish-install.d/08hw-detect microcode packages should not be installed on virtualized systems because guests never have the privileges required to update the CPU microcode. Otherwise guests could influence the whole system and possibly undermine its security. -- ciao, Marco
Attachment:
signature.asc
Description: PGP signature