Hi everyone, I am trying to migrate from lanzaboote to limine secure boot.
I first followed the Disable Secure Boot guide from lanzaboote, with cleaning up the EFI/Linux directory. Then I followed the Secure Boot setup guide for limine from the wiki.
Now that when I reboot the system, I get the warning message Invalid Signature detected twice from UEFI, pressing enter twice will get me to limine bootloader and booting the system without problem.
I then checked with sbctl verify that both EFI/BOOT/BOOTX64.EFI and EFI/systemd/systemd-bootx64.efi are not signed. Moving them out from ESP dose make the warning go away.
But now I wonder is it safe to move those efi executables out from ESP? Or is there any better way to handle this?
Thanks.