KB5012170 fails to install on Win11 host

C.G.B. Spender

C.G.B. Spender

Member
Nov 17, 2019
27
0
21
Hi,
as the title says, this update gets to 20% and then fails with error 0x800f0922. The update itself does something UEFI related (https://support.microsoft.com/en-us...t-9-2022-72ff5eed-25b4-47c7-be28-c42bd211bb15). Update installs without issues on physical W11 hosts.

Is there any setting I need to change or is it just a symptom of it being a vm? Functionality doesn't seem affected, I'd just like the error go away. Been fully updating this windows vm since Win7, don't wanna lose my streak now :)

pve: PVE 7.2-7,
vm: pc-q35-6.2 Win11 x64 pro 21H2, OS Build 22000.856, Windows Feature Experience Pack 1000.22000.586.0
 
I think we just have to wait. I think MS are aware of an issue but whether it is to do with our VM Bios or not we wll have to see.
 
I would think it has to do with the vm bios. The same update installed ok on 10th of August on 2 desktops and 1 laptop with win11.
 
Having the same issue on one of my Win10 VMs. It uses SeaBIOS though, not UEFI.

Interestingly, I have two other VMs on a different host where the update installs without problem. Not sure which part of the setup could be the culprit and haven't had time to test yet.

Correction: The affected VM uses UEFI, the unaffected VMs use SeaBIOS.
 
Last edited:
I can add to the list of someone having the same exact problem as well on Windows 10. I am booting UEFI
 

Attachments

  • KB5012170 Problem.png
    KB5012170 Problem.png
    24.1 KB · Views: 41
ITT said:
Your EFI-Disk must have "Pre-Enrolled Keys" enabled.
Click to expand...
Thank you. That seems to have done the trick. I deleted my EFI disk and re-added it with pre-enrolled keys enabled.
The update installed immediately.

I don't think Secure Boot was enabled before this change, but it certainly is now.
 
Last edited:
  • Like
Reactions: coldstorage, zaphyre and ITT
nullify said:
Thank you. That seems to have done the trick. I deleted my EFI disk and re-added it with pre-enrolled keys enabled.
The update installed immediately.

I don't think Secure Boot was enabled before this change, but it certainly is now.
Click to expand...
How exactly do you enable that option. I added the disk and there was no option to have pre-enrolled keys. In addition, I only saw this when creating a new VM.
 
LDS_Cyber said:
How exactly do you enable that option. I added the disk and there was no option to have pre-enrolled keys. In addition, I only saw this when creating a new VM.
Click to expand...

It's right in the interface, when you go to Add->EFI Disk.
 

Attachments

  • 1660694047666.png
    1660694047666.png
    66.6 KB · Views: 105
  • Like
Reactions: cvocvo and ITT
Resolved the issue here on a Windows Server 2019: install of KB5012170 failed at 99%. Then I solved the problem this way:
  1. Poweroff Windows server 2019 VM
  2. Detach EFI disk
  3. Add a new one EFI DISK with "Pre-Enrolled Keys"
  4. Boot VM
  5. Start Windows Update
  6. Install pending update
The update installed successfully.
Thanks to everybody!
 
Last edited:
  • Like
Reactions: loomes, C.G.B. Spender, inno-forum and 1 other person
I am experiencing the same issue, though my VM uses a physical NVMe boot drive (no virtual disks attached either). Any ideas on what the solution would be in my case?
 
Hello everyone!

After following the steps suggested by macpip, the update was successfully installed, but Red Hat QXL controller stopped working after the reboot. It appears as an unsigned driver in device manager.

Does anyone know what could be the cause and how to fix it? Currently only the generic graphic driver is available and the resolution has been locked to 1024x768

PVE 7.2-7
VM Windows 11 Home 21H2 22000.856

Best regards
 
Last edited:
0x110011 said:
I am experiencing the same issue, though my VM uses a physical NVMe boot drive (no virtual disks attached either). Any ideas on what the solution would be in my case?
Click to expand...
Running into the same issue; I'm passing through an NVME drive as PCIE.
I tried installing the update manually with the new EFI disk as suggested above, but I'm still getting an install error 1661800447915.png

Edit: I just had to admit defeat first; removing and re-adding my EFI disk per @macpip 's instructions worked on Server 2019.
 
Last edited:
This did not work here on Windows10. If i change this, i can see only the windows repair screen. I have also changed for test:
  • Hotplug
  • Qemu Version
  • q35
  • Display
But Windows10 will not start anymore.

Code: 
agent: 1,fstrim_cloned_disks=1
bios: ovmf
boot: order=scsi0
cores: 6
description:
efidisk0: SSD-vmdata:vm-139-disk-0,efitype=4m,pre-enrolled-keys=1,size=1M
hotplug: disk,network,usb
machine: pc-q35-6.0
memory: 6144
name: build-windows-10-64
net0: virtio=91:1F:9C:35:AF:C0,bridge=vmbr0,firewall=1,tag=11
numa: 1
onboot: 1
ostype: win10
parent: vor_start
rng0: source=/dev/urandom
sata0: none,media=cdrom
sata1: none,media=cdrom
scsi0: SSD-vmdata:vm-139-disk-1,discard=on,size=100G,ssd=1
scsihw: virtio-scsi-pci
smbios1: uuid=d3a18ea2-d8e4-4940-bff1-bc169a57bf04
sockets: 1
 
Hi,

fireon said:
This did not work here on Windows10. If i change this, i can see only the windows repair screen.
Click to expand...
had the same problem on my windows boxes but server 2019-2022.
I fixed it with a reset of the secure boot keys.

Go into th UEFI Shell when the VM starts then Device Manager -> Secure Boot Configuration -> Reset Secure Boot Keys -> Save and continue booting.

Instruction obviously with no warranty because don't know what other things it effects but for me it worked - so make a backup first.

Greetz
 
  • Like
Reactions: fireon
You must log in or register to reply here.

About

The Proxmox community has been around for many years and offers help and support for Proxmox VE, Proxmox Backup Server, and Proxmox Mail Gateway.
We think our community is one of the best thanks to people like you!

Quick Navigation

Home Get Subscription Wiki Downloads Proxmox Customer Portal About

Get your subscription!

The Proxmox team works very hard to make sure you are running the best software and getting stable updates and security enhancements, as well as quick enterprise support. Tens of thousands of happy customers have a Proxmox subscription. Get yours easily in our online shop.

Buy now!
Community platform by XenForo® © 2010-2024 XenForo Ltd.
Top Bottom
Back