[Bug 1170150] Re: vmlinuz/initrd.img symlinks do not point to signed versions on kernel updates of secure boot UEFI machines
Dmitrijs Ledkovs
launchpad at surgut.co.uk
Thu Apr 18 10:41:08 UTC 2013
Which version of ubuntu is this?
How did you check that it points to an unsigned image?
You can use:
sbattach --detach /tmp/signature /vmlinuz && ls -la /tmp/signature
To check if there is signature present in the vmlinuz.
** Changed in: grub2 (Ubuntu)
Status: Confirmed => Incomplete
--
You received this bug notification because you are a member of Ubuntu
Foundations Bugs, which is subscribed to grub2 in Ubuntu.
https://bugs.launchpad.net/bugs/1170150
Title:
vmlinuz/initrd.img symlinks do not point to signed versions on kernel
updates of secure boot UEFI machines
Status in “grub2” package in Ubuntu:
Incomplete
Bug description:
Kernel updates on a UEFI pc with secure boot enabled have the vmlinuz
and initrd.img symlinks updated, but they point to the unsigned
versions of the kernel instead of the signed ones. The pc was set up
with secure boot on, has never been booted with secure boot off, and
no runtime problems have been noted from the wrong symlinks. Having
the links to the signed versions is highly desirable, in order to set
up a USB stick with its own EFI directory to boot Ubuntu, and not have
to worry about changing the USB stick's grub.cfg files.
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/grub2/+bug/1170150/+subscriptions
More information about the foundations-bugs
mailing list