[Bug 1600224] Re: shim-signed updates break self signed UEFI systems
Steve Langasek
steve.langasek at canonical.com
Fri Jul 8 20:12:02 UTC 2016
The shim-signed package is the package that delivers the Microsoft-
signed shim to the user's system. I certainly agree that we can be more
proactive about detecting the case where your system will be rendered
unbootable. However, it seems to me that the obvious workaround for
this bug is to not install the shim-signed package on a system which
doesn't need it (or to remove this package when configuring your self-
signed Secure Boot keys).
** Changed in: shim-signed (Ubuntu)
Importance: Undecided => Low
--
You received this bug notification because you are a member of Ubuntu
Foundations Bugs, which is subscribed to shim-signed in Ubuntu.
https://bugs.launchpad.net/bugs/1600224
Title:
shim-signed updates break self signed UEFI systems
Status in shim-signed package in Ubuntu:
New
Bug description:
Updating shim-signed on a self signed UEFI platform without Microsoft
keys is rendered unbootable. An example is a QEMU instance that is
self signed.
Isn't there a way to notify the platform owner that they should resign
their UEFI utilities before rebooting ?
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/shim-signed/+bug/1600224/+subscriptions
More information about the foundations-bugs
mailing list