[Bug 1689687] Re: pass validation if shim protocol is not installed
Mathieu Trudel-Lapierre
mathieu.tl at gmail.com
Wed May 10 02:15:50 UTC 2017
All this can be trivially done by disabling
debian/patches/linuxefi_require_shim.patch. I got some historical
rationale from Colin already as to why it was added (and marked
temporary at the time); and it seems to me like we can just remove it.
As for a previous question about whether this would affect arm64: it
would not; this is only for i386 (well, x86_64-efi, since that's all we
support).
** Changed in: grub2 (Ubuntu Artful)
Status: New => In Progress
--
You received this bug notification because you are a member of Ubuntu
Foundations Bugs, which is subscribed to grub2 in Ubuntu.
https://bugs.launchpad.net/bugs/1689687
Title:
pass validation if shim protocol is not installed
Status in grub2 package in Ubuntu:
In Progress
Status in grub2 source package in Xenial:
New
Status in grub2 source package in Yakkety:
New
Status in grub2 source package in Zesty:
New
Status in grub2 source package in Artful:
In Progress
Bug description:
GRUB currently fails SecureBoot validation (ie. calls to
grub_linuxefi_secure_validate() fail) if shim's protocol is not
installed when that function is called.
This currently breaks some kernel features relying on starting in the
EFI stub code (ie. the kernel being loaded as an EFI binary); and
instead falls back to the 'linux' command instead of 'linuxefi'.
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/grub2/+bug/1689687/+subscriptions
More information about the foundations-bugs
mailing list