[Bug 1864223] Re: shim 15+1552672080.a4a1fbe-0ubuntu1 fails to load fwupd

Mario Limonciello superm1 at ubuntu.com
Fri Mar 13 20:44:21 UTC 2020


@Steve

Yes; from what I can gather this will definitely require source
modifications to shim.

The concern I have is that beta is the milestone that many more people
start to download and actually start testing Ubuntu images.  With how
widely OEMs support UEFI firmware updates now, I expect a larger influx
of bugs to be reported around failing firmware updates as people load
the beta images on their machines.

If it's not possible to fix this particular issue by the beta milestone
but the shim changes are preferable to keep in, I wonder if it would
make sense to make some modifications to fwupd.  Some alternative idea
proposals:

1) If secure boot is not turned on, don't build the "Linux Firmware Updater" entry to use shim "at all".  Instead BDS would load fwupdx64.efi directly. This would prevent hitting this particular bug if secure boot was turned off.
2) If secure boot is turned on, detect the version of shim on the system at runtime from fwupd and add a blacklist of this particular shim version so that updates are not offered.

Those would both require some source modifications to fwupd, but I think
they're achievable workarounds by beta milestone.

-- 
You received this bug notification because you are a member of Ubuntu
Foundations Bugs, which is subscribed to shim in Ubuntu.
https://bugs.launchpad.net/bugs/1864223

Title:
  shim  15+1552672080.a4a1fbe-0ubuntu1 fails to load fwupd

Status in shim package in Ubuntu:
  Triaged

Bug description:
  The latest shim upload does not seem able to load fwupd. Selecting
  fwupd in BIOS boot menu seems to go directly to grub.

  Probably not a signing issue of fwupd, as we don't get a security
  violation error. Need to investigate more.

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/shim/+bug/1864223/+subscriptions



More information about the foundations-bugs mailing list