shim: set second stage not work
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
shim (Ubuntu) |
Fix Released
|
High
|
Mathieu Trudel-Lapierre | ||
Trusty |
Fix Released
|
Undecided
|
Unassigned | ||
Xenial |
Fix Released
|
Undecided
|
Unassigned | ||
shim-signed (Ubuntu) |
Fix Released
|
High
|
Mathieu Trudel-Lapierre | ||
Trusty |
Fix Released
|
Undecided
|
Unassigned | ||
Xenial |
Fix Released
|
Undecided
|
Unassigned | ||
Yakkety |
Fix Released
|
Undecided
|
Unassigned |
Bug Description
[Impact]
Some firmwares may fail to populate LoadOptions in EFI in a way that shim understands, including only the extra options rather than the full BootEntry.
[Test case]
Attempt to boot a system on a BootEntry that requires extra options, such as when running firmware updates via fwupdate.
[Regression Potential]
The information passed by some firmwares may look as though it is a simple UCS-2 string although it contain extra information, and thus cause a failure to boot due to unrecognized LoadOptions when shim attempts to boot. The default boot process does not include LoadOptions at all, but this may adversely affect fwupdate or running MokManager.
----
Using the applications such as fwupdate and efibootmgr to set the device path for the second stage path is not working on some platforms.
The second stage set is not working after commit
3322257e611e200
for those which load option only have one string.
This is due to some versions of BDS, on loadoption we only get:
00000000 5c 00 66 00 77 00 75 00 70 00 78 00 36 00 34 00 |\.f.w.u.p.x.6.4.|
00000010 2e 00 65 00 66 00 69 00 00 00 |..e.f.i...|
0000001a
Related branches
Changed in shim (Ubuntu): | |
status: | Fix Committed → Triaged |
importance: | Undecided → High |
tags: | added: rls-y-incoming |
Changed in shim (Ubuntu): | |
status: | Incomplete → In Progress |
assignee: | nobody → Mathieu Trudel-Lapierre (cyphermox) |
Changed in shim-signed (Ubuntu): | |
status: | New → In Progress |
importance: | Undecided → High |
assignee: | nobody → Mathieu Trudel-Lapierre (cyphermox) |
description: | updated |
tags: |
added: verification-done removed: verification-done-trusty verification-done-xenial verification-done-yakkety verification-needed |
no longer affects: | shim-signed (Ubuntu Xenial) |
no longer affects: | shim-signed (Ubuntu Trusty) |
Changed in shim (Ubuntu Trusty): | |
status: | New → Fix Released |
Changed in shim (Ubuntu Xenial): | |
status: | New → Fix Released |
Changed in shim-signed (Ubuntu Trusty): | |
status: | New → Fix Released |
Changed in shim-signed (Ubuntu Xenial): | |
status: | New → Fix Released |
Sent out a patch fixing the set second stage function for loadoption.
And have been accepted on https:/ /github. com/rhinstaller /shim