package shim-signed 1.34.9+13-0ubuntu2 failed to install/upgrade: installed shim-signed package post-installation script subprocess returned error exit status 30
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
shim-signed (Ubuntu) |
Fix Released
|
High
|
Unassigned | ||
Bionic |
Fix Released
|
Undecided
|
Unassigned |
Bug Description
[Impact]
Users of SecureBoot with DKMS modules can trigger a maintainer script crash by using the buttons presented in the debconf UI, leaving the package in an unconfigured state.
[Test case]
1) Delete /var/lib/
2) Run 'sudo update-
3) Run 'sudo update-
4) When prompted to "enable Secure Boot", hit the Back button.
With no patch applied, the dialog will fall into an invalid state and error out, with the characteristic "return code 30" error as seen in the bug report.
With the patch applied, no Back button will be present -- the user should not be allowed to back up out of the enrolment dialog except by making the conscious decision to enable SecureBoot / enroll a MOK or continue with no changes, as are the two options presented.
[Regression Potential]
Issues to watch out for are any related to password handling (failure to get the password and continue out of the debconf prompts without error), failure to enroll keys, or being unable to use dkms modules after reboot and successful enrolment of the key. Any erroring out of the debconf prompts at install should be investigated as possible regressions from this SRU.
---
during partial update from 17.10 to 18.04
ProblemType: Package
DistroRelease: Ubuntu 18.04
Package: shim-signed 1.34.9+13-0ubuntu2
ProcVersionSign
Uname: Linux 4.13.0-38-generic x86_64
.proc.sys.
ApportVersion: 2.20.9-0ubuntu7
Architecture: amd64
Date: Thu Apr 26 11:31:05 2018
DistributionCha
# This is a distribution channel descriptor
# For more information see http://
canonical-
ErrorMessage: installed shim-signed package post-installation script subprocess returned error exit status 30
InstallationDate: Installed on 2018-03-26 (30 days ago)
InstallationMedia: Ubuntu 16.04 "Xenial" - Build amd64 LIVE Binary 20160624-10:47
MokSBStateRT: 6 0 0 0 1
Python3Details: /usr/bin/python3.6, Python 3.6.5, python3-minimal, 3.6.5-3
PythonDetails: /usr/bin/python2.7, Python 2.7.15rc1, python-minimal, 2.7.15~rc1-1
RelatedPackageV
dpkg 1.19.0.5ubuntu2
apt 1.6.1
SecureBoot: 6 0 0 0 1
SourcePackage: shim-signed
Title: package shim-signed 1.34.9+13-0ubuntu2 failed to install/upgrade: installed shim-signed package post-installation script subprocess returned error exit status 30
UpgradeStatus: No upgrade log present (probably fresh install)
Related branches
- Steve Langasek: Approve
-
Diff: 54 lines (+17/-4)2 files modifieddebian/changelog (+9/-0)
update-secureboot-policy (+8/-4)
tags: | removed: need-duplicate-check |
Changed in shim-signed (Ubuntu): | |
importance: | Undecided → High |
tags: | added: id-5af997fc3ad8c3a41ba1538e |
description: | updated |
description: | updated |
Status changed to 'Confirmed' because the bug affects multiple users.