Check error with 20.04-desktop ISO

Bug #1888033 reported by Lau
This bug affects 2 people
Affects Status Importance Assigned to Milestone
Ubuntu CD Images
Dimitri John Ledkov

Bug Description

When using the ISO for Ubuntu 20.04 Desktop from bootable USB, the following message appears briefly at the end of the media check during boot.

Check finished: errors found in 1 files! You might encounter errors.

I checked the SHA256SUM (from here - for ISO, I tried creating the bootable USB with 3 different thumbdrives (2 different brands), and used either the Startup Disk Creator or Disks but the error does not go away.

The file `md5sum.txt` in the ISO contains the expected MD5 checksums every file so I checked all of them.

The file `./boot/grub/efi.img` in the ISO is the one file with a mismatching MD5 sum.

This means that either the `md5sum.txt` in the ISO is incorrect, or that file was tampered with before making it to the ISO.

Lau (lgautier)
description: updated
Revision history for this message
Ubuntu Foundations Team Bug Bot (crichton) wrote :

Thank you for taking the time to report this bug and helping to make Ubuntu better. It seems that your bug report is not filed about a specific source package though, rather it is just filed against Ubuntu in general. It is important that bug reports be filed about source packages so that people interested in the package can find the bugs about it. You can find some hints about determining what package your bug might be about at You might also ask for help in the #ubuntu-bugs irc channel on Freenode.

To change the source package that this bug is filed about visit and add the package name in the text box next to the word Package.

[This is an automated message. I apologize if it reached you inappropriately; please just reply to this message indicating so.]

tags: added: bot-comment
Revision history for this message
Lau (lgautier) wrote :

There was follow-up in the question (I first created this as a question):

The file efi.img in the USB appears to be modified at boot time (Kai suggests that it is modified by the BIOS), which leads to a failed check (different checksum than expected for that file).

Revision history for this message
Kai Kasurinen (kai-kasurinen) wrote :

maybe duplicate of bug 1832425

Changed in ubuntu-cdimage:
status: New → Confirmed
Changed in ubuntu:
status: New → Confirmed
importance: Undecided → Critical
tags: added: focal
Revision history for this message
Thinking Torus (thinking-torus) wrote :

It might be helpful to take a closer look to see exactly what has changed.

For example, do a binary comparison:
$ cmp -bl old/efi.img new/efi/img

Or loop mount the img files and examine the contents:
$ mkdir mntold
$ mkdir mntnew
$ sudo mount -o loop old/efi.img mntold
$ sudo mount -o loop new/efi.img mntnew

mount may want to make its own changes so make sure the img files are writable.

Changed in ubuntu:
assignee: nobody → Dimitri John Ledkov (xnox)
Revision history for this message
Dimitri John Ledkov (xnox) wrote :

I have downloaded 20.04.1 desktop media, validated SHA256.gpg signature and SHA256 checksum, mounted the iso.

The check succeeded for me both using md5sum -c md5sum.txt and using casper-md5check /mnt /mnt/md5sum.txt.

I also mounted p1 of the iso, and executed the checks again and they too were successful.

Please try again using 20.04.1 iso, and please provide instructions on how to reproduce this, and please let me know how you booted the iso after downloading it.

Changed in ubuntu:
status: Confirmed → Invalid
Changed in ubuntu-cdimage:
status: Confirmed → Invalid
Revision history for this message
Kai Kasurinen (kai-kasurinen) wrote :

I Don't know real hardware, but on qemu:
qemu-system-x86_64 -bios /usr/share/qemu/OVMF.fd -drive media=disk,file=ubuntu-20.04.1-desktop-amd64.iso

"-bios will only provide one big read-only ROM. In that case OVMS stores the EFI variables in /boot/EFI/NvVars."

Revision history for this message
Lau (lgautier) wrote :

As explained in the thread, the issue is not with the files in the original iso but with the fact that the efi.img is modified during the boot process, making the subsequent checksum fail.

This seems marked as invalid without looking at the issue.

Revision history for this message
Lau (lgautier) wrote :

Initially this was a question ( but I invalidated it when this was reproduced by someone else and it seemed like a real bug.

The checksum test were already reported there, but we also came to the conclusion that it is modified during the boot process.

Revision history for this message
Thinking Torus (thinking-torus) wrote :

This certainly looks like a hardware dependent issue.

Just to add another data point (not 20.04):

Since you have the hardware that CAN reproduce the issue, why not do a little digging to see what has changed as I suggested above and how it's related to your hardware?

I have read you comment and I don't think excluding efi.img from the checks is a good idea. What if the modification is a sign of some advanced malware trying to hop from one computer to another? We certainly don't want to miss that!

On the other hand, if some hardware platform wants to make the modification for legit reasons and in predictable ways, we can certainly allow that. But we can't make a white list unless we know what to white list.

Revision history for this message
Thinking Torus (thinking-torus) wrote :

I just realized Kai has already indirectly referenced the link I mentioned.

These are two new (old) data points:
Affecting ubuntu 18.10 Desktop
Affecting ubuntu-12.04.3-server-amd64.iso

Revision history for this message
Steve Langasek (vorlon) wrote :

I have double-checked that there is nothing in the boot configuration that is configured to modify the contents of efi.img (which contains only the signed EFI executables - modification of which would cause the image to subsequently fail to boot). Any modification of this image must be coming from outside, which is not something we can account for.

Revision history for this message
Benjamin Bock (crapshit) wrote :

Today I had the same exact problem.
I found out that after creating on Windows 10 with win32diskimager an usb boot stick with Ubuntu 20.04, I had a called "writable" partition on that stick also. That efi image file you mentioned was the only file with a different md5sum.
After that I created one more time a boot stick, but now on Ubuntu 18.04 with dd and now I had no issues anymore.
I hope this helps.


Revision history for this message
topsail (dp-w) wrote :

I have also just experienced this same issue when installing xubuntu 20.04.1. Let me know if I can be of any assistance!

Revision history for this message
Willi Hahn (wijo) wrote :

Me too, Machine: Lenovo Think-book 14-IIL. Win 10 pre-installed. Since a couple of days I got permanently this error. Installing Ubuntu 20.04.1 anyway my machine became very unpredictable. Rebooting of either system (Win or Ubuntu) ended in a lot of error messages. I had to power off and then try to boot again. My work-around was:
Install Ubuntu 18.04. This could be done without any problems. And then, I upgraded to Ubuntu 20.04.1 and so far as to today I finally got a stable system.

Revision history for this message
Игорь (vlzvoice) wrote :

Same for me. I can't install kubuntu 20.04.2 with the same problem.

To post a comment you must log in.
This report contains Public information  Edit
Everyone can see this information.

Other bug subscribers

Related questions