package shim-signed 1.34.9.1+13-0ubuntu2 failed to install/upgrade: installed shim-signed package post-installation script subprocess returned error exit status 1
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
grub2 (Ubuntu) |
Incomplete
|
Undecided
|
Unassigned |
Bug Description
Description: Ubuntu 18.04 LTS
Release: 18.04
shim-signed:
Installed: 1.34.9.
Candidate: 1.34.9.
Version table:
*** 1.34.9.
500 http://
100 /var/lib/
1.
500 http://
Should be upgrading without issues from software updater.
Failed to upgrade/install
ProblemType: Package
DistroRelease: Ubuntu 18.04
Package: shim-signed 1.34.9.
ProcVersionSign
Uname: Linux 4.15.0-22-generic x86_64
NonfreeKernelMo
.proc.sys.
ApportVersion: 2.20.9-0ubuntu7.2
Architecture: amd64
Date: Thu Jul 5 08:25:52 2018
EFIBootMgr:
BootCurrent: 0001
Timeout: 2 seconds
BootOrder: 0001
Boot0000 Windows Boot Manager HD(1,GPT,
Boot0001* ubuntu HD(1,GPT,
EFITables:
juil. 03 08:49:52 tagstev kernel: efi: EFI v2.40 by American Megatrends
juil. 03 08:49:52 tagstev kernel: efi: ACPI=0x97995000 ACPI 2.0=0x97995000 SMBIOS=0xf0000 ESRT=0x9a268598
juil. 03 08:49:52 tagstev kernel: secureboot: Secure boot could not be determined (mode 0)
juil. 03 08:49:52 tagstev kernel: esrt: Reserving ESRT space from 0x000000009a268598 to 0x000000009a2685d0.
ErrorMessage: installed shim-signed package post-installation script subprocess returned error exit status 1
InstallationDate: Installed on 2018-06-06 (28 days ago)
InstallationMedia: Ubuntu 18.04 LTS "Bionic Beaver" - Release amd64 (20180426)
Python3Details: /usr/bin/python3.6, Python 3.6.5, python3-minimal, 3.6.5-3
PythonDetails: /usr/bin/python2.7, Python 2.7.15rc1, python-minimal, 2.7.15~rc1-1
RelatedPackageV
dpkg 1.19.0.5ubuntu2
apt 1.6.1
SecureBoot: 6 0 0 0 0
SourcePackage: shim-signed
Title: package shim-signed 1.34.9.
UpgradeStatus: No upgrade log present (probably fresh install)
tags: | removed: need-duplicate-check |
The error in your log is:
grub-install: error: attempt to install to encrypted disk without cryptodisk enabled. Set `GRUB_ENABLE_ CRYPTODISK= y' in file `/etc/default/ grub'.
dpkg: error processing package shim-signed (--configure):
installed shim-signed package post-installation script subprocess returned error exit status 1
Your attached df output confirms that you have a separate ESP mounted at /boot/efi, but that your root is on a (presumably encrypted) LVM volume, and you do not have a separate unencrypted /boot partition. The question is, how did you only run into this error on upgrade? The SecureBoot-signed EFI grub has never included cryptodisk support, which means it would only ever boot if you had an unencrypted /boot since it would be unable to read the kernel from the encrypted volume. I see that your system has SecureBoot disabled, so that would not directly block you from booting, however the error message in grub is also not new so I don't understand how you got your system into such a state that you are getting the error message on upgrade.