Ubuntu
nullboot package

24.04 TPM backed FDE regression following snapd 2.62 update

Bug #2062373 reported by Philip Roche
6
This bug affects 1 person
Affects Status Importance Assigned to Milestone
nullboot (Ubuntu)
New
Undecided
Unassigned
Noble
New
Undecided
Unassigned
shim (Ubuntu)
New
Undecided
Unassigned
Noble
New
Undecided
Unassigned
snapd (Ubuntu)
Noble
New
Undecided
Unassigned
Ubuntu ubuntu-24.04

Bug Description

Azure testing has reported an issue following update of the nullboot package from 0.5.0-0ubuntu3 to 0.5.1-0ubuntu1 which I am informed included the vendoring of snapd 2.62.

This has caused a regression and TPM backed FDE instances no longer boot as expected.

See original description
Revision history for this message
Philip Roche (philroche) wrote (last edit ):

This is a 24.04 release blocking bug as it is a regression and results in a failure to boot for TPM backed FDE instances.

description: updated
Brian Murray (brian-murray)
Changed in snapd (Ubuntu Noble):
milestone: none → ubuntu-24.04
Revision history for this message
Mate Kukri (mkukri) wrote :

I've installed desktop FDE from the 24.04 beta ISO. It installed and booted just fine. It also results in an installation with pc-kernel 23.10/stable which contains a shim 15.7-0ubuntu1.

Revision history for this message
Mate Kukri (mkukri) wrote :

Daily ISO also works fine. Noble seems to use the old pc-kernel snap and snapd in the archive wasnt updated for this either, so removing that.

no longer affects: snapd (Ubuntu)
Revision history for this message
Philip Roche (philroche) wrote :

I have removed references to desktop FDE from the description. Thank you for testing.

description: updated
description: updated
description: updated
Revision history for this message
Mate Kukri (mkukri) wrote :

This is just a matter of updating encrypt-cloud-image with the new secboot, please see: https://github.com/canonical/encrypt-cloud-image/pull/22

Revision history for this message
Samuel W (samwein) wrote :

I can confirm that updating from 23.10 to 24.04 also keeps the channel for pc-kernel at 23.10/stable. However the upgrade did install snapd 2.62 (which seems to work fine). Changing the channel for pc-kernel to 24/stable works fine though.

To post a comment you must log in.
This report contains Public information  
Everyone can see this information.
Subscribing...

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.