UEFI shim verification fails (PKCS7 verification failed) with the images of 20131003 against the microsoft-uefica-public. keys present in http://bazaar.launchpad.net/~ubuntu-bugcontrol/qa-regression-testing/master/files/head:/notes_testing/secure-boot/keys/
The following is the failure results (http://bazaar.launchpad.net/~utah/utah/dev/view/head:/utah/isotest/iso_static_validation.py) DEBUG: Using iso at: /tmp/utah-saucy-server-amd64.iso INFO: Preparing image: /tmp/utah-saucy-server-amd64.iso INFO: /tmp/utah-saucy-server-amd64.iso is locally available as /tmp/utah-saucy-server-amd64.iso INFO: Getting image type of /tmp/utah-saucy-server-amd64.iso DEBUG: bsdtar list command: bsdtar -t -f /tmp/utah-saucy-server-amd64.iso INFO: Image type is: server DEBUG: Using normal image DEBUG: bsdtar list command: bsdtar -t -v -f /tmp/utah-saucy-server-amd64.iso ./.disk/info DEBUG: bsdtar extract command: bsdtar -x -f /tmp/utah-saucy-server-amd64.iso -O .disk/info INFO: Arch is: amd64 INFO: Series is saucy DEBUG: Standard name for this iso is: saucy-server-amd64.iso DEBUG: Generating verification certificates DEBUG: Extracting UEFI boot and kernel images DEBUG: bsdtar list command: bsdtar -t -v -f /tmp/utah-saucy-server-amd64.iso ./EFI/BOOT/BOOTx64.EFI DEBUG: bsdtar extract command: bsdtar -x -f /tmp/utah-saucy-server-amd64.iso -O EFI/BOOT/BOOTx64.EFI DEBUG: bsdtar list command: bsdtar -t -v -f /tmp/utah-saucy-server-amd64.iso ./EFI/BOOT/grubx64.efi DEBUG: bsdtar extract command: bsdtar -x -f /tmp/utah-saucy-server-amd64.iso -O EFI/BOOT/grubx64.efi DEBUG: bsdtar list command: bsdtar -t -v -f /tmp/utah-saucy-server-amd64.iso ./install/vmlinuz DEBUG: bsdtar extract command: bsdtar -x -f /tmp/utah-saucy-server-amd64.iso -O install/vmlinuz DEBUG: Verifying UEFI shim ERROR: test_efi_secure_boot_signatures (__main__.TestValidateISO) ERROR: Traceback (most recent call last): File "/usr/lib/python2.7/unittest/case.py", line 327, in run testMethod() File "/usr/share/utah/isotest/iso_static_validation.py", line 481, in test_efi_secure_boot_signatures self.assertEqual(stdout, 'Signature verification OK\n') File "/usr/lib/python2.7/unittest/case.py", line 511, in assertEqual assertion_func(first, second, msg=msg) File "/usr/lib/python2.7/unittest/case.py", line 504, in _baseAssertEqual raise self.failureException(msg) AssertionError: 'PKCS7 verification failed\nSignature verification failed\n' != 'Signature verification OK\n'
UEFI shim verification fails (PKCS7 verification failed) with the images of 20131003 against the microsoft- uefica- public. keys present in bazaar. launchpad. net/~ubuntu- bugcontrol/ qa-regression- testing/ master/ files/head: /notes_ testing/ secure- boot/keys/
http://
The following is the failure results (http:// bazaar. launchpad. net/~utah/ utah/dev/ view/head: /utah/isotest/ iso_static_ validation. py) saucy-server- amd64.iso saucy-server- amd64.iso saucy-server- amd64.iso is locally available as /tmp/utah- saucy-server- amd64.iso saucy-server- amd64.iso saucy-server- amd64.iso saucy-server- amd64.iso ./.disk/info saucy-server- amd64.iso -O .disk/info amd64.iso saucy-server- amd64.iso ./EFI/BOOT/ BOOTx64. EFI saucy-server- amd64.iso -O EFI/BOOT/ BOOTx64. EFI saucy-server- amd64.iso ./EFI/BOOT/ grubx64. efi saucy-server- amd64.iso -O EFI/BOOT/ grubx64. efi saucy-server- amd64.iso ./install/vmlinuz saucy-server- amd64.iso -O install/vmlinuz secure_ boot_signatures (__main_ _.TestValidateI SO) python2. 7/unittest/ case.py" , line 327, in run utah/isotest/ iso_static_ validation. py", line 481, in test_efi_ secure_ boot_signatures assertEqual( stdout, 'Signature verification OK\n') python2. 7/unittest/ case.py" , line 511, in assertEqual func(first, second, msg=msg) python2. 7/unittest/ case.py" , line 504, in _baseAssertEqual eption( msg)
DEBUG: Using iso at: /tmp/utah-
INFO: Preparing image: /tmp/utah-
INFO: /tmp/utah-
INFO: Getting image type of /tmp/utah-
DEBUG: bsdtar list command: bsdtar -t -f /tmp/utah-
INFO: Image type is: server
DEBUG: Using normal image
DEBUG: bsdtar list command: bsdtar -t -v -f /tmp/utah-
DEBUG: bsdtar extract command: bsdtar -x -f /tmp/utah-
INFO: Arch is: amd64
INFO: Series is saucy
DEBUG: Standard name for this iso is: saucy-server-
DEBUG: Generating verification certificates
DEBUG: Extracting UEFI boot and kernel images
DEBUG: bsdtar list command: bsdtar -t -v -f /tmp/utah-
DEBUG: bsdtar extract command: bsdtar -x -f /tmp/utah-
DEBUG: bsdtar list command: bsdtar -t -v -f /tmp/utah-
DEBUG: bsdtar extract command: bsdtar -x -f /tmp/utah-
DEBUG: bsdtar list command: bsdtar -t -v -f /tmp/utah-
DEBUG: bsdtar extract command: bsdtar -x -f /tmp/utah-
DEBUG: Verifying UEFI shim
ERROR: test_efi_
ERROR: Traceback (most recent call last):
File "/usr/lib/
testMethod()
File "/usr/share/
self.
File "/usr/lib/
assertion_
File "/usr/lib/
raise self.failureExc
AssertionError: 'PKCS7 verification failed\nSignature verification failed\n' != 'Signature verification OK\n'