Shim apparently fails to run fwupd64 (hirsute regression?)
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
shim (Fedora) |
Unknown
|
Undecided
|
|||
shim (Ubuntu) |
Fix Released
|
Undecided
|
Unassigned | ||
Xenial |
Fix Released
|
Undecided
|
Unassigned | ||
Bionic |
Fix Released
|
Undecided
|
Unassigned | ||
Focal |
Fix Released
|
Undecided
|
Unassigned | ||
Hirsute |
Fix Released
|
Undecided
|
Unassigned | ||
shim-signed (Ubuntu) |
Fix Released
|
Undecided
|
Unassigned | ||
Xenial |
Fix Released
|
Undecided
|
Unassigned | ||
Bionic |
Fix Released
|
Undecided
|
Unassigned | ||
Focal |
Fix Released
|
Undecided
|
Unassigned | ||
Hirsute |
Fix Released
|
Undecided
|
Unassigned |
Bug Description
[Impact]
fwupd does not load, can't upgrade firmware
[Test plan]
Try reinstall a firmware upgrade, make sure fwupd loads. Make sure you use secure boot. It's OK testing this in one release, as the fix is entirely shim-side and it's binary-copied.
[Where problems could occur]
We might fail to boot from BIOS generated boot entries, as in bug 1937115
[Original bug report]
I am running hirsute on Thinkpad X1 Carbon gen 7. Fwupdmgr used to work on groovy. Now, fwupdmgr detects new firmware, successfully places the .cap file in /boot/efi/
Same when I use BIOS boot menu. There are entries for "ubuntu" and for "Linux firmware updater", but selecting any of them boots grub.
After boot, EFI "BootCurrent" points to the updater entry, though it apparently did not run!
$ efibootmgr -v|head
BootCurrent: 0002
Timeout: 0 seconds
BootOrder: 0001,0019,
Boot0001* ubuntu HD(1,GPT,
Boot0002* Linux-Firmware-
Boot0010 Setup FvFile(
Boot0011 Boot Menu FvFile(
Boot0012 Diagnostic Splash Screen FvFile(
Boot0013 Lenovo Diagnostics FvFile(
Boot0014 Regulatory Information FvFile(
These sympptoms match precisely a previous bug:
https:/
Could it be that the fix introduced then was lost, maybe due to signing schedule?
There is a github ticket https:/
My versions of related packages:
shim-signed:
Installed: 1.47+15.4-0ubuntu2
fwupd-signed:
Installed: 1.38+1.5.8-0ubuntu1
grub-efi-
Installed: 1.169+2.
ProblemType: Bug
DistroRelease: Ubuntu 21.04
Package: shim-signed 1.47+15.4-0ubuntu2
ProcVersionSign
Uname: Linux 5.11.0-17-generic x86_64
.proc.sys.
ApportVersion: 2.20.11-0ubuntu65
Architecture: amd64
CasperMD5CheckR
CurrentDesktop: ubuntu:GNOME
Date: Mon May 24 23:28:40 2021
InstallationDate: Installed on 2020-01-02 (508 days ago)
InstallationMedia: Ubuntu 19.10 "Eoan Ermine" - Alpha amd64 (20190802)
SecureBoot: 6 0 0 0 1
SourcePackage: shim-signed
UpgradeStatus: Upgraded to hirsute on 2021-02-22 (91 days ago)
tags: | added: rls-hh-incoming |
Changed in fwupd (Ubuntu): | |
status: | New → Confirmed |
tags: | added: fr-1424 |
tags: | removed: rls-hh-incoming |
Changed in shim-signed (Ubuntu): | |
status: | Confirmed → In Progress |
Changed in shim-signed (Ubuntu Hirsute): | |
status: | New → In Progress |
Changed in shim (Ubuntu): | |
status: | New → Fix Committed |
description: | updated |
description: | updated |
tags: |
added: verification-done-hirsute removed: verification-needed-hirsute |
Changed in shim-signed (Ubuntu Hirsute): | |
status: | In Progress → Fix Committed |
no longer affects: | fwupd (Ubuntu Hirsute) |
no longer affects: | fwupd (Ubuntu) |
no longer affects: | shim (Fink) |
Changed in shim (Fedora): | |
importance: | Unknown → Undecided |
status: | Unknown → Confirmed |
Changed in shim (Fedora): | |
status: | Confirmed → Unknown |
Status changed to 'Confirmed' because the bug affects multiple users.