Merge lp:~xnox/utah/uefi into lp:utah
Proposed by
Dimitri John Ledkov
Status: | Merged |
---|---|
Merged at revision: | 871 |
Proposed branch: | lp:~xnox/utah/uefi |
Merge into: | lp:utah |
Diff against target: |
132 lines (+80/-1) 4 files modified
debian/changelog (+1/-0) debian/control (+1/-1) utah/isotest/data/file_list_uefi (+3/-0) utah/isotest/iso_static_validation.py (+75/-0) |
To merge this branch: | bzr merge lp:~xnox/utah/uefi |
Related bugs: |
Reviewer | Review Type | Date Requested | Status |
---|---|---|---|
Max Brustkern (community) | Approve | ||
Review via email: mp+159811@code.launchpad.net |
Description of the change
This is partial support for additional EFI static validation. In particular EFI files are checked to be where expected and SecureBoot signatures are checked on amd64 images. I have tested that precise/raring desktop/server pass on amd64, and that EFI tests are correctly not executed on i386 (as those images do not have EFI support).
There are a couple of additional checks left to do. The EFI capable images also have a GPT partition table with a second EFI partition that should be checked for, and it's not checked for at the moment. I will be doing a separate merge proposal for that.
To post a comment you must log in.
When I run this against a precise desktop amd64 ISO (md5sum f6a647130152f9a cf6d1a7eecc2507 a4) I get: secure_ boot_signatures (__main_ _.TestValidateI SO) python2. 7/unittest/ case.py" , line 332, in run static_ validation. py", line 477, in test_efi_ secure_ boot_signatures subprocess. PIPE) python2. 7/subprocess. py", line 679, in __init__ python2. 7/subprocess. py", line 1259, in _execute_child
DEBUG: Verifying UEFI shim
ERROR: test_efi_
ERROR: Traceback (most recent call last):
File "/usr/lib/
testMethod()
File "./iso_
stderr=
File "/usr/lib/
errread, errwrite)
File "/usr/lib/
raise child_exception
OSError: [Errno 2] No such file or directory
I'm investigating further.