[Bug 1921539] [NEW] Add support for SBAT
Mario Limonciello
1921539 at bugs.launchpad.net
Fri Mar 26 18:12:48 UTC 2021
Public bug reported:
[Impact]
Future releases of shim will require that EFI binaries that are chainloaded include an SBAT region. fwupd in bionic does not currently contain this region.
[Test Case]
Verify that a shim that checks for sbat region can boot the fwupd with sbat region.
[Regression Potential]
This is moving to a new stable release in each of the series which is in bug fix only mode. The sbat region is the only "feature" that has been backported to this series in over a year.
** Affects: fwupd (Ubuntu)
Importance: Undecided
Status: New
** Affects: fwupd-signed (Ubuntu)
Importance: Undecided
Status: New
** Affects: fwupd (Ubuntu Bionic)
Importance: Undecided
Status: New
** Affects: fwupd-signed (Ubuntu Bionic)
Importance: Undecided
Status: New
** Affects: fwupd (Ubuntu Focal)
Importance: Undecided
Status: New
** Affects: fwupd-signed (Ubuntu Focal)
Importance: Undecided
Status: New
** Affects: fwupd (Ubuntu Groovy)
Importance: Undecided
Status: New
** Affects: fwupd-signed (Ubuntu Groovy)
Importance: Undecided
Status: New
** Affects: fwupd (Ubuntu Hirsute)
Importance: Undecided
Status: New
** Affects: fwupd-signed (Ubuntu Hirsute)
Importance: Undecided
Status: New
** Description changed:
[Impact]
Future releases of shim will require that EFI binaries that are chainloaded include an SBAT region. fwupd in bionic does not currently contain this region.
[Test Case]
Verify that a shim that checks for sbat region can boot the fwupd with sbat region.
[Regression Potential]
- This is moving to a new stable release in the 1.2.x series which is in bug fix only mode. The sbat region is the only "feature" that has been backported to this series in over a year.
+ This is moving to a new stable release in each of the series which is in bug fix only mode. The sbat region is the only "feature" that has been backported to this series in over a year.
** Also affects: fwupd (Ubuntu Groovy)
Importance: Undecided
Status: New
** Also affects: fwupd (Ubuntu Focal)
Importance: Undecided
Status: New
** Also affects: fwupd (Ubuntu Bionic)
Importance: Undecided
Status: New
** Also affects: fwupd (Ubuntu Hirsute)
Importance: Undecided
Status: New
--
You received this bug notification because you are a member of Ubuntu
Foundations Bugs, which is subscribed to fwupd in Ubuntu.
https://bugs.launchpad.net/bugs/1921539
Title:
Add support for SBAT
Status in fwupd package in Ubuntu:
New
Status in fwupd-signed package in Ubuntu:
New
Status in fwupd source package in Bionic:
New
Status in fwupd-signed source package in Bionic:
New
Status in fwupd source package in Focal:
New
Status in fwupd-signed source package in Focal:
New
Status in fwupd source package in Groovy:
New
Status in fwupd-signed source package in Groovy:
New
Status in fwupd source package in Hirsute:
New
Status in fwupd-signed source package in Hirsute:
New
Bug description:
[Impact]
Future releases of shim will require that EFI binaries that are chainloaded include an SBAT region. fwupd in bionic does not currently contain this region.
[Test Case]
Verify that a shim that checks for sbat region can boot the fwupd with sbat region.
[Regression Potential]
This is moving to a new stable release in each of the series which is in bug fix only mode. The sbat region is the only "feature" that has been backported to this series in over a year.
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/fwupd/+bug/1921539/+subscriptions
More information about the foundations-bugs
mailing list