[Bug 2084104] Re: UEFI GRUB2 enforces NX even with a non-NX shim when Secure Boot is disabled
Mate Kukri
2084104 at bugs.launchpad.net
Thu Oct 10 11:21:51 UTC 2024
That sounds even more interesting, can you try set debug=peimage with SB
enabled as well?
The current shim you have installed should be telling GRUB to not
enforce NX, and that was tested to work with SB enabled at least, so I
am bit perplexed what's going on here.
I think the graphics problem is likely your video driver not being SB
signed.
--
You received this bug notification because you are a member of Ubuntu
Foundations Bugs, which is subscribed to grub2 in Ubuntu.
https://bugs.launchpad.net/bugs/2084104
Title:
UEFI GRUB2 enforces NX even with a non-NX shim when Secure Boot is
disabled
Status in grub2 package in Ubuntu:
In Progress
Bug description:
This still needs to be verified, but I have a strong hunch that this
is a bug...
Please see final comments on
https://bugs.launchpad.net/ubuntu/+source/grub2/+bug/2078307
What is likely happening is that shim does not export MokPolicy when
Secure Boot is disabled, thus GRUB decides that it must always enforce
NX.
It might be a more sensible default to never enforce NX if Secure Boot
is off.
The only obvious impact right now is Windows chainloading from GRUB
when Secure Boot is disabled.
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/grub2/+bug/2084104/+subscriptions
More information about the foundations-bugs
mailing list