Public bug reported:
Description: zipl: Add secure boot trailer
Symptom: Secure boot of Linux will no longer be possible with an upcoming
IBM Z firmware update.
Problem: New IBM Z firmware requires all signed boot images to contain a
trailing data block with a specific format.
Solution: Add trailing data block to the zipl stage 3 boot loader image.
Reproduction: Apply latest firmware, perform IPL with Secure Boot enabled.
Fix: Available upstream with
Upstream-ID: 5768d55a08e163f718bd87498b9e763687ae7137
Upstream-Description:
zipl/boot: add secure boot trailer
This patch enhances the zipl stage3 loader image adding a trailer
as
required for secure boot by future firmware versions.
Note: with the change in this patch the padding via objcopy
command line
options is replaced by padding via linker script directives with
the
same effect.
Signed-off-by: Peter Oberparleiter <[email protected]>
Signed-off-by: Jan Hoeppner <[email protected]>
Signed-off-by: Peter Oberparleiter <[email protected]>
** Affects: linux (Ubuntu)
Importance: Undecided
Assignee: Skipper Bug Screeners (skipper-screen-team)
Status: New
** Tags: architecture-s39064 bugnameltc-200453 severity-high
targetmilestone-inin---
** Tags added: architecture-s39064 bugnameltc-200453 severity-high
targetmilestone-inin---
** Changed in: ubuntu
Assignee: (unassigned) => Skipper Bug Screeners (skipper-screen-team)
** Package changed: ubuntu => linux (Ubuntu)
--
You received this bug notification because you are a member of Kernel
Packages, which is subscribed to linux in Ubuntu.
https://bugs.launchpad.net/bugs/1996069
Title:
[UBUNTU 20.04] zipl: Add secure boot trailer (s390-tools part)
Status in linux package in Ubuntu:
New
Bug description:
Description: zipl: Add secure boot trailer
Symptom: Secure boot of Linux will no longer be possible with an
upcoming
IBM Z firmware update.
Problem: New IBM Z firmware requires all signed boot images to contain a
trailing data block with a specific format.
Solution: Add trailing data block to the zipl stage 3 boot loader image.
Reproduction: Apply latest firmware, perform IPL with Secure Boot enabled.
Fix: Available upstream with
Upstream-ID: 5768d55a08e163f718bd87498b9e763687ae7137
Upstream-Description:
zipl/boot: add secure boot trailer
This patch enhances the zipl stage3 loader image adding a
trailer as
required for secure boot by future firmware versions.
Note: with the change in this patch the padding via objcopy
command line
options is replaced by padding via linker script directives
with the
same effect.
Signed-off-by: Peter Oberparleiter <[email protected]>
Signed-off-by: Jan Hoeppner <[email protected]>
Signed-off-by: Peter Oberparleiter <[email protected]>
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/linux/+bug/1996069/+subscriptions
--
Mailing list: https://launchpad.net/~kernel-packages
Post to : [email protected]
Unsubscribe : https://launchpad.net/~kernel-packages
More help : https://help.launchpad.net/ListHelp
