[Group.of.nepali.translators] [Bug 1574727] Re: [SRU] Enforce using signed kernels and modules on UEFI

The Precise Pangolin has reached end of life, so this bug will not be fixed for that release ** Changed in: dkms (Ubuntu Precise) Status: New => Won't Fix -- You received this bug notification because you are a member of नेपाली भाषा समायोजकहरुको समूह, which is subscribed to Xenial.

[Group.of.nepali.translators] [Bug 1574727] Re: [SRU] Enforce using signed kernels and modules on UEFI

The Precise Pangolin has reached end of life, so this bug will not be fixed for that release ** Changed in: shim (Ubuntu Precise) Status: New => Won't Fix -- You received this bug notification because you are a member of नेपाली भाषा समायोजकहरुको समूह, which is subscribed to Xenial.

[Group.of.nepali.translators] [Bug 1574727] Re: [SRU] Enforce using signed kernels and modules on UEFI

The update of shim, grub, mokutil and others to use signed kernels and modules are mostly done; one further step that needs to happen is to have grub enforce that kernels are properly signed, and refuse to load unsigned kernels (rather than falling back from the linuxefi module which checks

[Group.of.nepali.translators] [Bug 1574727] Re: [SRU] Enforce using signed kernels and modules on UEFI

This bug was fixed in the package shim-signed - 1.18~12.04.1 --- shim-signed (1.18~12.04.1) precise; urgency=medium * update-secureboot-policy: If /proc/sys/kernel/moksbstate_disabled is present, prefer this unconditionally over MokSBStateRT. LP: #1604873. -- Steve Langasek

[Group.of.nepali.translators] [Bug 1574727] Re: [SRU] Enforce using signed kernels and modules on UEFI

efivar for trusty ended up not being needed. ** Changed in: efivar (Ubuntu Trusty) Status: Fix Committed => Fix Released -- You received this bug notification because you are a member of नेपाली भाषा समायोजकहरुको समूह, which is subscribed to Xenial. Matching subscriptions: Ubuntu 16.04

[Group.of.nepali.translators] [Bug 1574727] Re: [SRU] Enforce using signed kernels and modules on UEFI

This bug was fixed in the package grub2 - 2.02~beta2-36ubuntu3.1 --- grub2 (2.02~beta2-36ubuntu3.1) xenial; urgency=medium * debian/postinst.in: replace setup_mok_validation with a call to update-secureboot-policy, a script shipped by shim-signed. (LP: #1574727) *

[Group.of.nepali.translators] [Bug 1574727] Re: [SRU] Enforce using signed kernels and modules on UEFI

This bug was fixed in the package shim-signed - 1.17~15.10.1 --- shim-signed (1.17~15.10.1) wily; urgency=medium * Backport shim-signed 1.17 to 15.10. (LP: #1574727) -- Mathieu Trudel-Lapierre Thu, 07 Jul 2016 20:17:24 -0400 ** Changed in: shim-signed

[Group.of.nepali.translators] [Bug 1574727] Re: [SRU] Enforce using signed kernels and modules on UEFI

This bug was fixed in the package dkms - 2.2.0.3-2ubuntu6.2 --- dkms (2.2.0.3-2ubuntu6.2) wily; urgency=medium * debian/patches/shim_secureboot_support.patch: use update-secureboot-policy, which has the benefit of being handled via triggers, to allow users to toggle

[Group.of.nepali.translators] [Bug 1574727] Re: [SRU] Enforce using signed kernels and modules on UEFI

This bug was fixed in the package mokutil - 0.3.0-0ubuntu3~15.10.1 --- mokutil (0.3.0-0ubuntu3~15.10.1) wily; urgency=medium * Backport mokutil to wily. (LP: #1574727) -- Mathieu Trudel-Lapierre Tue, 26 Apr 2016 11:04:30 -0400 ** Changed in: dkms (Ubuntu

[Group.of.nepali.translators] [Bug 1574727] Re: [SRU] Enforce using signed kernels and modules on UEFI

This bug was fixed in the package shim-signed - 1.17~14.04.1 --- shim-signed (1.17~14.04.1) trusty; urgency=medium * Backport shim-signed 1.17 to 14.04. (LP: #1574727) -- Mathieu Trudel-Lapierre Thu, 07 Jul 2016 20:17:24 -0400 ** Changed in: mokutil

[Group.of.nepali.translators] [Bug 1574727] Re: [SRU] Enforce using signed kernels and modules on UEFI

This bug was fixed in the package mokutil - 0.3.0-0ubuntu3~14.04.1 --- mokutil (0.3.0-0ubuntu3~14.04.1) trusty; urgency=medium * Backport mokutil to trusty. (LP: #1574727) -- Mathieu Trudel-Lapierre Tue, 26 Apr 2016 10:59:59 -0400 ** Changed in: mokutil

[Group.of.nepali.translators] [Bug 1574727] Re: [SRU] Enforce using signed kernels and modules on UEFI

This bug was fixed in the package mokutil - 0.3.0-0ubuntu3~12.04.1 --- mokutil (0.3.0-0ubuntu3~12.04.1) precise; urgency=medium * Backport to precise: (LP: #1574727) - debian/patches/precise-gcc-options.patch: drop to building against the gnu99 standard, rather than

[Group.of.nepali.translators] [Bug 1574727] Re: [SRU] Enforce using signed kernels and modules on UEFI

** Changed in: grub2-signed (Ubuntu Precise) Status: New => Invalid ** Changed in: grub2 (Ubuntu Precise) Status: New => Invalid -- You received this bug notification because you are a member of नेपाली भाषा समायोजकहरुको समूह, which is subscribed to Xenial. Matching subscriptions:

[Group.of.nepali.translators] [Bug 1574727] Re: [SRU] Enforce using signed kernels and modules on UEFI

** Changed in: grub2-signed (Ubuntu Trusty) Status: Fix Committed => Invalid -- You received this bug notification because you are a member of नेपाली भाषा समायोजकहरुको समूह, which is subscribed to Xenial. Matching subscriptions: Ubuntu 16.04 Bugs https://bugs.launchpad.net/bugs/1574727

[Group.of.nepali.translators] [Bug 1574727] Re: [SRU] Enforce using signed kernels and modules on UEFI

xenial still needs an SRU to drop the previous setup_mok_validation code (but not add update-secureboot-policy). ** Changed in: grub2-signed (Ubuntu Xenial) Status: Fix Committed => In Progress ** Changed in: grub2 (Ubuntu Wily) Status: New => Invalid ** Changed in: grub2 (Ubuntu

[Group.of.nepali.translators] [Bug 1574727] Re: [SRU] Enforce using signed kernels and modules on UEFI

Meh, I meant to release grub2{,-signed} for trusty, fat-fingered this. I removed the copy into -updates, as this is premature. ** Changed in: grub2 (Ubuntu Xenial) Status: Fix Released => Fix Committed ** Changed in: grub2-signed (Ubuntu Xenial) Status: Fix Released => Fix

[Group.of.nepali.translators] [Bug 1574727] Re: [SRU] Enforce using signed kernels and modules on UEFI

This bug was fixed in the package grub2 - 2.02~beta2-36ubuntu3.1 --- grub2 (2.02~beta2-36ubuntu3.1) xenial; urgency=medium * debian/postinst.in: replace setup_mok_validation with a call to update-secureboot-policy, a script shipped by shim-signed. (LP: #1574727) *

[Group.of.nepali.translators] [Bug 1574727] Re: [SRU] Enforce using signed kernels and modules on UEFI

** Also affects: efibootmgr (Ubuntu) Importance: Undecided Status: New ** Changed in: efibootmgr (Ubuntu) Status: New => Fix Released ** Changed in: efibootmgr (Ubuntu Xenial) Status: New => Fix Released ** Changed in: efibootmgr (Ubuntu Wily) Status: New => Fix

[Group.of.nepali.translators] [Bug 1574727] Re: [SRU] Enforce using signed kernels and modules on UEFI

** Changed in: shim-signed (Ubuntu) Importance: Undecided => High ** Changed in: shim-signed (Ubuntu) Status: New => Fix Released ** Changed in: shim-signed (Ubuntu) Assignee: (unassigned) => Mathieu Trudel-Lapierre (cyphermox) -- You received this bug notification because you

[Group.of.nepali.translators] [Bug 1574727] Re: [SRU] Enforce using signed kernels and modules on UEFI

** Also affects: shim-signed (Ubuntu) Importance: Undecided Status: New -- You received this bug notification because you are a member of नेपाली भाषा समायोजकहरुको समूह, which is subscribed to Xenial. Matching subscriptions: Ubuntu 16.04 Bugs https://bugs.launchpad.net/bugs/1574727

[Group.of.nepali.translators] [Bug 1574727] Re: [SRU] Enforce using signed kernels and modules on UEFI

** Also affects: efivar (Ubuntu) Importance: Undecided Status: New ** Also affects: grub2 (Ubuntu Precise) Importance: Undecided Status: New ** Also affects: dkms (Ubuntu Precise) Importance: Undecided Status: New ** Also affects: shim (Ubuntu Precise)