So after some discussion we just had with Colin and Steve, the conclusion is that we'll change grub2 and the installer to always install shim-signed on UEFI machines and have all machines secureboot or not go through the shim at boot time.
That way we won't need to rely on the state of the machine at grub installation time to know which binary to use. -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1184297 Title: Secure boot failed, claiming boot is against security policy To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/grub-installer/+bug/1184297/+subscriptions -- ubuntu-bugs mailing list [email protected] https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
