can not boot up in uefi secure boot mode unbuntu 13.04, can run in a live from cd uefi secure mode. will boot non secure boot mode
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
grub2 (Ubuntu) |
Expired
|
Undecided
|
Unassigned |
Bug Description
I am running on a dell inspiron 7720. Have install ubuntu 13.04 with the windows 8 hard drive removed. I can run in a live from cd in uefi secure mode and can install the same in secure mode. I can not boot to the hard drive which has only unbuntu 13.04 installed on in secure mode. I have installed unbunta with the windows 8 hard dirve removed because I don't want any issues with unbuntu or windows messing with each other. It will boot up in non secure mode. I want to able to boot to windows 8 hard drive or unbunta hard with out changing secure on and off. can any one help me. thanks dan winkler
Steve Langasek (vorlon) wrote : | #1 |
Changed in shim (Ubuntu): | |
status: | New → Incomplete |
Dan Winkler (dannyewinkler) wrote : Re: [Bug 1170183] Re: can not boot up in uefi secure boot mode unbuntu 13.04, can run in a live from cd uefi secure mode. will boot non secure boot mode | #2 |
- P4180029.JPG Edit (1.1 MiB, image/jpeg; name="P4180029.JPG")
- P4180031.JPG Edit (1.5 MiB, image/jpeg; name="P4180031.JPG")
- Screenshot from 2013-04-18 15:57:00.png Edit (249.0 KiB, image/png; name="Screenshot from 2013-04-18 15:57:00.png")
Dear Steve,
Here are 3 pictures for you. The screen shot is the output of what you had
me run in the terminal mode.
Pic p4180031 is how I have the computer set up when I ran ubuntu in the
live mode and also when I installed it from the cd. When the computer
restarts and I am using the the first boot device ubuntu in my uefi boot to
boot from I get a blank screen. When I use the F12 key and go to my boot
menu and pick ubuntu boot device in pic p4180031 the I get this screen pic
p4180029. I hope this helps you to help me. Thanks Dan Winkler
On Wed, Apr 17, 2013 at 10:30 PM, Steve Langasek <
<email address hidden>> wrote:
> Thanks for reporting this issue, Dan. Can you confirm that the install
> on the hard drive that fails to boot was installed under secure boot
> mode? When the system fails to boot, what exactly do you see on the
> screen - where does it stop? (Screenshots would be good here)
>
> After booting the system in non-secureboot mode, can you please run the
> command 'sudo efibootmgr -v' and post the output?
>
> ** Changed in: shim (Ubuntu)
> Status: New => Incomplete
>
> --
> You received this bug notification because you are subscribed to the bug
> report.
> https:/
>
> Title:
> can not boot up in uefi secure boot mode unbuntu 13.04, can run in a
> live from cd uefi secure mode. will boot non secure boot mode
>
> Status in “shim” package in Ubuntu:
> Incomplete
>
> Bug description:
> I am running on a dell inspiron 7720. Have install ubuntu 13.04 with
> the windows 8 hard drive removed. I can run in a live from cd in uefi
> secure mode and can install the same in secure mode. I can not boot to
> the hard drive which has only unbuntu 13.04 installed on in secure
> mode. I have installed unbunta with the windows 8 hard dirve removed
> because I don't want any issues with unbuntu or windows messing with
> each other. It will boot up in non secure mode. I want to able to boot
> to windows 8 hard drive or unbunta hard with out changing secure on
> and off. can any one help me. thanks dan winkler
>
> To manage notifications about this bug go to:
> https:/
>
Steve Langasek (vorlon) wrote : | #3 |
Thanks. A text paste would have been preferred to a screenshot for the command output, but this is sufficient to show that your system is configured to boot /efi/ubuntu/
To correct this problem on your local system, you should be able to run the command 'grub-install --uefi-
Reassigning this bug to grub2, because grub-installer or grub2 should have automatically done the right thing at install time. Colin, could you take a look at this?
affects: | shim (Ubuntu) → grub2 (Ubuntu) |
Changed in grub2 (Ubuntu): | |
status: | Incomplete → New |
Dan Winkler (dannyewinkler) wrote : | #4 |
the command 'sudo grub-install --uefi-secure-boot' was entered into the
terminal
it said it had finished with no errors
the computer was then shut down and restarted, the boot was changed to
secure boot, again I got a blank screen, I then restarted the computer and
hit f12 to access the boot menu, selected ubuntu (which boot 1st
automatically because it is at the top of the boot list) and received the
same screen that states access denied (which I sent you a pic of
previously). So I turned the secure boot off, once again and booted to
ubuntu, then entered in the 'sudo efibootmgr-v' command into the terminal
and got
lucille@
[sudo] password for lucille:
BootCurrent: 000C
Timeout: 0 seconds
BootOrder:
000C,0000,
Boot0000 Setup
Boot0001 Boot Menu
Boot0002* Removable Drive
030a2400d23878b
Boot0003* Hard Drive
030a2400d23878b
Boot0004* USB Storage Device
030a2400d23878b
Boot0005* CD/DVD/CD-RW Drive
030a2400d23878b
Boot0006* Second Hard Drive
030a2400d23878b
Boot0007* Network
030a2400d23878b
Boot0008* Network Boot
030a2400d23878b
Boot0009 Diagnostics
Boot000A Change boot mode setting
Boot000B* Windows Boot Manager
HD(1,800,
Boot000C* ubuntu
HD(1,800,
Boot000E* dvd boot
ACPI(a0341d0,
Boot000F* UShe B
ACPI(a0341d0,
lucille@
lucille@
I believe this still states that the boot is grub and not shim
anyway I still can not boot in secure mode
I appreciate you help, but I still need more
thanks
On Thu, Apr 18, 2013 at 7:22 PM, Steve Langasek <
<email address hidden>> wrote:
> Thanks. A text paste would have been preferred to a screenshot for the
> command output, but this is sufficient to show that your system is
> configured to boot /efi/ubuntu/
> configured to boot /efi/ubuntu/
>
> To correct this problem on your local system, you should be able to run
> the command 'grub-install --uefi-
>
> Reassigning this bug to grub2, because grub-installer or grub2 should
> have automatically done the right thing at install time. Colin, could
> you take a look at this?
>
> ** Package changed: shim (Ubuntu) => grub2 (Ubuntu)
>
> ** Changed in: gru...
Steve Langasek (vorlon) wrote : | #5 |
On Fri, Apr 19, 2013 at 12:55:13PM -0000, Dan Winkler wrote:
> Boot000C* ubuntu
> HD(1,800,
Oh, that's very strange. We've seen reports of similar behavior before when
the firmware's nvram space has been filled up (see
https:/
if this is a new install, I don't know why you would have that problem, and
it still doesn't explain why the installer set this to grubx64.efi in the
first place.
First thing's first, can you check that you have the 'shim-signed' package
installed? ('dpkg -l shim-signed') If not, please install it with 'sudo
apt-get install shim-signed', then run 'sudo grub-install
--uefi-secure-boot' again.
If that still doesn't fix it to let you run under secure boot mode, please
do the following.
Show the output of this command:
$ ls -l /sys/firmware/
Please then also try running these commands from the commandline (one
immediately after the other), and paste the output:
$ sudo efibootmgr -v -c -d /dev/sda -p 1 -w -L ubuntu -l '\EFI\ubuntu\
$ echo $?
Dan Winkler (dannyewinkler) wrote : | #6 |
lucille@
total 0
-rw-r--r-- 1 root root 12 Apr 19 15:18
AcpiGlobalVaria
-rw-r--r-- 1 root root 5 Apr 19 15:18
AutoBootMenuVar
-rw-r--r-- 1 root root 46 Apr 19 15:18
Boot0000-
-rw-r--r-- 1 root root 54 Apr 19 15:18
Boot0001-
-rw-r--r-- 1 root root 82 Apr 19 15:18
Boot0002-
-rw-r--r-- 1 root root 72 Apr 19 15:18
Boot0003-
-rw-r--r-- 1 root root 88 Apr 19 15:18
Boot0004-
-rw-r--r-- 1 root root 88 Apr 19 15:18
Boot0005-
-rw-r--r-- 1 root root 86 Apr 19 15:18
Boot0006-
-rw-r--r-- 1 root root 66 Apr 19 15:18
Boot0007-
-rw-r--r-- 1 root root 76 Apr 19 15:18
Boot0008-
-rw-r--r-- 1 root root 58 Apr 19 15:18
Boot0009-
-rw-r--r-- 1 root root 84 Apr 19 15:18
Boot000A-
-rw-r--r-- 1 root root 304 Apr 19 15:18
Boot000B-
-rw-r--r-- 1 root root 128 Apr 19 15:18
Boot000C-
-rw-r--r-- 1 root root 130 Apr 19 15:18
Boot000E-
-rw-r--r-- 1 root root 145 Apr 19 15:18
Boot000F-
-rw-r--r-- 1 root root 6 Apr 19 15:18
BootCurrent-
-rw-r--r-- 1 root root 8 Apr 19 15:18
BootOptionSuppo
-rw-r--r-- 1 root root 34 Apr 19 15:18
BootOrder-
-rw-r--r-- 1 root root 26 Apr 19 15:18
BootOrderDefaul
-rw-r--r-- 1 root root 50 Apr 19 15:18
ConIn-8be4df61-
-rw-r--r-- 1 root root 50 Apr 19 15:18
ConInDev-
-rw-r--r-- 1 root root 48 Apr 19 15:18
ConOut-
-rw-r--r-- 1 root root 48 Apr 19 15:18
ConOutDev-
-rw-r--r-- 1 root root 5 Apr 19 15:18
CpuCmpSmt-
-rw-r--r-- 1 root root 5 Apr 19 15:18
CpuOnlyReset-
-rw-r--r-- 1 root root 39 Apr 19 15:18
CpuPpiSetupVar-
-rw-r--r-- 1 root root 5 Apr 19 15:18
CpuRatio-
-rw-r--r-- 1 root root 3223 Apr 19 15:18
db-d719b2cb-
-rw-r--r-- 1 root root 80 Apr 19 15:18
dbx-d719b2cb-
-rw-r--r-- 1 root root 9 Apr 19 15:18
DellFpVariable-
-rw-r--r-- 1 root root 95 Apr 19 15:18
DellHddPwdVaria
-rw-r--r-- 1 root root 75 Apr 19 15:18
DellVariable-
-rw-r--r-- 1 root root 15 Apr 19 15:18
DeviceRecord-
-rw-r--r-- 1 root ...
Steve Langasek (vorlon) wrote : | #7 |
On Fri, Apr 19, 2013 at 10:26:36PM -0000, Dan Winkler wrote:
> Boot000D* ubuntu
> HD(1,800,
> lucille@
> 0
> lucille@
Ok. The efibootmgr command succeeded, and the efivars usage looks
reasonable, so this doesn't seem to be a problem with the nvram being filled
up.
So when you checked, you found the shim-signed package installed? I.e., the
output looked like this?
Desired=
| Status=
|/ Err?=(none)
||/ Name Version Architecture Description
+++-===
ii shim-signed 1.2+0~201209 amd64 Secure Boot chain-loading bootloa
Can you confirm that /boot/efi/
system?
If it is, you should now be able to boot Ubuntu under Secure Boot.
If it's not, you still need to install the shim-signed package after all.
Ubfan (ubfan1) wrote : | #8 |
I too wound up with \EFI\ubuntu\
Dan Winkler (dannyewinkler) wrote : | #9 |
Thanks, we installed Ubuntu 13.04 in secure boot mode, after running it in
secure boot live mode, it installed and then booted in secure boot.
Guess the updates which downloaded when we reinstalled the system fixed
whatever the problem was. Thanks a lot for all you time and effort. We
really appreciate it.
=)
Anyway we really like the 13.04 (final) it works well on this new system.
Ubuntu is great, and it keeps getting better and better. You are part of
what makes it better and better.
Thanks again, you were very, very helpful. =)
sincerely,
Lucille Winkler
On Thu, May 9, 2013 at 8:02 PM, Ubfan <email address hidden> wrote:
> I too wound up with \EFI\ubuntu\
> machine which had always had secure boot enabled. This was caused by an
> earlier grub-install which left a corrupt /EFI/ubuntu directory, which
> gave an IO error on any attempted access. After fixing the corrupted
> directory, rerunning grub-install --uefi-secure-boot added a new,
> correct ubuntu/shimx63.efi entry. Looks like the error checking on
> grub-install might need a little improvement -- looks like a check for
> shim failed, but only because the directory itself was unreadable.
>
> --
> You received this bug notification because you are subscribed to the bug
> report.
> https:/
>
> Title:
> can not boot up in uefi secure boot mode unbuntu 13.04, can run in a
> live from cd uefi secure mode. will boot non secure boot mode
>
> Status in “grub2” package in Ubuntu:
> New
>
> Bug description:
> I am running on a dell inspiron 7720. Have install ubuntu 13.04 with
> the windows 8 hard drive removed. I can run in a live from cd in uefi
> secure mode and can install the same in secure mode. I can not boot to
> the hard drive which has only unbuntu 13.04 installed on in secure
> mode. I have installed unbunta with the windows 8 hard dirve removed
> because I don't want any issues with unbuntu or windows messing with
> each other. It will boot up in non secure mode. I want to able to boot
> to windows 8 hard drive or unbunta hard with out changing secure on
> and off. can any one help me. thanks dan winkler
>
> To manage notifications about this bug go to:
> https:/
>
Launchpad Janitor (janitor) wrote : | #10 |
Status changed to 'Confirmed' because the bug affects multiple users.
Changed in grub2 (Ubuntu): | |
status: | New → Confirmed |
Marcus Tomlinson (marcustomlinson) wrote : | #11 |
This release of Ubuntu is no longer receiving maintenance updates. If this is still an issue on a maintained version of Ubuntu please let us know.
Changed in grub2 (Ubuntu): | |
status: | Confirmed → Incomplete |
Launchpad Janitor (janitor) wrote : | #12 |
[Expired for grub2 (Ubuntu) because there has been no activity for 60 days.]
Changed in grub2 (Ubuntu): | |
status: | Incomplete → Expired |
Thanks for reporting this issue, Dan. Can you confirm that the install on the hard drive that fails to boot was installed under secure boot mode? When the system fails to boot, what exactly do you see on the screen - where does it stop? (Screenshots would be good here)
After booting the system in non-secureboot mode, can you please run the command 'sudo efibootmgr -v' and post the output?