Change log for grub2 package in Ubuntu
| 76 → 150 of 506 results | First • Previous • Next • Last |
| Superseded in groovy-proposed |
grub2 (2.04-1ubuntu32) groovy; urgency=medium * ubuntu-linuxefi-arm64.patch: Fix build on armhf
Available diffs
| Superseded in groovy-proposed |
grub2 (2.04-1ubuntu31) groovy; urgency=medium
* ubuntu-linuxefi-arm64.patch: Restore arm64 parts of ubuntu-linuxefi.patch
that got lost in the 2.04 rebase (LP: #1862279)
-- Julian Andres Klode <email address hidden> Fri, 11 Sep 2020 17:49:50 +0200
Available diffs
grub2 (2.04-1ubuntu26.4) focal; urgency=medium
* grub-install: cherry-pick patch from grub-devel to make grub-install
fault tolerant. Create backup of files in /boot/grub, and restore them
on failure to complete grub-install. LP: #1891680
* postinst.in: do not exit successfully when failing to show critical
grub-pc/install_devices_failed and grub-pc/install_devices_empty
prompts in non-interactive mode. This enables surfacing upgrade errors
to the users and/or automation. LP: #1891680
* postinst.in: do not attempt to call grub-install upon fresh install of
grub-pc because it it a job of installers to do that after fresh
install. Fixup for the issue unmasked by above. LP: #1891680
* grub-multi-install: fix non-interactive failures for grub-efi like it
was fixed in postinst for grub-pc. LP: #1891680
* postinst.in: Fixup postinst.in, to attempt grub-install upon explicit
dpkg-reconfigure grub-pc. LP: #1892526
-- Dimitri John Ledkov <email address hidden> Tue, 08 Sep 2020 11:24:35 +0100
Available diffs
grub2 (2.04-1ubuntu30) groovy; urgency=medium
* postinst.in: do not attempt to call grub-install upon fresh install of
grub-pc because it it a job of installers to do that after fresh
install.
* grub-multi-install: fix non-interactive failures for grub-efi like it
was fixed in postinst for grub-pc.
-- Dimitri John Ledkov <email address hidden> Thu, 03 Sep 2020 14:54:23 +0100
Available diffs
- diff from 2.04-1ubuntu29 to 2.04-1ubuntu30 (802 bytes)
grub2 (2.04-1ubuntu29) groovy; urgency=medium
* grub-install: cherry-pick patch from grub-devel to make grub-install
fault tolerant. Create backup of files in /boot/grub, and restore them
on failure to complete grub-install. LP: #1891680
* postinst.in: do not exit successfully when failing to show critical
grub-pc/install_devices_failed and grub-pc/install_devices_empty
prompts in non-interactive mode. This enables surfacing upgrade errors
to the users and/or automation. LP: #1891680
* postinst.in: Fixup postinst.in, to attempt grub-install upon explicit
dpkg-reconfigure grub-pc. LP: #1892526
-- Dimitri John Ledkov <email address hidden> Tue, 01 Sep 2020 20:04:44 +0100
Available diffs
grub2 (2.02~beta2-36ubuntu3.28) xenial; urgency=medium
* debian/patches/ubuntu-flavour-order.patch:
- Add a (hidden) GRUB_FLAVOUR_ORDER setting that can mark certain kernel
flavours as preferred, and specify an order between those preferred
flavours (LP: #1882663)
* debian/patches/ubuntu-recovery-dis_ucode_ldr.patch:
- Pass dis_ucode_ldr to kernel for recovery mode (LP: #1831789)
-- Julian Andres Klode <email address hidden> Mon, 24 Aug 2020 10:54:59 +0200
Available diffs
grub2 (2.02-2ubuntu8.18) bionic; urgency=medium
* debian/patches/ubuntu-flavour-order.patch:
- Add a (hidden) GRUB_FLAVOUR_ORDER setting that can mark certain kernel
flavours as preferred, and specify an order between those preferred
flavours (LP: #1882663)
* debian/patches/ubuntu-recovery-dis_ucode_ldr.patch:
- Pass dis_ucode_ldr to kernel for recovery mode (LP: #1831789)
-- Julian Andres Klode <email address hidden> Mon, 24 Aug 2020 10:45:45 +0200
Available diffs
grub2 (2.04-1ubuntu26.3) focal; urgency=medium
* 2.04-1ubuntu27 and 2.04-1ubuntu28 folded together for focal
* debian/patches/ubuntu-flavour-order.patch:
- Add a (hidden) GRUB_FLAVOUR_ORDER setting that can mark certain kernel
flavours as preferred, and specify an order between those preferred
flavours (LP: #1882663)
* debian/patches/ubuntu-zfs-enhance-support.patch:
- Use version_find_latest for ordering kernels, so it also supports
the GRUB_FLAVOUR_ORDER setting.
* debian/patches/ubuntu-dont-verify-loopback-images.patch:
- disk/loopback: Don't verify loopback images (LP: #1878541),
Thanks to Chris Coulson for the patch
* debian/patches/ubuntu-recovery-dis_ucode_ldr.patch
- Pass dis_ucode_ldr to kernel for recovery mode (LP: #1831789)
* debian/patches/ubuntu-add-initrd-less-boot-fallback.patch:
- Merge changes from xnox to fix multiple initrds support (LP: #1878705)
* debian/patches/ubuntu-clear-invalid-initrd-spacing.patch:
- Remove, no longer needed thanks to xnox's patch
* Ensure that grub-multi-install can always find templates (LP: #1879948)
-- Julian Andres Klode <email address hidden> Mon, 17 Aug 2020 16:04:31 +0200
Available diffs
- diff from 2.04-1ubuntu26 to 2.04-1ubuntu26.3 (94.4 KiB)
- diff from 2.04-1ubuntu26.2 to 2.04-1ubuntu26.3 (125.5 KiB)
grub2 (2.04-1ubuntu28) groovy; urgency=medium * Ensure that grub-multi-install can always find templates (LP: #1879948) * Fix changelog entries for security update -- Julian Andres Klode <email address hidden> Mon, 10 Aug 2020 15:07:29 +0200
Available diffs
- diff from 2.04-1ubuntu26.2 to 2.04-1ubuntu28 (125.5 KiB)
- diff from 2.04-1ubuntu27 to 2.04-1ubuntu28 (3.5 KiB)
| Superseded in groovy-proposed |
grub2 (2.04-1ubuntu27) groovy; urgency=medium
* debian/patches/ubuntu-flavour-order.patch:
- Add a (hidden) GRUB_FLAVOUR_ORDER setting that can mark certain kernel
flavours as preferred, and specify an order between those preferred
flavours (LP: #1882663)
* debian/patches/ubuntu-zfs-enhance-support.patch:
- Use version_find_latest for ordering kernels, so it also supports
the GRUB_FLAVOUR_ORDER setting.
* debian/patches/ubuntu-dont-verify-loopback-images.patch:
- disk/loopback: Don't verify loopback images (LP: #1878541),
Thanks to Chris Coulson for the patch
* debian/patches/ubuntu-recovery-dis_ucode_ldr.patch
- Pass dis_ucode_ldr to kernel for recovery mode (LP: #1831789)
* debian/patches/ubuntu-add-initrd-less-boot-fallback.patch:
- Merge changes from xnox to fix multiple initrds support (LP: #1878705)
* debian/patches/ubuntu-clear-invalid-initrd-spacing.patch:
- Remove, no longer needed thanks to xnox's patch
-- Julian Andres Klode <email address hidden> Thu, 06 Aug 2020 14:47:52 +0200
Available diffs
- diff from 2.04-1ubuntu26.2 to 2.04-1ubuntu27 (126.3 KiB)
| Published in xenial-security |
| Superseded in xenial-updates |
| Deleted in xenial-proposed (Reason: moved to -updates) |
grub2 (2.02~beta2-36ubuntu3.27) xenial; urgency=medium
* debian/postinst.in: Avoid calling grub-install on upgrade of the grub-pc
package, since we cannot be certain that it will install to the correct
disk and a grub-install failure will render the system unbootable.
LP: #1889556.
-- Steve Langasek <email address hidden> Thu, 30 Jul 2020 21:27:00 -0700
Available diffs
| Superseded in bionic-security |
| Superseded in bionic-updates |
| Deleted in bionic-proposed (Reason: moved to -updates) |
grub2 (2.02-2ubuntu8.17) bionic; urgency=medium
* debian/postinst.in: Avoid calling grub-install on upgrade of the grub-pc
package, since we cannot be certain that it will install to the correct
disk and a grub-install failure will render the system unbootable.
LP: #1889556.
-- Steve Langasek <email address hidden> Thu, 30 Jul 2020 18:49:49 -0700
Available diffs
| Superseded in focal-security |
| Superseded in groovy-release |
| Superseded in focal-updates |
| Deleted in groovy-proposed (Reason: moved to Release) |
| Deleted in focal-proposed (Reason: moved to -updates) |
grub2 (2.04-1ubuntu26.2) focal; urgency=medium
* debian/postinst.in: Avoid calling grub-install on upgrade of the grub-pc
package, since we cannot be certain that it will install to the correct
disk and a grub-install failure will render the system unbootable.
LP: #1889556.
-- Steve Langasek <email address hidden> Thu, 30 Jul 2020 17:34:25 -0700
Available diffs
grub2 (2.02~beta2-36ubuntu3.26) xenial; urgency=medium
[ Chris Coulson ]
* SECURITY UPDATE: Heap buffer overflow when encountering commands that
cannot be tokenized to less than 8192 characters.
- 0082-yylex-Make-lexer-fatal-errors-actually-be-fatal.patch: Make
fatal lexer errors actually be fatal
- CVE-2020-10713
* SECURITY UPDATE: Multiple integer overflow bugs that could result in
heap buffer allocations that were too small and subsequent heap buffer
overflows when handling certain filesystems, font files or PNG images.
- 0083-safemath-Add-some-arithmetic-primitives-that-check-f.patch: Add
arithmetic primitives that allow for overflows to be detected
- 0084-calloc-Make-sure-we-always-have-an-overflow-checking.patch:
Make sure that there is always an overflow checking implementation
of calloc() available
- 0085-calloc-Use-calloc-at-most-places.patch: Use calloc where
appropriate
- 0086-malloc-Use-overflow-checking-primitives-where-we-do-.patch: Use
overflow-safe arithmetic primitives when performing allocations
based on the results of operations that might overflow
- 0094-hfsplus-fix-two-more-overflows.patch: Fix integer overflows in
hfsplus
- 0095-lvm-fix-two-more-potential-data-dependent-alloc-over.patch: Fix
more potential integer overflows in lvm
- CVE-2020-14308, CVE-2020-14309, CVE-2020-14310, CVE-2020-14311
* SECURITY UPDATE: Use-after-free when executing a command that causes
a currently executing function to be redefined.
- 0092-script-Remove-unused-fields-from-grub_script_functio.patch:
Remove unused fields from grub_script_function
- 0093-script-Avoid-a-use-after-free-when-redefining-a-func.patch:
Avoid a use-after-free when redefining a function during execution
- CVE-2020-15706
* SECURITY UPDATE: Integer overflows that could result in heap buffer
allocations that were too small and subsequent heap buffer overflows
during initrd loading.
- 0105-linux-Fix-integer-overflows-in-initrd-size-handling.patch: Fix
integer overflows in initrd size handling
- 0106-efilinux-Fix-integer-overflows-in-grub_cmd_initrd.patch: Fix
integer overflows in linuxefi grub_cmd_initrd
- CVE-2020-15707
* Various fixes as a result of code review and static analysis:
- 0087-iso9660-Don-t-leak-memory-on-realloc-failures.patch: Fix a
memory leak on realloc failures when processing symbolic links
- 0088-font-Do-not-load-more-than-one-NAME-section.patch: Fix a
memory leak when processing font files with more than one NAME
section
- 0089-gfxmenu-Fix-double-free-in-load_image.patch: Zero self->bitmap
after it is freed in order to avoid a potential double free later on
- 0090-lzma-Make-sure-we-don-t-dereference-past-array.patch: Fix an
out-of-bounds read in LzmaEncode
- 0091-tftp-Do-not-use-priority-queue.patch: Refactor tftp to not use
priority queues and fix a double free
- 0096-efi-fix-some-malformed-device-path-arithmetic-errors.patch: Fix
various arithmetic errors with malformed device paths
- 0098-Fix-a-regression-caused-by-efi-fix-some-malformed-de.patch: Fix
a NULL deref in the chainloader command introduced by a previous
patch
- 0100-chainloader-Avoid-a-double-free-when-validation-fail.patch:
Avoid a double free in the chainloader command when validation fails
- 0101-relocator-Protect-grub_relocator_alloc_chunk_addr-in.patch:
Protect grub_relocator_alloc_chunk_addr input arguments against
integer overflow / underflow
- 0102-relocator-Protect-grub_relocator_alloc_chunk_align-m.patch:
Protect grub_relocator_alloc_chunk_align max_addr argument against
integer underflow
- 0103-relocator-Fix-grub_relocator_alloc_chunk_align-top-m.patch: Fix
grub_relocator_alloc_chunk_align top memory allocation
- 0104-linux-loader-avoid-overflow-on-initrd-size-calculati.patch:
Avoid overflow on initrd size calculation
* debian/patches/linuxefi_disable_sb_fallback.patch: Disallow unsigned
kernels if UEFI Secure Boot is enabled. If UEFI Secure Boot is enabled
and kernel signature verification fails, do not boot the kernel. Patch
from Linn Crosetto. (LP: #1401532)
* ubuntu-Make-the-linux-command-in-EFI-grub-always-try.patch:
- Make the linux command in EFI grub always try EFI handover
[ Dimitri John Ledkov ]
* SECURITY UPDATE: Grub does not enforce kernel signature validation
when the shim protocol isn't present.
- 0097-linuxefi-fail-kernel-validation-without-shim-protoco.patch:
Fail kernel validation if the shim protocol isn't available
- CVE-2020-15705
-- Chris Coulson <email address hidden> Mon, 20 Jul 2020 21:28:33 +0100
Available diffs
grub2 (2.02-2ubuntu8.16) bionic; urgency=medium
[ Chris Coulson ]
* SECURITY UPDATE: Heap buffer overflow when encountering commands that
cannot be tokenized to less than 8192 characters.
- 0082-yylex-Make-lexer-fatal-errors-actually-be-fatal.patch: Make
fatal lexer errors actually be fatal
- CVE-2020-10713
* SECURITY UPDATE: Multiple integer overflow bugs that could result in
heap buffer allocations that were too small and subsequent heap buffer
overflows when handling certain filesystems, font files or PNG images.
- 0083-safemath-Add-some-arithmetic-primitives-that-check-f.patch: Add
arithmetic primitives that allow for overflows to be detected
- 0084-calloc-Make-sure-we-always-have-an-overflow-checking.patch:
Make sure that there is always an overflow checking implementation
of calloc() available
- 0085-calloc-Use-calloc-at-most-places.patch: Use calloc where
appropriate
- 0086-malloc-Use-overflow-checking-primitives-where-we-do-.patch: Use
overflow-safe arithmetic primitives when performing allocations
based on the results of operations that might overflow
- 0094-hfsplus-fix-two-more-overflows.patch: Fix integer overflows in
hfsplus
- 0095-lvm-fix-two-more-potential-data-dependent-alloc-over.patch: Fix
more potential integer overflows in lvm
- CVE-2020-14308, CVE-2020-14309, CVE-2020-14310, CVE-2020-14311
* SECURITY UPDATE: Use-after-free when executing a command that causes
a currently executing function to be redefined.
- 0092-script-Remove-unused-fields-from-grub_script_functio.patch:
Remove unused fields from grub_script_function
- 0093-script-Avoid-a-use-after-free-when-redefining-a-func.patch:
Avoid a use-after-free when redefining a function during execution
- CVE-2020-15706
* SECURITY UPDATE: Integer overflows that could result in heap buffer
allocations that were too small and subsequent heap buffer overflows
during initrd loading.
- 0105-linux-Fix-integer-overflows-in-initrd-size-handling.patch: Fix
integer overflows in initrd size handling
- 0106-efilinux-Fix-integer-overflows-in-grub_cmd_initrd.patch: Fix
integer overflows in linuxefi grub_cmd_initrd
- CVE-2020-15707
* Various fixes as a result of code review and static analysis:
- 0087-iso9660-Don-t-leak-memory-on-realloc-failures.patch: Fix a
memory leak on realloc failures when processing symbolic links
- 0088-font-Do-not-load-more-than-one-NAME-section.patch: Fix a
memory leak when processing font files with more than one NAME
section
- 0089-gfxmenu-Fix-double-free-in-load_image.patch: Zero self->bitmap
after it is freed in order to avoid a potential double free later on
- 0090-lzma-Make-sure-we-don-t-dereference-past-array.patch: Fix an
out-of-bounds read in LzmaEncode
- 0091-tftp-Do-not-use-priority-queue.patch: Refactor tftp to not use
priority queues and fix a double free
- 0096-efi-fix-some-malformed-device-path-arithmetic-errors.patch: Fix
various arithmetic errors with malformed device paths
- 0098-Fix-a-regression-caused-by-efi-fix-some-malformed-de.patch: Fix
a NULL deref in the chainloader command introduced by a previous
patch
- 0100-chainloader-Avoid-a-double-free-when-validation-fail.patch:
Avoid a double free in the chainloader command when validation fails
- 0101-relocator-Protect-grub_relocator_alloc_chunk_addr-in.patch:
Protect grub_relocator_alloc_chunk_addr input arguments against
integer overflow / underflow
- 0102-relocator-Protect-grub_relocator_alloc_chunk_align-m.patch:
Protect grub_relocator_alloc_chunk_align max_addr argument against
integer underflow
- 0103-relocator-Fix-grub_relocator_alloc_chunk_align-top-m.patch: Fix
grub_relocator_alloc_chunk_align top memory allocation
- 0104-linux-loader-avoid-overflow-on-initrd-size-calculati.patch:
Avoid overflow on initrd size calculation
[ Dimitri John Ledkov ]
* SECURITY UPDATE: Grub does not enforce kernel signature validation
when the shim protocol isn't present.
- 0097-linuxefi-fail-kernel-validation-without-shim-protoco.patch:
Fail kernel validation if the shim protocol isn't available
- CVE-2020-15705
-- Chris Coulson <email address hidden> Mon, 20 Jul 2020 19:50:54 +0100
Available diffs
| Superseded in groovy-release |
| Superseded in focal-updates |
| Deleted in focal-proposed (Reason: moved to -updates) |
| Deleted in groovy-proposed (Reason: moved to Release) |
grub2 (2.04-1ubuntu26.1) focal; urgency=medium
[ Julian Andres Klode ]
* Move gettext patches out of git-dpm's way, so it does not delete them
[ Chris Coulson ]
* SECURITY UPDATE: Heap buffer overflow when encountering commands that
cannot be tokenized to less than 8192 characters.
- 0082-yylex-Make-lexer-fatal-errors-actually-be-fatal.patch: Make
fatal lexer errors actually be fatal
- CVE-2020-10713
* SECURITY UPDATE: Multiple integer overflow bugs that could result in
heap buffer allocations that were too small and subsequent heap buffer
overflows when handling certain filesystems, font files or PNG images.
- 0083-safemath-Add-some-arithmetic-primitives-that-check-f.patch: Add
arithmetic primitives that allow for overflows to be detected
- 0084-calloc-Make-sure-we-always-have-an-overflow-checking.patch:
Make sure that there is always an overflow checking implementation
of calloc() available
- 0085-calloc-Use-calloc-at-most-places.patch: Use calloc where
appropriate
- 0086-malloc-Use-overflow-checking-primitives-where-we-do-.patch: Use
overflow-safe arithmetic primitives when performing allocations
based on the results of operations that might overflow
- 0094-hfsplus-fix-two-more-overflows.patch: Fix integer overflows in
hfsplus
- 0095-lvm-fix-two-more-potential-data-dependent-alloc-over.patch: Fix
more potential integer overflows in lvm
- CVE-2020-14308, CVE-2020-14309, CVE-2020-14310, CVE-2020-14311
* SECURITY UPDATE: Use-after-free when executing a command that causes
a currently executing function to be redefined.
- 0092-script-Remove-unused-fields-from-grub_script_functio.patch:
Remove unused fields from grub_script_function
- 0093-script-Avoid-a-use-after-free-when-redefining-a-func.patch:
Avoid a use-after-free when redefining a function during execution
- CVE-2020-15706
* SECURITY UPDATE: Integer overflows that could result in heap buffer
allocations that were too small and subsequent heap buffer overflows
during initrd loading.
- 0105-linux-Fix-integer-overflows-in-initrd-size-handling.patch: Fix
integer overflows in initrd size handling
- 0106-efilinux-Fix-integer-overflows-in-grub_cmd_initrd.patch: Fix
integer overflows in linuxefi grub_cmd_initrd
- CVE-2020-15707
* Various fixes as a result of code review and static analysis:
- 0087-iso9660-Don-t-leak-memory-on-realloc-failures.patch: Fix a
memory leak on realloc failures when processing symbolic links
- 0088-font-Do-not-load-more-than-one-NAME-section.patch: Fix a
memory leak when processing font files with more than one NAME
section
- 0089-gfxmenu-Fix-double-free-in-load_image.patch: Zero self->bitmap
after it is freed in order to avoid a potential double free later on
- 0090-lzma-Make-sure-we-don-t-dereference-past-array.patch: Fix an
out-of-bounds read in LzmaEncode
- 0091-tftp-Do-not-use-priority-queue.patch: Refactor tftp to not use
priority queues and fix a double free
- 0096-efi-fix-some-malformed-device-path-arithmetic-errors.patch: Fix
various arithmetic errors with malformed device paths
- 0098-Fix-a-regression-caused-by-efi-fix-some-malformed-de.patch: Fix
a NULL deref in the chainloader command introduced by a previous
patch
- 0099-efi-Fix-use-after-free-in-halt-reboot-path.patch: Fix a
use-after-free in the halt and reboot commands by not freeing
allocated memory in these paths
- 0100-chainloader-Avoid-a-double-free-when-validation-fail.patch:
Avoid a double free in the chainloader command when validation fails
- 0101-relocator-Protect-grub_relocator_alloc_chunk_addr-in.patch:
Protect grub_relocator_alloc_chunk_addr input arguments against
integer overflow / underflow
- 0102-relocator-Protect-grub_relocator_alloc_chunk_align-m.patch:
Protect grub_relocator_alloc_chunk_align max_addr argument against
integer underflow
- 0103-relocator-Fix-grub_relocator_alloc_chunk_align-top-m.patch: Fix
grub_relocator_alloc_chunk_align top memory allocation
- 0104-linux-loader-avoid-overflow-on-initrd-size-calculati.patch:
Avoid overflow on initrd size calculation
[ Dimitri John Ledkov ]
* SECURITY UPDATE: Grub does not enforce kernel signature validation
when the shim protocol isn't present.
- 0097-linuxefi-fail-kernel-validation-without-shim-protoco.patch:
Fail kernel validation if the shim protocol isn't available
- CVE-2020-15705
-- Chris Coulson <email address hidden> Mon, 20 Jul 2020 19:19:08 +0100
Available diffs
| Superseded in groovy-release |
| Published in focal-release |
| Deleted in focal-proposed (Reason: moved to Release) |
grub2 (2.04-1ubuntu26) focal; urgency=medium
[ Julian Andres Klode ]
* Move /boot/efi -> debconf migration into wrapper, so it runs everywhere
(LP: #1872077)
* Display disk name and size in the ESP selection dialog, instead of ???
[ Sebastien Bacher ]
* debian/patches/gettext,
debian/patches/rules:
- backport upstream patches to fix the list of translated strings,
reported on the ubuntu-translators mailing list. The changes would
be overwritten by autoreconf so applying from a rules override.
-- Julian Andres Klode <email address hidden> Wed, 15 Apr 2020 13:31:27 +0200
Available diffs
grub2 (2.04-1ubuntu25) focal; urgency=medium
[ Jean-Baptiste Lallement ]
[ Didier Roche ]
* debian/patches/ubuntu-zfs-enhance-support.patch:
- fix trailing } when no advanced menu is printed
- ensure we unmount all temporary snapshots path before zfs collect them
out.
* debian/patches/ubuntu-speed-zsys-history.patch:
- Speed up navigating zsys history by reducing greatly grub.cfg file size.
It used to take eg 80 seconds when loading 100 system snapshots. This is
now instantaneous by using a function with parameters that the users can
still easily edit.
-- Didier Roche <email address hidden> Mon, 13 Apr 2020 15:17:42 +0200
Available diffs
- diff from 2.04-1ubuntu24 to 2.04-1ubuntu25 (15.9 KiB)
| Superseded in focal-release |
| Deleted in focal-proposed (Reason: moved to Release) |
| Deleted in focal-release (Reason: downgrade to fix a regression) |
| Deleted in focal-proposed (Reason: moved to Release) |
grub2 (2.04-1ubuntu24) focal; urgency=medium * Support installing to multiple ESPs (LP: #1871821) -- Julian Andres Klode <email address hidden> Thu, 09 Apr 2020 12:51:07 +0200
Available diffs
- diff from 2.04-1ubuntu23 to 2.04-1ubuntu24 (50.4 KiB)
| Superseded in focal-release |
| Superseded in focal-release |
| Deleted in focal-proposed (Reason: moved to Release) |
grub2 (2.04-1ubuntu23) focal; urgency=medium [ Jean-Baptiste Lallement ] [ Didier Roche ] * Performance improvements for update-grub on ZFS systems (LP: #1869885) -- Didier Roche <email address hidden> Tue, 31 Mar 2020 15:30:36 +0200
Available diffs
- diff from 2.04-1ubuntu24 to 2.04-1ubuntu23 (50.3 KiB)
- diff from 2.04-1ubuntu22 to 2.04-1ubuntu23 (15.4 KiB)
grub2 (2.04-1ubuntu12.2) eoan; urgency=medium
* Make the linux command in EFI grub always try EFI handover; thanks
to Chris Coulson for the patches (LP: #1864533)
-- Julian Andres Klode <email address hidden> Thu, 12 Mar 2020 17:40:25 +0100
Available diffs
grub2 (2.02-2ubuntu8.15) bionic; urgency=medium
* Make the linux command in EFI grub always try EFI handover; thanks
to Chris Coulson for the patches (LP: #1864533)
-- Julian Andres Klode <email address hidden> Wed, 11 Mar 2020 21:57:49 +0100
Available diffs
grub2 (2.04-1ubuntu22) focal; urgency=medium
* smbios: Add a --linux argument to apply linux modalias-like filtering
* Make the linux command in EFI grub always try EFI handover; thanks
to Chris Coulson for the patches (LP: #1864533)
-- Julian Andres Klode <email address hidden> Wed, 11 Mar 2020 17:46:35 +0100
Available diffs
grub2 (2.04-1ubuntu21) focal; urgency=medium
* Make ZFS menu generation depending on new zsysd binary instead of eoan
zsys compatibility symlink.
-- Didier Roche <email address hidden> Wed, 26 Feb 2020 09:59:49 +0100
Available diffs
- diff from 2.04-1ubuntu20 to 2.04-1ubuntu21 (10.9 KiB)
grub2 (2.04-1ubuntu20) focal; urgency=medium * build-efi-images: do not produce -installer.efi.signed. LP: #1863994
Available diffs
- diff from 2.04-1ubuntu18 to 2.04-1ubuntu20 (1.7 KiB)
- diff from 2.04-1ubuntu19 to 2.04-1ubuntu20 (804 bytes)
| Superseded in focal-proposed |
grub2 (2.04-1ubuntu19) focal; urgency=medium
* uefi-firmware: rename fwsetup menuentry to UEFI Firmware Settings
(LP: #1864547)
* build-efi-images: add smbios module to the prebuilt signed EFI images
(LP: #1856424)
-- Dimitri John Ledkov <email address hidden> Mon, 24 Feb 2020 20:34:13 +0000
Available diffs
grub2 (2.04-1ubuntu18) focal; urgency=medium * Cherry-pick fix from Colin W. in debian to build with python3. -- Didier Roche <email address hidden> Thu, 06 Feb 2020 18:37:44 +0100
Available diffs
- diff from 2.04-1ubuntu16 to 2.04-1ubuntu18 (13.0 KiB)
- diff from 2.04-1ubuntu17 to 2.04-1ubuntu18 (634 bytes)
| Superseded in focal-proposed |
grub2 (2.04-1ubuntu17) focal; urgency=medium
* Fix ZFS menu generation with ZFS 0.8.x where mounted datasets can’t list
snapshots due to an upstream change.
https://github.com/zfsonlinux/zfs/issues/9958
-- Didier Roche <email address hidden> Thu, 06 Feb 2020 18:20:16 +0100
Available diffs
- diff from 2.04-1ubuntu16 to 2.04-1ubuntu17 (12.7 KiB)
grub2 (2.04-1ubuntu16) focal; urgency=medium
* Revert "Add smbios module to build-efi-images script" from previous
upload, pending review see https://bugs.launchpad.net/bugs/1856424
-- Dimitri John Ledkov <email address hidden> Sun, 15 Dec 2019 01:28:49 +0000
Available diffs
- diff from 2.04-1ubuntu14 to 2.04-1ubuntu16 (9.3 KiB)
- diff from 2.04-1ubuntu15 to 2.04-1ubuntu16 (604 bytes)
| Superseded in focal-proposed |
grub2 (2.04-1ubuntu15) focal; urgency=medium
* ubuntu-efi-allow-loopmount-chainload.patch:
- Enable chainloading EFI apps from loopmounts
* cherrypick-lsefisystab-define-smbios3.patch:
* cherrypick-smbios-modules.patch:
- Cherrypick from 2.05 module for retrieving SMBIOS information
* cherrypick-lsefisystab-show-dtb.patch:
- If dtb is provided by the firmware / DtbLoader driver, display it in
human form, rather than just UUID
* Add smbios module to build-efi-images script
-- Dimitri John Ledkov <email address hidden> Fri, 13 Dec 2019 11:24:21 +0000
Available diffs
grub2 (2.04-1ubuntu14) focal; urgency=medium
* debian/patches/ubuntu-zfs-enhance-support.patch:
- Handle the case where grub-probe returns several devices for a single
pool (LP: #1848856). Thanks jpb for the report and the proposed patch.
- Add savedefault to non-recovery entries (LP: #1850202). Thanks Deltik
for the patch.
- Do not crash on invalid fstab and report the invalid entry.
(LP: #1849347) Thanks Deltik for the patch.
- When a pool fails to import, catch and display the error message and
continue with other pools. Import all the pools in readonly mode so we
can import other pools with unsupported features (LP: #1848399) Thanks
satmandu for the investigation and the proposed patch
-- Jean-Baptiste Lallement <email address hidden> Mon, 18 Nov 2019 11:22:43 +0100
Available diffs
- diff from 2.04-1ubuntu13 to 2.04-1ubuntu14 (12.9 KiB)
grub2 (2.02-2ubuntu8.14) bionic; urgency=medium
* Fix kexec on ACPI/UEFI ARM systems w/ crashkernel reserved memory
beyond the 4GiB boundary. (LP: #1851190)
* Apply patch from Peter Jones to forbid the "devicetree" command when
Secure Boot is enabled. (LP: #1851897)
-- dann frazier <email address hidden> Sun, 10 Nov 2019 22:52:35 -0700
Available diffs
grub2 (2.02+dfsg1-12ubuntu2.1) disco; urgency=medium
* Apply patch from Peter Jones to forbid the "devicetree" command when
Secure Boot is enabled. (LP: #1851897)
-- dann frazier <email address hidden> Sun, 10 Nov 2019 11:17:51 -0700
Available diffs
grub2 (2.04-1ubuntu12.1) eoan; urgency=medium
* debian/patches/ubuntu-tpm-unknown-error-non-fatal.patch: treat "unknown"
TPM errors as non-fatal, but still write up the details as debug messages
so we can further track what happens with the systems throwing those up.
(LP: #1848892)
* debian/patches/ubuntu-linuxefi.patch: Drop extra check for Secure Boot
status in linuxefi_secure_validate(); it's unnecessary and blocking boot
in chainload (like chainloading Windows) when SB is disabled.
(LP: #1845289)
-- Mathieu Trudel-Lapierre <email address hidden> Fri, 01 Nov 2019 15:16:43 -0400
Available diffs
grub2 (2.04-1ubuntu13) focal; urgency=medium
* debian/patches/ubuntu-tpm-unknown-error-non-fatal.patch: treat "unknown"
TPM errors as non-fatal, but still write up the details as debug messages
so we can further track what happens with the systems throwing those up.
(LP: #1848892)
* debian/patches/ubuntu-linuxefi.patch: Drop extra check for Secure Boot
status in linuxefi_secure_validate(); it's unnecessary and blocking boot
in chainload (like chainloading Windows) when SB is disabled.
(LP: #1845289)
-- Mathieu Trudel-Lapierre <email address hidden> Thu, 31 Oct 2019 17:58:47 -0400
Available diffs
grub2 (2.02~beta2-36ubuntu3.23) xenial; urgency=medium
* d/p/fix_booting_for_large_root_volumes.patch: Cherry pick upstream
fix for booting on systems with large root volumes, either by default
or from resizing. (LP: #1840686)
-- Matthew Ruffell <email address hidden> Sat, 19 Oct 2019 17:47:16 +1300
Available diffs
| Superseded in focal-release |
| Obsolete in eoan-release |
| Deleted in eoan-proposed (Reason: moved to Release) |
grub2 (2.04-1ubuntu12) eoan; urgency=medium
* Move our identifier to com.ubuntu
As we are not going to own org.zsys, move our identifier under
com.ubuntu.zsys (LP: #1847711)
-- Didier Roche <email address hidden> Fri, 11 Oct 2019 15:57:47 +0200
Available diffs
- diff from 2.04-1ubuntu11 to 2.04-1ubuntu12 (10.5 KiB)
grub2 (2.04-1ubuntu11) eoan; urgency=medium
* Load all kernels (even those without .efi.signed) for secure boot mode
as those are signed kernels on ubuntu, loaded by the shim. (LP: #1847581)
-- Didier Roche <email address hidden> Thu, 10 Oct 2019 11:40:44 +0200
Available diffs
grub2 (2.04-1ubuntu10) eoan; urgency=medium
* debian/patches/ubuntu-skip-disk-by-id-lvm-pvm-uuid-entries.patch:
skip /dev/disk/by-id/lvm-pvm-uuid entries from device iteration.
(LP: #1838525)
-- Rafael David Tinoco <email address hidden> Mon, 07 Oct 2019 23:23:54 -0300
Available diffs
grub2 (2.04-1ubuntu9) eoan; urgency=medium
* debian/patches/ubuntu-zfs-enhance-support.patch:
- Handle case of pure zfs only snapshots giving additional "}", and as
such, creating invalid grub menu.
Spotted by grubzfs-testsuite autopkgtests.
Available diffs
- diff from 2.04-1ubuntu6 to 2.04-1ubuntu9 (17.3 KiB)
- diff from 2.04-1ubuntu8 to 2.04-1ubuntu9 (10.6 KiB)
| Superseded in eoan-proposed |
grub2 (2.04-1ubuntu8) eoan; urgency=medium
* debian/patches/install-signed.patch -> ubuntu-install-signed.patch:
Really fix the installation of UEFI artefacts to the distributor path (we
only want shim, grub, and MokManager, and shim's boot.csv there), and to
the removable /EFI/BOOT path (where we want shim and fallback only).
Rename the patch to ubuntu- like others that are Ubuntu-specific or
otherwise modified to avoid such confusion at merge time in the future.
-- Mathieu Trudel-Lapierre <email address hidden> Tue, 01 Oct 2019 11:29:24 -0400
Available diffs
- diff from 2.04-1ubuntu7 to 2.04-1ubuntu8 (11.4 KiB)
| Superseded in eoan-proposed |
grub2 (2.04-1ubuntu7) eoan; urgency=medium
* debian/patches/ubuntu-zfs-enhance-support.patch:
Disable history entry under some conditions:
- Don't show up if the system is a zsys one and zsys isn't installed
(LP: #1845333)
- Don't show for pure zfs systems: we identified multiple issues due
to the mount generator in upstream zfs which makes it incompatible.
Disable for now (LP: #1845913)
-- Didier Roche <email address hidden> Mon, 30 Sep 2019 09:35:03 +0200
Available diffs
- diff from 2.04-1ubuntu6 to 2.04-1ubuntu7 (11.0 KiB)
grub2 (2.04-1ubuntu6) eoan; urgency=medium
* debian/patches/install-signed.patch: fix paths for MokManager/fallback;
shim no longer ships these with a .signed suffix. (LP: #1845466)
-- Mathieu Trudel-Lapierre <email address hidden> Thu, 26 Sep 2019 09:48:07 -0400
Available diffs
- diff from 2.04-1ubuntu5 to 2.04-1ubuntu6 (7.1 KiB)
grub2 (2.04-1ubuntu5) eoan; urgency=medium
* d/patches/ubuntu-boot-from-multipath-dependent-symlink.patch: fix
mis-spelling of helper function in final computation of GRUB_DEVICE in
multipath case.
-- Michael Hudson-Doyle <email address hidden> Tue, 13 Aug 2019 08:56:16 +1200
Available diffs
- diff from 2.04-1ubuntu4 to 2.04-1ubuntu5 (999 bytes)
grub2 (2.04-1ubuntu4) eoan; urgency=medium
* d/patches/ubuntu-boot-from-multipath-dependent-symlink.patch: when / is
multipathed there will be multiple paths to the partition, so using
root=UUID= exposes the boot process to udev races. In addition
grub-probe --target device / in this case reports /dev/dm-1 or similar --
better to use a symlink that depends on the multipath name. (LP: #1429327)
-- Michael Hudson-Doyle <email address hidden> Tue, 06 Aug 2019 12:37:18 +1200
Available diffs
- diff from 2.04-1ubuntu3 to 2.04-1ubuntu4 (1.8 KiB)
grub2 (2.04-1ubuntu3) eoan; urgency=medium
[ Mathieu Trudel-Lapierre ]
* debian/patches/ubuntu-add-devicetree-command-support.patch: import patch
into git-dpm: drop [PATCH] tag and add Patch-Name.
[ Didier Roche ]
* debian/patches/ubuntu-zfs-enhance-support.patch
- Don't patch autoregenerated files.
- rewrite generate MenuMeta implementation in shell (LP: #1834095)
mawk doesn't support \s and other array features.
+ Change \s by their space or tab equivalent.
+ Rewrite the menumeta generation in pure shell, which is easier to
debug, keeping globally the same algorithm
+ Support i18n in entry name generation.
Co-authored with Jean-Baptiste.
- Resplit all patches in debian/patches/*, so that we have upstreamable
and non upstreamable parts separate. Also, any change in 10_linux patch
will be reflected in 10_linux_zfs.
- Always import pools (using force), as we don't mount them. Ensure also
that we don't update the host cache, as we import all pools, and not
only those attached to that system.
-- Didier Roche <email address hidden> Mon, 29 Jul 2019 08:08:48 +0200
Available diffs
- diff from 2.04-1ubuntu2 to 2.04-1ubuntu3 (24.1 KiB)
grub2 (2.04-1ubuntu2) eoan; urgency=medium * Add device-tree command support as installed by flash-kernel. -- Dimitri John Ledkov <email address hidden> Wed, 17 Jul 2019 23:47:27 +0100
Available diffs
- diff from 2.04-1ubuntu1 to 2.04-1ubuntu2 (1.2 KiB)
grub2 (2.04-1ubuntu1) eoan; urgency=medium
* Merge against Debian; remaining changes:
- debian/control: Update Vcs fields for code location on Ubuntu.
- debian/control: Breaks shim (<< 13).
- debian/patches/linuxefi.patch: Secure Boot support: use newer patchset
from rhboot repo, flattened to a single patch.
- debian/patches/install_signed.patch, grub-install-extra-removable.patch:
- Make sure if we install shim; it should also be exported as the default
bootloader to install later to a removable path, if we do.
- Rework grub-install-extra-removable.patch to reverse its logic: in the
default case, install the bootloader to /EFI/BOOT, unless we're trying
to install on a removable device, or explicitly telling grub *not* to
do it.
- Install a BOOT.CSV for fallback to use.
- Make sure postinst and templates know about the replacement of
--force-extra-removable with --no-extra-removable.
- debian/patches/ubuntu-support-initrd-less-boot.patch: allow non-initrd
boot config.
- debian/patches/ubuntu-add-initrd-less-boot-fallback.patch: If a kernel
fails to boot without initrd, we will fallback to trying to boot the
kernel with an initrd.
- debian/patches/ubuntu-mkconfig-leave-breadcrumbs.patch: make sure
grub-mkconfig leaves a trace of what files were sourced to help generate
the config we're building.
- debian/patches/ubuntu-efi-console-set-text-mode-as-needed.patch: in EFI
console, only set text-mode when we're actually going to need it.
- debian/patches/ubuntu-zfs-enhance-support.patch: Better ZFS grub support.
- Disable os-prober for ppc64el on the PowerNV platform, to reduce the
number of entries/clutter from other OSes in Petitboot
- debian/patches/ubuntu-shorter-version-info.patch: Only show the upstream
version in menu and console, and hide the package one in a
package_version variable.
- Verify that the current and newer kernels are signed when grub is
updated, to make sure people do not accidentally shutdown without a
signed kernel.
- debian/default/grub: replace GRUB_HIDDEN_* variables with the less
confusing GRUB_TIMEOUT_STYLE=hidden.
- debian/rules: shuffle files around for now to keep build artefacts
for signing at the same location as they were expected by Launchpad.
- debian/rules, debian/control: enable dh-systemd.
- debian/grub-common.install.in: install the systemd unit that's part of
initrd fallback handling, missed when the feature landed.
- debian/build-efi-images: add http module to NET_MODULES.
* debian/patches/linuxefi*.patch: Flatten linuxefi patches into one.
* debian/patches: rename patches to use "-" as a separator rather than "_".
* debian/patches: rename Ubuntu-specific patches and commits to add "ubuntu"
so it's clearer which are new or changed when doing a merge.
* debian/patches/ubuntu-fix-lzma-decompressor-objcopy.patch: fix FTBFS due
to objcopy building an invalid binary padded with zeroes (LP: #1833234)
* debian/patches/ubuntu-clear-invalid-initrd-spacing.patch: clear up invalid
spacing for the initrd command when not using early initrds.
* debian/patches/ubuntu-add-initrd-less-boot-fallback.patch: move the initrd
boot success/failure service to start later at boot time. (LP: #1823391)
* debian/patches/fix-lockdown.patch: Drop lockdown patch from Debian, which
breaks with new linuxefi patchset.
* debian/patches/ubuntu-temp-keep-auto-nvram.patch: Temporarily keep the
--auto-nvram option we previously had as a supported option in grub-install
(with no effect now), to avoid breaking upgrades. "auto-nvram" is default
behavior now that we use libefivar instead of calling efibootmgr.
Available diffs
grub2 (2.02+dfsg1-12ubuntu3) eoan; urgency=medium
* debian/patches/zfs_enhance_support.patch:
Enhance ZFS grub support:
- Support multiple zfs systems (grouped by machine-id)
- Group zfs snapshots and clones with latest dataset for a given
installation.
- Support "history" entry with one time boot, recovery mode and
consecutive reboots.
- Pin kernel to particular snapshot, trying to reboot with the exact
same kernel and initrd.
- Disable in 10_linux zfs support if 10_linux_zfs is installed so that
we don't end up with the same installation multiple times.
* debian/patches/*:
- Apply ubuntu/debian specific changes of 10_linux to 10_linux_zfs.
Work done with Jean-Baptiste.
-- Didier Roche <email address hidden> Mon, 17 Jun 2019 11:28:48 +0200
Available diffs
grub2 (2.02~beta2-36ubuntu3.22) xenial; urgency=medium
* debian/patches/skip_text_gfxpayload_where_not_supported.patch: Skip the
'text' payload if it's not supported but present in gfxpayload, such as
on EFI systems. (LP: #1826453)
-- Mathieu Trudel-Lapierre <email address hidden> Mon, 29 Apr 2019 10:04:24 -0400
Available diffs
grub2 (2.02~beta2-9ubuntu1.17) trusty; urgency=medium
* debian/grub-check-signatures: check kernel signatures against keys known
in firmware, in case a kernel is signed but not using a key that will pass
validation, such as when using kernels coming from a PPA. (LP: #1789918)
* debian/patches/linuxefi_disable_sb_fallback.patch: Disallow unsigned
kernels if UEFI Secure Boot is enabled. If UEFI Secure Boot is enabled
and kernel signature verification fails, do not boot the kernel. Patch
from Linn Crosetto. (LP: #1401532)
-- Mathieu Trudel-Lapierre <email address hidden> Fri, 22 Mar 2019 11:36:54 -0400
Available diffs
grub2 (2.02~beta2-36ubuntu3.21) xenial; urgency=medium
* debian/patches/squash4-fix-fragments-and-sparse-files.patch: Cherry-pick
upstream patch to fix handling of fragments and sparse files in squashfs
filesystems (LP: #1820898).
-- Colin Watson <email address hidden> Wed, 20 Mar 2019 00:31:55 +0000
Available diffs
grub2 (2.02-2ubuntu8.13) bionic; urgency=medium * debian/build-efi-images: add HTTP to generated UEFI images. (LP: #1787630) * debian/config.in, debian/grub-common.dirs, debian/postinst.in, debian/postrm.in: cherry-pick Colin's changes to ucf handling from 2.02+dfsg1-11 to avoid unnecessarily prompting about grub.cfg changes. (LP: #564853) -- Mathieu Trudel-Lapierre <email address hidden> Mon, 18 Mar 2019 12:11:57 -0400
Available diffs
grub2 (2.02+dfsg1-5ubuntu8.3) cosmic; urgency=medium * debian/build-efi-images: add HTTP to generated UEFI images. (LP: #1787630) * debian/config.in, debian/grub-common.dirs, debian/postinst.in, debian/postrm.in: cherry-pick Colin's changes to ucf handling from 2.02+dfsg1-11 to avoid unnecessarily prompting about grub.cfg changes. (LP: #564853) -- Mathieu Trudel-Lapierre <email address hidden> Mon, 18 Mar 2019 12:01:26 -0400
Available diffs
| Superseded in eoan-release |
| Obsolete in disco-release |
| Deleted in disco-proposed (Reason: moved to release) |
grub2 (2.02+dfsg1-12ubuntu2) disco; urgency=medium
* debian/patches/efi-console-set-text-mode-as-needed.patch: in EFI console,
only set text-mode when we're actually going to need it.
* debian/build-efi-images: add http module to NET_MODULES. (LP: #1787630)
-- Mathieu Trudel-Lapierre <email address hidden> Mon, 11 Mar 2019 17:48:49 -0400
Available diffs
grub2 (2.02+dfsg1-12ubuntu1) disco; urgency=medium * Merge against Debian unstable; remaining changes (LP: #564853): - debian/control: Update Vcs fields for code location on Ubuntu. - debian/control: Breaks shim (<< 13). - Secure Boot support: use newer patchset from rhboot repo: - many linuxefi_* patches added and modified - dropped debian/patches/linuxefi_require_shim.patch - renamed: debian/patches/no_insmod_on_sb.patch -> debian/patches/linuxefi_no_insmod_on_sb.patch - debian/patches/install_signed.patch, grub-install-extra-removable.patch: - Make sure if we install shim; it should also be exported as the default bootloader to install later to a removable path, if we do. - Rework grub-install-extra-removable.patch to reverse its logic: in the default case, install the bootloader to /EFI/BOOT, unless we're trying to install on a removable device, or explicitly telling grub *not* to do it. - Install a BOOT.CSV for fallback to use. - Make sure postinst and templates know about the replacement of --force-extra-removable with --no-extra-removable. - debian/patches/add-an-auto-nvram-option-to-grub-install.patch: Add the --auto-nvram option to grub-install for auto-detecting NVRAM availability before attempting NVRAM updates. - debian/build-efi-images: provide a new grub EFI image which enforces that loaded kernels are signed for Secure Boot: build gsb$arch.efi; which is the same as grub$arch.efi minus the 'linux' module. Without fallback to 'linux' for unsigned loading, this makes it effectively enforce having a signed kernel. - Verify that the current and newer kernels are signed when grub is updated, to make sure people do not accidentally shutdown without a signed kernel. - debian/default/grub: replace GRUB_HIDDEN_* variables with the less confusing GRUB_TIMEOUT_STYLE=hidden. - debian/patches/support_initrd-less_boot.patch: Added knobs to allow non-initrd boot config. - Disable os-prober for ppc64el on the PowerNV platform, to reduce the number of entries/clutter from other OSes in Petitboot - debian/patches/shorter_version_info.patch: Only show the upstream version in menu and console, and hide the package one in a package_version variable. - debian/patches/skip_text_gfxpayload_where_not_supported.patch: Skip the 'text' payload if it's not supported but present in gfxpayload, such as on EFI systems. - debian/patches/bufio_sensible_block_sizes.patch: Don't use arbitrary file fizes as block sizes in bufio: this avoids potentially seeking back in the files unnecessarily, which may require re-open files that cannot be seeked into, such as via TFTP. - debian/patches/ofnet-init-structs-in-bootpath-parser.patch: initialize structs in bootpath parser. - debian/rules: shuffle files around for now to keep build artefacts for signing at the same location as they were expected by Launchpad. - debian/rules, debian/control: enable dh-systemd. - debian/grub-common.install.in: install the systemd unit that's part of initrd fallback handling, missed when the feature landed. - debian/patches/quick-boot-lvm.patch: If we don't have writable grubenv and we're on EFI, always show the menu. - debian/patches/mkconfig_leave_breadcrumbs.patch: make sure grub-mkconfig leaves a trace of what files were sourced to help generate the config we're building. - debian/patches/linuxefi_truncate_overlong_reloc_section.patch: Windows 7 bootloader has inconsistent headers; truncate to the smaller, correct size to fix chainloading Windows 7. - debian/patches/linuxefi_fix_relocate_coff.patch: fix typo in relocate_coff() causing issues with relocation of code in chainload. - debian/patches/add-initrd-less-boot-fallback.patch: add initrd-less capabilities. If a kernel fails to boot without initrd, we will fallback to trying to boot the kernel with an initrd. Patch by Chris Glass. - debian/patches/grub-reboot-warn.patch: Warn when "for the next boot only" promise cannot be kept. * Refreshed patches and fixed up attribution to the right authors after merge with Debian. * debian/patches/linuxefi_missing_include.patch, debian/patches/linuxefi_fixing_more_errors.patch: Apply some additional small fixes to casts, format strings, includes and Makefile to make sure the newer linuxefi patches apply and build properly.
Available diffs
grub2 (2.02-2ubuntu8.12) bionic; urgency=medium
* debian/grub-check-signatures: make sure grub-check-signatures conserves
its execute bit.
Available diffs
- diff from 2.02-2ubuntu8.10 to 2.02-2ubuntu8.12 (2.2 KiB)
- diff from 2.02-2ubuntu8.11 to 2.02-2ubuntu8.12 (335 bytes)
| Superseded in bionic-proposed |
grub2 (2.02-2ubuntu8.11) bionic; urgency=medium
[ Mathieu Trudel-Lapierre ]
* debian/grub-check-signatures: properly account for DB showing as empty on
some broken firmwares: Guard against mokutil --export --db failing, and do
a better job at finding the DER certs for conversion to PEM format.
(LP: #1814575)
* debian/patches/linuxefi_disable_sb_fallback.patch: Disallow unsigned
kernels if UEFI Secure Boot is enabled. If UEFI Secure Boot is enabled
and kernel signature verification fails, do not boot the kernel. Patch
from Linn Crosetto. (LP: #1401532)
[ Steve Langasek ]
* debian/patches/quick-boot-lvm.patch: checking the return value of
'lsefi' when the command doesn't exist does not do what's expected, so
instead check the value of $grub_platform which is simpler anyway.
LP: #1814403.
-- Mathieu Trudel-Lapierre <email address hidden> Tue, 05 Feb 2019 12:26:27 -0500
Available diffs
grub2 (2.02+dfsg1-5ubuntu8.2) cosmic; urgency=medium
[ Mathieu Trudel-Lapierre ]
* debian/grub-check-signatures: properly account for DB showing as empty on
some broken firmwares: Guard against mokutil --export --db failing, and do
a better job at finding the DER certs for conversion to PEM format.
(LP: #1814575)
[ Steve Langasek ]
* debian/patches/quick-boot-lvm.patch: checking the return value of
'lsefi' when the command doesn't exist does not do what's expected, so
instead check the value of $grub_platform which is simpler anyway.
LP: #1814403.
-- Mathieu Trudel-Lapierre <email address hidden> Tue, 05 Feb 2019 11:05:56 -0500
Available diffs
grub2 (2.02+dfsg1-5ubuntu11) disco; urgency=medium
[ Mathieu Trudel-Lapierre ]
* debian/grub-check-signatures: properly account for DB showing as empty on
some broken firmwares: Guard against mokutil --export --db failing, and do
a better job at finding the DER certs for conversion to PEM format.
(LP: #1814575)
[ Steve Langasek ]
* debian/patches/quick-boot-lvm.patch: checking the return value of
'lsefi' when the command doesn't exist does not do what's expected, so
instead check the value of $grub_platform which is simpler anyway.
LP: #1814403.
-- Mathieu Trudel-Lapierre <email address hidden> Mon, 04 Feb 2019 17:51:15 -0500
Available diffs
grub2 (2.02-2ubuntu8.10) bionic; urgency=medium
[ Mathieu Trudel-Lapierre ]
* debian/grub-check-signatures: check kernel signatures against keys known
in firmware, in case a kernel is signed but not using a key that will pass
validation, such as when using kernels coming from a PPA. (LP: #1789918)
* debian/patches/mkconfig_leave_breadcrumbs.patch: make sure grub-mkconfig
leaves a trace of what files were sourced to help generate the config
we're building. (LP: #1812863)
[ Steve Langasek ]
* debian/patches/quick-boot-lvm.patch: If we don't have writable
grubenv and we're on EFI, always show the menu. Closes LP: #1800722.
-- Mathieu Trudel-Lapierre <email address hidden> Wed, 09 Jan 2019 14:04:09 -0500
Available diffs
grub2 (2.02+dfsg1-5ubuntu8.1) cosmic; urgency=medium
[ Mathieu Trudel-Lapierre ]
* debian/grub-check-signatures: check kernel signatures against keys known
in firmware, in case a kernel is signed but not using a key that will pass
validation, such as when using kernels coming from a PPA. (LP: #1789918)
* debian/patches/mkconfig_leave_breadcrumbs.patch: make sure grub-mkconfig
leaves a trace of what files were sourced to help generate the config
we're building. (LP: #1812863)
[ Steve Langasek ]
* debian/patches/quick-boot-lvm.patch: If we don't have writable
grubenv and we're on EFI, always show the menu. Closes LP: #1800722.
-- Mathieu Trudel-Lapierre <email address hidden> Tue, 22 Jan 2019 09:57:07 -0500
Available diffs
grub2 (2.02+dfsg1-5ubuntu10) disco; urgency=medium
* debian/grub-check-signatures: check kernel signatures against keys known
in firmware, in case a kernel is signed but not using a key that will pass
validation, such as when using kernels coming from a PPA. (LP: #1789918)
-- Mathieu Trudel-Lapierre <email address hidden> Mon, 21 Jan 2019 09:34:36 -0500
Available diffs
grub2 (2.02~beta2-9ubuntu1.16) trusty; urgency=medium
[ Ivan Hu ]
* debian/patches/0001-i386-linux-Add-support-for-ext_lfb_base.patch:
Add support for ext_lfb_base. (LP: #1785033)
[ dann frazier ]
* Add grub2/update_nvram template to allow users to disable NVRAM
updates during package upgrades (LP: #1642298).
[ Mathieu Trudel-Lapierre ]
* debian/patches: Rework linuxefi/SecureBoot support and sync with upstream
SB patch set: (LP: #1696599)
- linuxefi_backport_arm64.patch: backport basic arm64 chainload/linux
command support from 17.04.
- linuxefi_arm_sb_support.patch: add Secure Boot support for arm for its
chainloader.
- linuxefi_fix_validation_race.patch: Fix a race in validating images.
- linuxefi_chainloader_path.patch: honor the starting path for grub, so
images do not need to be started from $root.
- linuxefi_chainloader_sb.patch: Fix some more issues in chainloader use
when Secure Boot is enabled.
- linuxefi_loaders_enforce_sb.patch: Enforce Secure Boot policy for all
loaders: don't load the commands when Secure Boot is enabled.
- linuxefi_re-enable_linux_cmd.patch: Since we rely on the linux and
initrd commands to automatically hand-off to linuxefi/initrdefi; re-
enable the linux loader.
- linuxefi_chainloader_pe_fixes.patch: PE parsing fixes for chainloading
"special" PE images, such as Windows'.
- linuxefi_rework_non-sb_cases.patch: rework cases where Secure Boot is
disabled or shim validation is disabled so loading works as EFI binaries
when it is supposed to.
- Removed linuxefi_require_shim.patch; superseded by the above.
- Removed linuxefi_amd64_only.patch; superseded by the above.
- Refreshed patches.
* debian/rules: disable the use of -Werror while building grub; the EFI
patches have subtle cases which trip it up unnecessarily.
* debian/patches/arm64-set-correct-length-of-device-path-end-entry.patch:
dropped; included in linuxefi_backport_arm64.patch.
* debian/patches/linuxefi_fix_relocate_coff.patch: fix typo in
relocate_coff() causing issues with relocation of code in chainload.
(LP: #1792575)
* debian/patches/linuxefi_truncate_overlong_relocs.patch: The Windows
7 bootloader has inconsistent headers; truncate to the smaller, correct
size to fix chainloading Windows 7. (LP: #1792575)
-- Mathieu Trudel-Lapierre <email address hidden> Tue, 08 Jan 2019 12:36:49 -0500
Available diffs
| Superseded in disco-proposed |
grub2 (2.02+dfsg1-5ubuntu10~mtrudel5) disco; urgency=medium
* debian/grub-check-signatures: check kernel signatures against keys known
in firmware, in case a kernel is signed but not using a key that will pass
validation, such as when using kernels coming from a PPA. (LP: #1789918)
-- Mathieu Trudel-Lapierre <email address hidden> Fri, 11 Jan 2019 11:20:56 -0500
Available diffs
grub2 (2.02+dfsg1-5ubuntu9) disco; urgency=medium
[ Steve Langasek ]
* debian/patches/quick-boot-lvm.patch: If we don't have writable
grubenv and we're on EFI, always show the menu. Closes LP: #1800722.
[ Mathieu Trudel-Lapierre ]
* debian/patches/mkconfig_leave_breadcrumbs.patch: make sure grub-mkconfig
leaves a trace of what files were sourced to help generate the config
we're building.
-- Mathieu Trudel-Lapierre <email address hidden> Mon, 07 Jan 2019 17:32:01 -0500
Available diffs
grub2 (2.02-2ubuntu8.9) bionic; urgency=medium
[ Mathieu Trudel-Lapierre ]
* debian/default/grub.md5sum: add entry for 2.02-2ubuntu8.7; to force an
update of /etc/default/grub back to the correct timeout value of 0 if the
file has otherwise not been edited by the user. (LP: #1784363)
[ Steve Langasek ]
* debian/grub-check-signatures: Handle the case where we have unsigned
vmlinuz and signed vmlinuz.efi.signed. (LP: #1788727)
-- Mathieu Trudel-Lapierre <email address hidden> Thu, 08 Nov 2018 10:53:28 -0500
Available diffs
- diff from 2.02-2ubuntu8.7 to 2.02-2ubuntu8.9 (1.1 KiB)
- diff from 2.02-2ubuntu8.8 to 2.02-2ubuntu8.9 (875 bytes)
grub2 (2.02~beta2-36ubuntu3.20) xenial; urgency=medium
* debian/patches/linuxefi_fix_relocate_coff.patch: fix typo in
relocate_coff() causing issues with relocation of code in chainload.
(LP: #1792575)
* debian/patches/linuxefi_truncate_overlong_reloc_section.patch: The Windows
7 bootloader has inconsistent headers; truncate to the smaller, correct
size to fix chainloading Windows 7. (LP: #1792575)
Available diffs
| Superseded in disco-release |
| Obsolete in cosmic-release |
| Deleted in cosmic-proposed (Reason: moved to release) |
grub2 (2.02+dfsg1-5ubuntu8) cosmic; urgency=medium
* debian/patches/grub-install-extra-removable.patch: install mmx64.efi to
the EFI removable path to avoid boot failures after install when certs
need to be enrolled and the system's firmware is confused. (LP: #1798171)
-- Mathieu Trudel-Lapierre <email address hidden> Wed, 17 Oct 2018 14:44:49 -0400
Available diffs
| Superseded in bionic-proposed |
grub2 (2.02-2ubuntu8.8) bionic; urgency=medium
* debian/rules: set DEFAULT_TIMEOUT=0 for flicker-free boot scenarios (all
arches but ppc64el) to avoid 10 second delays at boot not showing a menu.
(LP: #1784363)
-- Mathieu Trudel-Lapierre <email address hidden> Fri, 12 Oct 2018 15:29:35 -0400
Available diffs
- diff from 2.02-2ubuntu8.7 to 2.02-2ubuntu8.8 (581 bytes)
grub2 (2.02+dfsg1-5ubuntu7) cosmic; urgency=medium
[ Steve Langasek ]
* debian/grub-common.install.in: install the systemd unit that's part of
initrd fallback handling, missed when the feature landed.
[ Mathieu Trudel-Lapierre ]
* debian/rules: set DEFAULT_TIMEOUT to 0 if we've enabled FLICKER_FREE_BOOT,
to avoid unnecessary delay at boot time. (LP: #1784363)
-- Mathieu Trudel-Lapierre <email address hidden> Fri, 12 Oct 2018 11:10:10 -0400
Available diffs
grub2 (2.02-2ubuntu8.7) bionic; urgency=medium
* debian/patches/0001-i386-linux-Add-support-for-ext_lfb_base.patch:
Add support for ext_lfb_base. (LP: #1785033)
-- Ivan Hu <email address hidden> Thu, 11 Oct 2018 08:39:26 -0400
Available diffs
grub2 (2.02+dfsg1-5ubuntu6) cosmic; urgency=medium
[ Steve Langasek ]
* debian/grub-check-signatures: Handle the case where we have unsigned
vmlinuz and signed vmlinuz.efi.signed. (LP: #1788727)
-- Mathieu Trudel-Lapierre <email address hidden> Wed, 03 Oct 2018 14:59:05 -0400
Available diffs
grub2 (2.02-2ubuntu8.6) bionic; urgency=medium
* debian/patches/linuxefi_fix_relocate_coff.patch: fix typo in
relocate_coff() causing issues with relocation of code in chainload.
(LP: #1792575)
* debian/patches/linuxefi_truncate_overlong_reloc_section.patch: The Windows
7 bootloader has inconsistent headers; truncate to the smaller, correct
size to fix chainloading Windows 7. (LP: #1792575)
Available diffs
grub2 (2.02+dfsg1-5ubuntu5) cosmic; urgency=medium
[ Mathieu Trudel-Lapierre ]
* debian/patches/linuxefi_truncate_overlong_reloc_section.patch: The Windows
7 bootloader has inconsistent headers; truncate to the smaller, correct
size to fix chainloading Windows 7.
[ Steve Langasek ]
* debian/rules, debian/control: enable dh-systemd.
* debian/patches/add-initrd-less-boot-fallback.patch: add initrd-less
capabilities. If a kernel fails to boot without initrd, grub will fallback
to trying to boot the kernel with an initrd. Patch by Chris Glass.
-- Mathieu Trudel-Lapierre <email address hidden> Tue, 25 Sep 2018 16:05:13 -0400
Available diffs
| 76 → 150 of 506 results | First • Previous • Next • Last |
