Secure boot issues fixed in upstream with shim 15.5 Rocky 8.6 still has shim 15.4

simple_user · June 8, 2022, 7:02pm

The upstream 8.6 release included shim version 15.5-2. It looks like that in part addresses some secure boot issues, including things like the inability to sign kernel modules on VMWare instances with secure boot enabled.

Red Hat bug: https://bugzilla.redhat.com/show_bug.cgi?format=multiple&id=1970632

See Rocky Linux 8.5 Secure Boot Error

And Rocky Linux 8.5 UEFI Secure Boot Key problem on VMware

for users of Rocky Linux affected by this.

I’m still showing shim version 15.4-2 in my Rocky 8.6 updated system. Is that because there is a delay getting the signature in place?

It’s possible I’m missing something. Is there an expected timeframe for shim 15.5 in Rocky Linux?

nazunalika · June 9, 2022, 12:22am

The shim has to be signed by Microsoft. Shim 15.5 for Rocky Linux 8 "ia32/x64" · Issue #234 · rhboot/shim-review · GitHub

simple_user · June 9, 2022, 1:28am

Perfect! Thanks so much. I hadn’t been able to dine that during my searching.

Topic		Replies	Views
Secure Boot - latest shim status? Rocky Linux General	5	562	August 25, 2023
Rocky Linux 8 ISO won't boot on ESXi - SOLVED Rocky Linux General	3	5214	August 25, 2023
Installation of Rocky 8.4 on ESXi 6.5 Rocky Linux General	9	2085	August 25, 2023
Lenovo ThinkCentre M73 - "secure boot" issue Rocky Linux General	3	1243	August 25, 2023
Rocky Linux 8.5 UEFI Install Issue Rocky Linux General	13	6950	August 25, 2023

Secure boot issues fixed in upstream with shim 15.5 Rocky 8.6 still has shim 15.4

Related Topics