On 2024-06-03 09:33, Marcus Meissner wrote:
On Sun, Jun 02, 2024 at 02:58:18PM +0200, Carlos E. R. wrote:
On 2024-06-02 12:22, Marcus Meissner wrote:
On Sun, Jun 02, 2024 at 06:42:29AM +0300, Andrei Borzenkov wrote:
On 01.06.2024 23:04, Richmond via openSUSE Users wrote:
Knurpht-openSUSE wrote:
...
The usual case would be for openSUSE Leap 15.x that we released a shim 15.8 update.
This blocks all older shims (<15.8) even that from other vendors from the secure boot chain.
You need to update to the Debian shim 5.18 to make it boot again.
I don't understand how this works.
(1) UEFI boot menu--\ | \ | \ debian (2) \opensuse (3) grub grub menu----\ menu------\ | \ \ \ debian oS boot oS boot debian boot (5) (6) boot (4) (7)
I understand the shim of (3) was updated, which would affect 6 and 7 booting. But (1) is intact, so (2) should keep working, no?
No.
The boot of (3) updates a UEFI variable read by (1) saying that older shims are not considered secure boot safe anymore.
This is a global shim version indicator, so it impacts also (2).
Ow! :-( Thanks, I understand now. -- Cheers / Saludos, Carlos E. R. (from 15.5 x86_64 at Telcontar)