]> git.ipfire.org Git - thirdparty/systemd.git/commit
projects / thirdparty / systemd.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 0ccc31d) | patch
stub: restore compatibility for shim (< 16.0) -> UKI case
authorLuca Boccassi <luca.boccassi@gmail.com>
Mon, 14 Jul 2025 23:52:01 +0000 (00:52 +0100)
committerZbigniew Jędrzejewski-Szmek <zbyszek@in.waw.pl>
Wed, 23 Jul 2025 07:54:09 +0000 (09:54 +0200)
commit23d56ae890f8e7c8e29ef51e05494e445725d3ff
tree29d4ed05fae71bbd0643eb3de599b3beecd089c4tree | snapshot
parent0ccc31d964e83b2ff2b8c25aa297b2581f9d51a2commit | diff
stub: restore compatibility for shim (< 16.0) -> UKI case

It is possible to boot directly a UKI from shim, and Fedora Cloud Base UKI
does exactly this.
This used to work fine until https://github.com/systemd/systemd/pull/37372
which broke compatibility when shim < 16.0 (no loader protocol override) is
used. Shim 15.8 is still in use in several distributions, and will be for
a long time.

Restore a part of the previous implementation, and if running with secure
boot enabled, and with shim but < 16.0, apply a security override.

Follow-up for cab9c7b5a42effa8a45611fc6b8556138c869b5f

Fixes https://github.com/systemd/systemd/issues/38104
src/boot/linux.c diff | blob | blame | history
Unnamed repository; edit this file 'description' to name the repository.