Skip to content

efi/preinstall: Stop relying on BootCurrent#536

Merged
ernestl merged 2 commits intocanonical:masterfrom
chrisccoulson:preinstall-stop-relying-on-bootcurrent
Apr 10, 2026
Merged

efi/preinstall: Stop relying on BootCurrent#536
ernestl merged 2 commits intocanonical:masterfrom
chrisccoulson:preinstall-stop-relying-on-bootcurrent

Conversation

@chrisccoulson
Copy link
Copy Markdown
Contributor

@chrisccoulson chrisccoulson commented Apr 9, 2026

The PCR4 and PCR7 checks were relying on the BootCurrent EFI variable to
identify the EV_EFI_BOOT_SERVICES_APPLICATION event in the TCG log that
corresponds to the launch of the initial OS loader. This is proving
problematic on some systems:

  • Whilst some firmware populates a Boot variable containing a load
    option with a path matching the OS loader and sets BootCurrent to
    point to this when booting from removable media, some firmware
    implementations dosn't set a path that matches the OS loader, and this
    path doesn't match any event in the TCG log.
  • Some systems don't seem to have BootCurrent set at all when booting
    from removable media.

Instead, assume that the first OS-present
EV_EFI_BOOT_SERVICES_APPLICATION event that isn't Absolute is the
initial OS loader. If it isn't, the PCR4 checks will fail as expected
because os the mismsatched digest. We have to have a special case for
Absolute here because some systems measure this launch as part of
OS-present.

This also makes the checks a bit more permissive where firmware bugs
don't cause problems with generating profiles:

  • The PCR4 checks no longer enforce that there can be only one
    EV_OMIT_BOOT_DEVICE_EVENT event.
  • The PCR4 checks no longer enforce that there cannot be a EV_EFI_ACTION
    "Calling EFI Application from Boot Option" if there is a
    EV_OMIT_BOOT_DEVICE_EVENT event. We already don't enforce the
    existence of the EV_EFI_ACTION event if there is no
    EV_OMIT_BOOT_DEVICE_EVENT event even though it should be there,
    because we know that some firmware misbehaves here.
  • The PCR4 checks no longer gate the reading of the SysPrepOrder and
    SysPrep variables on the BootOptionSupport flags.

Fixes: #517
Fixes: #519

@chrisccoulson
efi/preinstall: Stop relying on BootCurrent
d62b192 
The PCR4 and PCR7 checks were relying on the BootCurrent EFI variable to
identify the EV_EFI_BOOT_SERVICES_APPLICATION event in the TCG log that
corresponds to the launch of the initial OS loader. This is proving
problematic on some systems:
- Whilst some firmware populates a Boot variable containing a load
  option with a path matching the OS loader and sets BootCurrent to
  point to this when booting from removable media, some firmware
  implementations dosn't set a path that matches the OS loader, and this
  path doesn't match any event in the TCG log.
- Some systems don't seem to have BootCurrent set at all when booting
  from removable media.

Instead, assume that the first OS-present
EV_EFI_BOOT_SERVICES_APPLICATION event that isn't Absolute is the
initial OS loader. If it isn't, the PCR4 checks will fail as expected
because os the mismsatched digest. We have to have a special case for
Absolute here because some systems measure this launch as part of
OS-present.

This also makes the checks a bit more permissive where firmware bugs
don't cause problems with generating profiles:
- The PCR4 checks no longer enforce that there can be only one
  EV_OMIT_BOOT_DEVICE_EVENT event.
- The PCR4 checks no longer enforce that there cannot be a EV_EFI_ACTION
  "Calling EFI Application from Boot Option" if there is a
  EV_OMIT_BOOT_DEVICE_EVENT event. We already don't enforce the
  existence of the EV_EFI_ACTION event if there is no
  EV_OMIT_BOOT_DEVICE_EVENT event even though it should be there,
  because we know that some firmware misbehaves here.
- The PCR4 checks no longer gate the reading of the SysPrepOrder and
  SysPrep variables on the BootOptionSupport flags.

Fixes: canonical#517
Fixes: canonical#519
@ernestl ernestl merged commit 3f8b98c into canonical:master Apr 10, 2026
2 checks passed
@cmmrandau
Copy link
Copy Markdown

cmmrandau commented Apr 30, 2026

when will this reach the installer? can't install ubuntu with fde on my x1 carbon

@frugaltech
Copy link
Copy Markdown

frugaltech commented May 4, 2026

Just adding a problem report, echoing the above:

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@valentindavid valentindavid valentindavid approved these changes

@ernestl ernestl Awaiting requested review from ernestl

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

cannot access EFI_VARIABLE on hardware (AMD Ryzen AI 5) PCR_UNUSABLE error with secure boot policy (PCR7)

5 participants

@chrisccoulson @cmmrandau @frugaltech @valentindavid @ernestl