Red Hat Bugzilla – Bug 1434314
USB devices stop working when UsbDk installed in Win10 with secure boot
Last modified: 2018-05-23 13:22:53 EDT
Description of problem: UsbDk driver currectly signed by RedHat certificate only and does not function on Win10 with secure boot enabled. After installation of UsbDk on machine with secure boot connected USB devices stop working Version-Release number of selected component (if applicable): spice-usbdk-win-1.0-17 How reproducible: 100% Steps to Reproduce: 1. Install UsbDk on Win10 machine with secure boot enabled 2. 3. Actual results: USB devices do not work Expected results: USB devices work as expected Additional info: Attestation signing by Microsoft required for UsbDk.sys driver
Also https://github.com/daynix/UsbDk/issues/42 https://github.com/daynix/UsbDk/issues/41
Fixed in v1.0.19 by adding attestation signature to Win10 binaries.
Closing based on comment #2
Moving to "Modified" as at the moment current release is 1.0.15. The problem fixed in 1.0.19
Build of UsbDk 1.0.19 https://brewweb.engineering.redhat.com/brew/buildinfo?buildID=551835
This bug is in modified status but no patches are attached to it. Can you please check if the fix is included in latest build and move to QE if so?
(In reply to Sandro Bonazzola from comment #8) > This bug is in modified status but no patches are attached to it. > Can you please check if the fix is included in latest build and move to QE > if so? USBDK modification are maintained in https://github.com/daynix/UsbDk Testing of UsbDk 0.19 was done. Radek / Tomas, can you please update this BZ?
I performed test with spice-usbdk-win-1.0-17 on Win10 client with secure boot enabled. No connected USB device worked. Then I installed spice-usbdk-win-1.0-19 all connected USB dwevices worked as expected. After connecting to rhel7.5 guest with remote-viewer (from virt-viewer-x64-2.0.msi installer) I was able to redirect USB flash disk to guest. So the fix must be included in spice-usbdk-win-1.0-19
Since the problem described in this bug report should be resolved in a recent advisory, it has been closed with a resolution of ERRATA. For information on the advisory, and where to find the updated files, follow the link below. If the solution does not work for you, open a new bug report. https://access.redhat.com/errata/RHBA-2018:1543