Created attachment 1818518 [details] screenshot 1. Please describe the problem: error: ../../grub-core/kern/efi/sb.c:150:bad shim signature. error: ../../grub-core/loader/i386/efi/linux.c:208:you need to load the kernel first. Press any key to continue... 2. What is the Version-Release number of the kernel: 5.14.0-0.rc7.54.fc35.x86_64 5.14.0-0.rc7.55.fc35.x86_64 3. Did it work previously in Fedora? If so, what kernel version did the issue *first* appear? Old kernels are available for download at https://koji.fedoraproject.org/koji/packageinfo?packageID=8 : 5.14.0-0.rc7.54.fc35.x86_64 fails as described 5.14.0-0.rc6.46.fc35.x86_64 boots ok 4. Can you reproduce this issue? If so, please provide the steps to reproduce the issue below: a. update the kernel then reboot 5. Does this problem occur with the latest Rawhide kernel? To install the Rawhide kernel, run ``sudo dnf install fedora-repos-rawhide`` followed by ``sudo dnf update --enablerepo=rawhide kernel``: Yes 6. Are you running any modules that not shipped with directly Fedora's kernel?: No 7. Please attach the kernel logs. You can get the complete kernel log for a boot with ``journalctl --no-hostname -k > dmesg.txt``. If the issue occurred on a previous boot, use the journalctl ``-b`` flag. N/A can't boot Additional info: UEFI Secure Boot is enabled on two laptops: HP Spectre, and Lenovo ThinkPad X1 Carbon Gen 7. shim-x64-15.4-5.x86_64 grub2-common-2.06-3.fc35.noarch
Proposed as a Blocker for 35-beta by Fedora user chrismurphy using the blocker tracking app because: Basic release criterion The installed system must be able appropriately to install, remove, and update software with the default console tool for the relevant software type (e.g. default console package manager). This includes downloading of packages to be installed/updated. And also: All release-blocking images must boot in their supported configurations.
Fedora-Workstation-Live-x86_64-35-20210827.n.1.iso contains vmlinuz-5.14.0-0.rc7.54.fc35.x86_64 and likewise fails to boot. Pretty close to DOA other than it being conditional on UEFI Secure Boot. https://bodhi.fedoraproject.org/updates/FEDORA-2021-1a48319b6a also has a couple reports about this.
5.14.0-60.fc36.x86_64 is booting
Discussed at 2021-08-30 blocker review meeting: https://meetbot-raw.fedoraproject.org/fedora-blocker-review/2021/fedora-blocker-review.2021-08-30-16.01.html . Accepted as a blocker as a violation of "All release-blocking images must boot in their supported configurations" with the footnote that SB is a supported configuration on x86_64.
FEDORA-2021-bcb7602690 has been submitted as an update to Fedora 35. https://bodhi.fedoraproject.org/updates/FEDORA-2021-bcb7602690
FEDORA-2021-bcb7602690 has been pushed to the Fedora 35 testing repository. Soon you'll be able to install the update with the following command: `sudo dnf upgrade --enablerepo=updates-testing --advisory=FEDORA-2021-bcb7602690` You can provide feedback for this update here: https://bodhi.fedoraproject.org/updates/FEDORA-2021-bcb7602690 See also https://fedoraproject.org/wiki/QA:Updates_Testing for more information on how to test updates.
FEDORA-2021-bcb7602690 has been pushed to the Fedora 35 stable repository. If problem still persists, please make note of it in this bug report.