Public bug reported: [ Impact ] listing available drivers shows nvidia drivers that match the current hardware installed, but it contains both drivers that are LRM prepared and the ones that are DKMS only. This can happen in a time window between releasing new drivers and respining LRM modules with these drivers. A user can therefore select a driver that is DKMS only, which will break secure boot, as signed drivers are provided in LRM package. A fix is to introduce a flag '--include-dkms' that when not enabled will make u-d-c not show nvidia drivers that have no LRM
[ Steps to reproduce ] 1. Add a PPA with nvidia-drivers that are not yet LRM prepared, in my case 2. Call 'ubuntu-drivers list' 3. observe the list of packages that is installed a typical list would llook like this: nvidia-driver-560-open, (kernel modules provided by nvidia-dkms-560-open) nvidia-driver-550, (kernel modules provided by linux-modules-nvidia-550-aws) nvidia-driver-535, (kernel modules provided by linux-modules-nvidia-535-aws) nvidia-driver-470, (kernel modules provided by linux-modules-nvidia-470-aws) First entry shows 'kernel modules provided by nvidia-dkms-560-open', while all the others have: 'kernel modules provided by linux-modules- nvidia-470-aws'. when a user chooses to install 560-open, by hand by providing the version or by using '--recommended', his system will have a broken Secure Boot as nvidia drivers are not signed. [ Test plan ] 1. simulate the issue by adding a PPa with a driver line that is not yet LRM prepare, in my case it's https://launchpad.net/~kuba-t-pawlak/+archive/ubuntu/nvidia-560 2. Call 'ubuntu-drivers list' with and without '--include-dkms' [ Expected result ] without '--include-dkms' the list of available drivers should not contain any entry that has (kernel modules provided by nvidia-dkms-YYY-ZZZ) in it, only the ones with (kernel modules provided by linux-modules-nvidia-XXX-YYY) ** Affects: ubuntu-drivers-common (Ubuntu) Importance: Undecided Status: New -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/2090924 Title: introduce --include-dkms optional flag To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/ubuntu-drivers-common/+bug/2090924/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
