Bug#1043583: systemd-boot postinst update causes EFI crash

[Maria Lisina]

Package: systemd-boot
Version: 252.12-1~deb12u1
Severity: critical
Tags: patch
Justification: breaks unrelated software
X-Debbugs-Cc: sekoohaka.sarisan at gmail.com

Dear Maintainer, when systemd-boot updates and if bootctl is-installed reports
0, it runs bootctl update --graceful without --no-variables option. It causes
EFI crash on my machine because it doesn't support nvram. Official systemd-boot
update service has this option (/usr/lib/systemd/system/systemd-boot-
update.service:21). I think it should be added to postints too.


-- System Information:
Debian Release: 12.1
  APT prefers stable-updates
  APT policy: (500, 'stable-updates'), (500, 'stable-security'), (500, 'stable-debug'), (500, 'stable')
Architecture: amd64 (x86_64)
Foreign Architectures: i386

Kernel: Linux 6.1.0-11-amd64 (SMP w/4 CPU threads; PREEMPT)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8), LANGUAGE not set
Shell: /bin/sh linked to /usr/bin/dash
Init: systemd (via /run/systemd/system)

Versions of packages systemd-boot depends on:
ii  libc6              2.36-9+deb12u1
ii  libsystemd-shared  252.12-1~deb12u1
ii  systemd-boot-efi   252.12-1~deb12u1

Versions of packages systemd-boot recommends:
ii  efibootmgr  17-2

systemd-boot suggests no packages.

-- no debconf information
-------------- next part --------------
--- postinst	2023-08-13 12:57:31.625391255 +0300
+++ postinst.1	2023-08-13 12:57:55.169585926 +0300
@@ -14,6 +14,6 @@
 fi
 
 if [ "$1" = configure ] && [ -n "$2" ] && bootctl is-installed > /dev/null 2>&1; then
-    bootctl update --graceful
+    bootctl update --no-variables --graceful
 fi
 
-------------- next part --------------
--- postinst	2023-08-13 12:57:31.625391255 +0300
+++ postinst.1	2023-08-13 12:57:55.169585926 +0300
@@ -14,6 +14,6 @@
 fi
 
 if [ "$1" = configure ] && [ -n "$2" ] && bootctl is-installed > /dev/null 2>&1; then
-    bootctl update --graceful
+    bootctl update --no-variables --graceful
 fi