Bug ID 1143853
Summary Can't access bootloader via YAST, error from perl-bootloader
Classification openSUSE
Product openSUSE Distribution
Version Leap 15.1
Hardware x86-64
OS SUSE Other
Status NEW
Severity Normal
Priority P5 - None
Component YaST2
Assignee yast2-maintainers@suse.de
Reporter eric.vanh@msg4.us
QA Contact jsrain@suse.com
Found By ---
Blocker --- 

Error message when (trying) accessing "BootLoader" in YAST:

Internal error. Please report a bug report with logs.
Run save_y2logs to get complete logs.

Caller:
/usr/lib64/ruby/gems/2.5.0/gems/cfa-0.7.0/lib/cfa/augeas_parser.rb:455:in
`report_activity_error!'

Details: Augeas parsing error: Get did not match entire input at
/etc/default/grub:11:0, lens
/usr/share/augeas/lenses/dist/sysconfig.aug:65.12-.71: 

Background:
Want to set my system to fips=1
/proc/sys/crypto doesn't exist (therefore fips_enabled doesn't either)

Changed /etc/default/grab to add: fips=1 and boot=/dev/sda1 and root=/dev/sda3

Crash at boot:
/boot/.vmlinuz-4.12(...)-default.hmac does not exist
and at the end of the splash (I can't read earlier it goes too fast) I have:
Starting dracut pre-pivot and cleanup hook...
888 dracut: FATAL: FIPS integrity test failed
888 dracut: Refusing to continue
888 dracut:-pre-pivot(435): Warning: /boot/.vmlinuz-4.12(...)-default.hmac does
not exist
888 systemd-shutdown:
....
888 stoping disk
888 reboot: System halted

So I have to "-e" the option at boot (change from fips=1 to fips=0) to be able
to start the system.
Since then, I can no longer access bootloader via YAST, 
But nanao /etc/default/grub and then upload it into boot via grub2-mkconfig -o
/boot/grub2/grub.cfg works.

I've cleaned up my /etc/default/grub file to a bare minimum (removed all fips
option) and updated it via grub2-mkconfig -o /boot/grub2/grub.cfg but still
can't access bootloader via YAST

https://www.linuxquestions.org/questions/suse-opensuse-60/how-to-set-proc-sys-crypto-fips_enabled-fips%3D1-4175658250/page2.html

You are receiving this mail because: