[Bug 1219460] New: shim is built failed due to fde-tpm-helper-rpm-macros
https://bugzilla.suse.com/show_bug.cgi?id=1219460 Bug ID: 1219460 Summary: shim is built failed due to fde-tpm-helper-rpm-macros Classification: openSUSE Product: openSUSE Tumbleweed Version: Current Hardware: Other OS: Other Status: NEW Severity: Normal Priority: P5 - None Component: Bootloader Assignee: screening-team-bugs@suse.de Reporter: dennis.tseng@suse.com QA Contact: qa-bugs@suse.de Target Milestone: --- Found By: --- Blocker: --- When building shim in Factory's secure boot project, an error message occurs saying "nothing provides fde-tpm-helper-rpm-macros" Please refer: https://build.opensuse.org/project/show/openSUSE:Factory:secure-boot -- You are receiving this mail because: You are on the CC list for the bug.
https://bugzilla.suse.com/show_bug.cgi?id=1219460 Tseng <dennis.tseng@suse.com> changed: What |Removed |Added ---------------------------------------------------------------------------- CC| |dennis.tseng@suse.com, | |glin@suse.com, | |jlee@suse.com -- You are receiving this mail because: You are on the CC list for the bug.
https://bugzilla.suse.com/show_bug.cgi?id=1219460 https://bugzilla.suse.com/show_bug.cgi?id=1219460#c1 --- Comment #1 from Tseng <dennis.tseng@suse.com> --- Hi Gary, I saw you have a change log about the fde-tpm-helper-macro in Sep of last year: Tue Sep 19 08:36:17 UTC 2023 - Gary Ching-Pang Lin <glin@suse.com> - Adopt the macros from fde-tpm-helper-macros to update the signature in the sealed key after a bootloader upgrade However, we were failed to build shim in Factory/secure-boot project. I can see you set the version number to 1320: %if 0%{?suse_version} > 1320 BuildRequires: fde-tpm-helper-rpm-macros We also saw you set 1600 in your grub2. Would you please explain what is the purpose of this macro ? And why it must be set to 1320 on shim ? Many thanks. --Dennis -- You are receiving this mail because: You are on the CC list for the bug.
https://bugzilla.suse.com/show_bug.cgi?id=1219460 Tseng <dennis.tseng@suse.com> changed: What |Removed |Added ---------------------------------------------------------------------------- Flags| |needinfo?(glin@suse.com) -- You are receiving this mail because: You are on the CC list for the bug.
https://bugzilla.suse.com/show_bug.cgi?id=1219460 https://bugzilla.suse.com/show_bug.cgi?id=1219460#c2 Gary Ching-Pang Lin <glin@suse.com> changed: What |Removed |Added ---------------------------------------------------------------------------- Flags|needinfo?(glin@suse.com) | --- Comment #2 from Gary Ching-Pang Lin <glin@suse.com> --- The macro is for the FDE feature of ALP and mistakenly set the wrong version check for shim. I'll fix the version. -- You are receiving this mail because: You are on the CC list for the bug.
https://bugzilla.suse.com/show_bug.cgi?id=1219460 https://bugzilla.suse.com/show_bug.cgi?id=1219460#c3 --- Comment #3 from Gary Ching-Pang Lin <glin@suse.com> --- The fix is submitted to devel:openSUSE:Factory/shim. sr#1143635 -- You are receiving this mail because: You are on the CC list for the bug.
https://bugzilla.suse.com/show_bug.cgi?id=1219460 https://bugzilla.suse.com/show_bug.cgi?id=1219460#c4 --- Comment #4 from Tseng <dennis.tseng@suse.com> --- (In reply to Gary Ching-Pang Lin from comment #3)
The fix is submitted to devel:openSUSE:Factory/shim. sr#1143635
Thank Gary. The secure boot sub-project has been built successfully. https://build.opensuse.org/project/monitor/openSUSE:Factory:secure-boot. Close this case. -- You are receiving this mail because: You are on the CC list for the bug.
https://bugzilla.suse.com/show_bug.cgi?id=1219460 https://bugzilla.suse.com/show_bug.cgi?id=1219460#c5 Tseng <dennis.tseng@suse.com> changed: What |Removed |Added ---------------------------------------------------------------------------- Status|NEW |RESOLVED Resolution|--- |FIXED --- Comment #5 from Tseng <dennis.tseng@suse.com> --- The secure boot sub-project has been built successfully. https://build.opensuse.org/project/monitor/openSUSE:Factory:secure-boot. Close this case. -- You are receiving this mail because: You are on the CC list for the bug.
https://bugzilla.suse.com/show_bug.cgi?id=1219460 https://bugzilla.suse.com/show_bug.cgi?id=1219460#c8 --- Comment #8 from Maintenance Automation <maint-coord+maintenance-robot@suse.de> --- SUSE-SU-2024:1368-1: An update that solves seven vulnerabilities, contains one feature and has five security fixes can now be installed. Category: security (important) Bug References: 1198101, 1205588, 1205855, 1210382, 1213945, 1215098, 1215099, 1215100, 1215101, 1215102, 1215103, 1219460 CVE References: CVE-2022-28737, CVE-2023-40546, CVE-2023-40547, CVE-2023-40548, CVE-2023-40549, CVE-2023-40550, CVE-2023-40551 Jira References: PED-922 Maintenance Incident: [SUSE:Maintenance:32617](https://smelt.suse.de/incident/32617/) Sources used: openSUSE Leap 15.3 (src): shim-15.8-150300.4.20.2, efitools-1.9.2-150300.7.3.1 openSUSE Leap Micro 5.3 (src): shim-15.8-150300.4.20.2 openSUSE Leap Micro 5.4 (src): shim-15.8-150300.4.20.2 openSUSE Leap 15.5 (src): shim-15.8-150300.4.20.2 SUSE Linux Enterprise Micro for Rancher 5.3 (src): shim-15.8-150300.4.20.2 SUSE Linux Enterprise Micro 5.3 (src): shim-15.8-150300.4.20.2 SUSE Linux Enterprise Micro for Rancher 5.4 (src): shim-15.8-150300.4.20.2 SUSE Linux Enterprise Micro 5.4 (src): shim-15.8-150300.4.20.2 SUSE Linux Enterprise Micro 5.5 (src): shim-15.8-150300.4.20.2 Basesystem Module 15-SP5 (src): shim-15.8-150300.4.20.2 SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 (src): shim-15.8-150300.4.20.2 SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (src): shim-15.8-150300.4.20.2 SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (src): shim-15.8-150300.4.20.2 SUSE Linux Enterprise Desktop 15 SP4 LTSS 15-SP4 (src): shim-15.8-150300.4.20.2 SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 (src): shim-15.8-150300.4.20.2 SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4 (src): shim-15.8-150300.4.20.2 SUSE Linux Enterprise Server for SAP Applications 15 SP3 (src): shim-15.8-150300.4.20.2 SUSE Linux Enterprise Server for SAP Applications 15 SP4 (src): shim-15.8-150300.4.20.2 SUSE Manager Proxy 4.3 (src): shim-15.8-150300.4.20.2 SUSE Manager Retail Branch Server 4.3 (src): shim-15.8-150300.4.20.2 SUSE Manager Server 4.3 (src): shim-15.8-150300.4.20.2 SUSE Enterprise Storage 7.1 (src): shim-15.8-150300.4.20.2 SUSE Linux Enterprise Micro 5.1 (src): shim-15.8-150300.4.20.2 SUSE Linux Enterprise Micro 5.2 (src): shim-15.8-150300.4.20.2 SUSE Linux Enterprise Micro for Rancher 5.2 (src): shim-15.8-150300.4.20.2 NOTE: This line indicates an update has been released for the listed product(s). At times this might be only a partial fix. If you have questions please reach out to maintenance coordination. -- You are receiving this mail because: You are on the CC list for the bug.
https://bugzilla.suse.com/show_bug.cgi?id=1219460 https://bugzilla.suse.com/show_bug.cgi?id=1219460#c9 --- Comment #9 from Maintenance Automation <maint-coord+maintenance-robot@suse.de> --- SUSE-SU-2024:1462-1: An update that solves seven vulnerabilities, contains one feature and has five security fixes can now be installed. Category: security (important) Bug References: 1198101, 1205588, 1205855, 1210382, 1213945, 1215098, 1215099, 1215100, 1215101, 1215102, 1215103, 1219460 CVE References: CVE-2022-28737, CVE-2023-40546, CVE-2023-40547, CVE-2023-40548, CVE-2023-40549, CVE-2023-40550, CVE-2023-40551 Jira References: PED-922 Maintenance Incident: [SUSE:Maintenance:33581](https://smelt.suse.de/incident/33581/) Sources used: SUSE Linux Enterprise Server for SAP Applications 12 SP5 (src): shim-15.8-25.30.1 SUSE Linux Enterprise High Performance Computing 12 SP5 (src): shim-15.8-25.30.1 SUSE Linux Enterprise Server 12 SP5 (src): shim-15.8-25.30.1 NOTE: This line indicates an update has been released for the listed product(s). At times this might be only a partial fix. If you have questions please reach out to maintenance coordination. -- You are receiving this mail because: You are on the CC list for the bug.
https://bugzilla.suse.com/show_bug.cgi?id=1219460 https://bugzilla.suse.com/show_bug.cgi?id=1219460#c10 --- Comment #10 from Maintenance Automation <maint-coord+maintenance-robot@suse.de> --- SUSE-SU-2024:1461-1: An update that solves seven vulnerabilities, contains one feature and has five security fixes can now be installed. Category: security (important) Bug References: 1198101, 1205588, 1205855, 1210382, 1213945, 1215098, 1215099, 1215100, 1215101, 1215102, 1215103, 1219460 CVE References: CVE-2022-28737, CVE-2023-40546, CVE-2023-40547, CVE-2023-40548, CVE-2023-40549, CVE-2023-40550, CVE-2023-40551 Jira References: PED-922 Maintenance Incident: [SUSE:Maintenance:33579](https://smelt.suse.de/incident/33579/) Sources used: SUSE Linux Enterprise High Performance Computing 15 SP2 LTSS 15-SP2 (src): shim-15.8-150100.3.38.1 SUSE Linux Enterprise Server 15 SP2 LTSS 15-SP2 (src): shim-15.8-150100.3.38.1 SUSE Linux Enterprise Server for SAP Applications 15 SP2 (src): shim-15.8-150100.3.38.1 NOTE: This line indicates an update has been released for the listed product(s). At times this might be only a partial fix. If you have questions please reach out to maintenance coordination. -- You are receiving this mail because: You are on the CC list for the bug.
participants (1)
-
bugzilla_noreply@suse.com