obsolete

"Add new sources (release 21)"

FEDORA-2024-5f97e1176b created by sarroutb 5 months ago for Fedora 41

Add new sources (release 21)

This update has been submitted for testing by sarroutb.

5 months ago

This update's test gating status has been changed to 'waiting'.

5 months ago

This update's test gating status has been changed to 'waiting'.

5 months ago

This update's test gating status has been changed to 'passed'.

5 months ago

This update has been pushed to testing.

5 months ago
karma
User Icon bojan commented & provided feedback 5 months ago
karma

Works.

This update can be pushed to stable now if the maintainer wishes

5 months ago
User Icon martinpitt commented & provided feedback 5 months ago
karma

The Cockpit tests found a regression with this update: Unlocking an encrypted root partition with clevis does not work any more. With 20-2, boot looked like this:

[  OK  ] Found device dev-disk-by\x2duuid-6…34326d22e.device - QEMU_HARDDISK 2.
         Starting systemd-cryptsetup@luks\x…e492-182e-480e-8b2e-36634326d22e...
Please enter passphrase for disk QEMU_HARDDISK (luks-6233e492-182e-480e-8b2e-36634326d22e): (press TAB for no echo) 

it sat there for a bit (30 to 60s? I didn't measure it), then clevis kicks in, gets the key from the tang server, and boot continues. With 21-1, it gets to that point, but then gets stuck in a loop of

Detected no PKCS#11 device, retry PKCS#11 detection? [yY/nN] 
[  244.314441] dracut-initqueue[2805]: No slots.

I can interactively press 'N' and then booting continues. But this interactive question ruins unattended boot, which is the very point of clevis.

Bodhi is disabling automatic push to stable due to negative karma. The maintainer may push manually if they determine that the issue is not severe.

5 months ago

Update breaks dracut tang unlock. A hot fix was provided here: https://src.fedoraproject.org/rpms/clevis/pull-request/31

Thanks for the catch, @martinpitt

@martinpitt: May I ask you to retest with next scratch build to verify everything works as expected with proposed fix?: https://koji.fedoraproject.org/koji/taskinfo?taskID=124247945

karma

@sarroutb: That fixes the issue and works fine against our tests, thank you!

Getting this into F41 asap would be very helpful. Just had new kernel update problems which broke both a system using luks and one that doesn't.

User Icon sarroutb provided feedback 4 months ago

This update has been obsoleted by clevis-21-2.fc41.

4 months ago

Please login to add feedback.

Metadata
Type
enhancement
Karma
2
Signed
Content Type
RPM
Test Gating
Autopush Settings
Unstable by Karma
-3
Stable by Karma
disabled
Stable by Time
disabled
Thresholds
Minimum Karma
+2
Minimum Testing
14 days
Dates
submitted
5 months ago
in testing
5 months ago

Automated Test Results