Bug 1305889

Summary: kernel update doesn't update tboot entries in grub2 config file
Product: Red Hat Enterprise Linux 7 Reporter: Martin Wilck <martin.wilck>
Component: grubbyAssignee: Peter Jones <pjones>
Status: CLOSED NOTABUG QA Contact: Release Test Team <release-test-team>
Severity: medium Docs Contact:
Priority: medium    
Version: 7.2CC: chorn, fj-lsoft-bm, fj-lsoft-rh-ospl, martin.wilck, rmarigny, wgianopoulos, yunying.sun
Target Milestone: rc   
Target Release: ---   
Hardware: x86_64   
OS: Linux   
Whiteboard:
Fixed In Version: Doc Type: If docs needed, set a value
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2018-10-31 07:36:07 UTC Type: Bug
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Bug Depends On:    
Bug Blocks: 1203710, 1245518, 1420851    

Description Martin Wilck 2016-02-09 14:06:46 UTC 
Description of problem:
If tboot is installed and active, and the kernel package is updated with "yum update kernel", the tboot entry in /boot/grub2/grub.cfg or /boot/efi/EFI/redhat/grub.cfg still refer to the old kernel package

Version-Release number of selected component (if applicable):
grubby-8.28-17.el7.x86_64

How reproducible:
always

Steps to Reproduce:
1. configure RHEL 7.2 for booting with tboot
2. update the kernel package

Actual results:
The "boot" boot entry is still the same as before, referencing the previous kernel. This will be so even if that kernel has been uninstalled.

Expected results:
tboot entries are added for the new kernel, or changed from the old one to the new one.

Additional info:
This is because the kernel %post script just calls grubby to an entry, and grubby doesn't support tboot.

WORKAROUND: manually run grub2-mkconfig as appropriate for the system (legacy or UEFI) after the kernel update.
Comment 2 Peter Jones 2016-03-01 20:59:48 UTC 
Please attach the config file as it appears and how it's supposed to appear.
Comment 4 Christian Horn 2017-08-07 00:51:45 UTC 
Changing needinfo, as Martin is no longer at Fujitsu Technology Solutions.
Japanese divisions have taken over the bugzillas.
Comment 5 fj-lsoft-bm 2017-08-24 23:55:35 UTC 
Sugimoto-san,

Can you reply to Comment2 ?

Regards,
Nagahama
Comment 6 Bill Gianopoulos 2017-08-29 21:02:46 UTC 
Please see https://bugzilla.redhat.com/show_bug.cgi?id=1486454#c3
Comment 7 fj-lsoft-rh-ospl 2017-11-24 08:33:15 UTC 
Dear RedHat,

I'm sorry for my very late response.

Bill-san, Thank you for your information.

We cannot reproduce this problem now. 

Please close this ticket once. 

Best Regard,
Koji Sugimoto