Bug 1748180 (edk2-rebase-rhel-8.2)

Summary: rebase edk2 to upstream tag edk2-stable201908 for RHEL-8.2
Product: Red Hat Enterprise Linux 8 Reporter: Laszlo Ersek <lersek>
Component: edk2Assignee: Laszlo Ersek <lersek>
Status: CLOSED ERRATA QA Contact: Xueqiang Wei <xuwei>
Severity: unspecified Docs Contact: Parth Shah <pashah>
Priority: unspecified    
Version: 8.2CC: berrange, coli, jherrman, jinzhao, juzhang, knoel, kraxel, lersek, mrezanin, pashah, pbonzini, philmd
Target Milestone: rcKeywords: Rebase
Target Release: 8.2Flags: pashah: needinfo-
Hardware: Unspecified   
OS: Unspecified   
Whiteboard:
Fixed In Version: edk2-20190829git37eef91017ad-2.el8 Doc Type: Enhancement
Doc Text:
._EDK2_ rebased to version stable201908 The _EDK2_ package has been upgraded to version *stable201908*, which provides multiple enhancements. Notably: * _EDK2_ now includes support for OpenSSL-1.1.1. * To comply with the upstream project's licensing requirements, the _EDK2_ package license has been changed from `BSD and OpenSSL and MIT` to `BSD-2-Clause-Patent and OpenSSL and MIT`.
 Story Points: ---
Clone Of: Environment:
Last Closed: 2020-04-28 16:02:22 UTC Type: Component Upgrade
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:
Bug Depends On: 1749022, 1749693    
Bug Blocks: 1536624, 1616029    

Description Laszlo Ersek 2019-09-03 06:08:00 UTC 
In RHEL-8.1, edk2 is based on upstream edk2-stable201903.

For bug 1616029, we need the OpenSSL-1.1.1 enablement from upstream edk2-stable201905:

  https://github.com/tianocore/edk2/releases/tag/edk2-stable201905

But then we might as well rebase to edk2-stable201908, which has been released recently:

  https://github.com/tianocore/edk2/releases/tag/edk2-stable201908
Comment 1 Laszlo Ersek 2019-09-03 06:16:11 UTC 
I'm not aware of any bugs that we intend to fix with this rebase, hence setting Doc Type to "Rebase: Enhancements Only" (see comment#0 why we need the rebase in the first place).
Comment 5 Laszlo Ersek 2019-12-03 21:44:17 UTC 
QE: please run the RHEL test plan for edk2 (aka "OVMF" in RHEL7) as usual after rebases. In other words, only sanity checking is needed. Thanks!
Comment 9 Xueqiang Wei 2019-12-20 07:56:17 UTC 
According to Comment 5, do sanity testing.

The core functions work as expected:
1. release OS installation with secure boot mode, works well.
2. boot release OS with secure boot mode, works well.
3. not release OS can't install with secure boot mode.


The existent issue: enalbe https in OVMF
track by Bug 1536624 - HTTPS enablement in OVMF


The new issue: Failed to enroll keys
track by Bug 1785529 - Failed to enroll keys when run EnrollDefaultKeys.efi in UEFI shell


The new package "edk2-20190829git37eef91017ad-4.el8" has come out, so I think set status of this bug to VERIFIED. And track the issues by individual bugs base on the latest version.


If I was wrong, please correct me. Thank you.
Comment 11 errata-xmlrpc 2020-04-28 16:02:22 UTC 
Since the problem described in this bug report should be
resolved in a recent advisory, it has been closed with a
resolution of ERRATA.

For information on the advisory, and where to find the updated
files, follow the link below.

If the solution does not work for you, open a new bug report.

https://access.redhat.com/errata/RHSA-2020:1712