Bug 2062840

Summary: [RHEL for Edge] Ship a re-encrypt service info module
Product: Red Hat Enterprise Linux 8 Reporter: Antonio Murdaca <amurdaca>
Component: fido-device-onboardAssignee: Antonio Murdaca <amurdaca>
Status: CLOSED ERRATA QA Contact: Xiaofeng Wang <xiaofwan>
Severity: unspecified Docs Contact:
Priority: unspecified    
Version: 8.6CC: lmiksik, perobins, xiaofwan, yih
Target Milestone: rcKeywords: Triaged
Target Release: 8.6   
Hardware: Unspecified   
OS: Unspecified   
Whiteboard:
Fixed In Version: fido-device-onboard-0.4.5-1.el8 Doc Type: If docs needed, set a value
Doc Text:
Story Points: ---
Clone Of: 2062838
: 2065211 (view as bug list) Environment:
Last Closed: 2022-05-10 13:51:05 UTC Type: Bug
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:
Bug Depends On: 2062838    
Bug Blocks: 2065211    

Description Antonio Murdaca 2022-03-10 16:42:22 UTC 
+++ This bug was initially created as a clone of Bug #2062838 +++

As part of the FDO onboarding flow, we ship a previously null/clevis-pin-null encrypted raw image that has to be re-encrypted when FIDO onboards the device. The feature is well contained within the service info server and provides better usability without having the user runs commands from the onboarding mechanism.

--- Additional comment from Antonio Murdaca on 2022-03-10 16:39:44 UTC ---

Tracked in https://issues.redhat.com/browse/THEEDGE-1663
Comment 8 Yi He 2022-03-30 14:02:08 UTC 
Verified with scratch build https://brewweb.engineering.redhat.com/brew/taskinfo?taskID=44255467 , passed on RHEL8.6
Comment 9 Yi He 2022-04-07 09:32:03 UTC 
Verified in nightly build, success.

[root@yih-rhel86 rhel-edge]# rpm -qa|grep fdo
fdo-manufacturing-server-0.4.5-1.el8.x86_64
fdo-admin-cli-0.4.5-1.el8.x86_64
fdo-rendezvous-server-0.4.5-1.el8.x86_64
fdo-init-0.4.5-1.el8.x86_64
fdo-client-0.4.5-1.el8.x86_64
fdo-owner-onboarding-server-0.4.5-1.el8.x86_64
fdo-owner-cli-0.4.5-1.el8.x86_64
[root@yih-rhel86 rhel-edge]# rpm -qa|grep osbuild
osbuild-lvm2-53-2.el8.noarch
osbuild-ostree-53-2.el8.noarch
osbuild-composer-core-46.1-1.el8.x86_64
osbuild-luks2-53-2.el8.noarch
osbuild-53-2.el8.noarch
osbuild-composer-46.1-1.el8.x86_64
osbuild-composer-dnf-json-46.1-1.el8.x86_64
python3-osbuild-53-2.el8.noarch
osbuild-selinux-53-2.el8.noarch
osbuild-composer-worker-46.1-1.el8.x86_64
Comment 11 errata-xmlrpc 2022-05-10 13:51:05 UTC 
Since the problem described in this bug report should be
resolved in a recent advisory, it has been closed with a
resolution of ERRATA.

For information on the advisory (fido-device-onboard bug fix and enhancement update), and where to find the updated
files, follow the link below.

If the solution does not work for you, open a new bug report.

https://access.redhat.com/errata/RHBA-2022:1852