Bug 2128349
| Summary: | fwupd fails to apply Secure Boot dbx update on systems | ||
|---|---|---|---|
| Product: | Red Hat Enterprise Linux 8 | Reporter: | pj <pj> |
| Component: | fwupd | Assignee: | Richard Hughes <rhughes> |
| Status: | CLOSED WONTFIX | QA Contact: | Oliver GutiƩrrez <ogutierr> |
| Severity: | urgent | Docs Contact: | |
| Priority: | unspecified | ||
| Version: | CentOS Stream | CC: | pasik, raravind, rhughes |
| Target Milestone: | rc | Keywords: | Triaged |
| Target Release: | --- | ||
| Hardware: | x86_64 | ||
| OS: | Linux | ||
| Whiteboard: | |||
| Fixed In Version: | Doc Type: | If docs needed, set a value | |
| Doc Text: | Story Points: | --- | |
| Clone Of: | Environment: | ||
| Last Closed: | 2023-09-04 15:11:04 UTC | Type: | Bug |
| Regression: | --- | Mount Type: | --- |
| Documentation: | --- | CRM: | |
| Verified Versions: | Category: | --- | |
| oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
| Cloudforms Team: | --- | Target Upstream Version: | |
| Embargoed: | |||
|
Description
pj
2022-09-20 13:08:00 UTC
Any ETA for the updated fwupd to make it to repos? Any time frame for this fwupd update that has security related repercussions? > Any time frame for this fwupd update
I can certainly accelerate things if you have a Red Hat RHEL subscription -- is this something that applies to you?
(In reply to Richard Hughes from comment #6) > > Any time frame for this fwupd update > > I can certainly accelerate things if you have a Red Hat RHEL subscription -- > is this something that applies to you? (Not sure why, but my email reply from 10/26 did not seem to make it into the ticket. Here it is:) Yes, we have RHEL Server subscription. About a month ago it was noted as a WIP and almost done (https://github.com/fwupd/fwupd/issues/5035#issuecomment-1260937922). Just looking to see if there is an issue now? It sounded like this affected a fair number of people and concerns security (or inability to process security updates). Thank you very much for the reply and certainly appreciate what is going on behind the scenes to make this happen. Maybe I just got a little impatient. Regards PJ Any time frame for the fwupd updates to be released? If I have missed providing any information, please let me know. Thank you in advance for any relevant information. Any time frame for the fwupd updates to be released? If I have missed providing any information, please let me know. Thank you in advance for any relevant information. Any time frame for the fwupd updates to be released? If I have missed providing any information, please let me know. Thank you in advance for any relevant information. Last week I pushed the new fwupd with all the fixes to Fedora for testing. I'm going to be much more comfortable backporting the fixes to RHEL when we know they actually work and don't cause regressions. Perfect! Thank you very much for the update. Thank you for the progress on the el9 version. Is there the same progress for el8 version here? I don't have any plan to backport the fixes to RHEL-8 unfortunately (we are a very very small team). A rebase isn't possible due to missing deps. We're aiming for 9.2 now, sorry. I think RHEL 9 and Fedora are in good shape now. We don't have plans to fix this in RHEL-8 -- the backport would be too invasive and a rebase wouldn't be approved -- sorry. You can of course use dbxtool to update systems manually, although please test carefully as the missing checks in fwupd obviously won't be performed. |