Bug 2118311 - bump boot images to pick up signed RPMS
Summary: bump boot images to pick up signed RPMS
Keywords:
Status: CLOSED ERRATA
Alias: None
Product: OpenShift Container Platform
Classification: Red Hat
Component: RHCOS
Version: 4.11
Hardware: Unspecified
OS: Unspecified
high
low
Target Milestone: ---
: 4.11.z
Assignee: Michael Nguyen
QA Contact: HuijingHei
URL:
Whiteboard:
Depends On: 2117279 2118310
Blocks:
TreeView+ depends on / blocked
 
Reported: 2022-08-15 13:11 UTC by Michael Nguyen
Modified: 2022-08-29 06:47 UTC (History)
5 users (show)

Fixed In Version:
Doc Type: If docs needed, set a value
Doc Text:
Clone Of: 2118310
Environment:
Last Closed: 2022-08-29 06:46:57 UTC
Target Upstream Version:
Embargoed:

Attachments (Terms of Use)


Links
System ID Private Priority Status Summary Last Updated
Red Hat Product Errata RHBA-2022:6143 0 None None None 2022-08-29 06:47:07 UTC

Description Michael Nguyen 2022-08-15 13:11:13 UTC 
+++ This bug was initially created as a clone of Bug #2118310 +++

bump boot images to pick up signed RPMS
Comment 1 RHCOS Bug Bot 2022-08-15 13:32:36 UTC 
This bug has been reported fixed in a new RHCOS build and is ready for QE verification.  To mark the bug verified, set the Verified field to Tested.  This bug will automatically move to MODIFIED once the fix has landed in a new bootimage.
Comment 2 Michael Nguyen 2022-08-15 13:34:11 UTC 
[core@cosa-devsh ~]$ rpm -qai | grep Signature | cut -f3 -d"," | sed 's/Key ID//' | tr -s ' ' | cut -b10- | sort | uniq -c 
      1  "XML Digital Signature" and "XML Encryption".
      1  Library providing support for "XML Signature" and "XML Encryption" standards
    501 fd431d51
[core@cosa-devsh ~]$ rpm-ostree status
State: idle
Deployments:
● dfa41a1e4d3e2a71b87eca4b3a3b5de17a6e0bc7acb880769e109ff0214cfc59
                   Version: 411.86.202208112011-0 (2022-08-11T20:15:08Z)
Comment 3 RHCOS Bug Bot 2022-08-22 20:58:44 UTC 
The fix for this bug has landed in a bootimage bump, as tracked in bug 2117279 (now in status MODIFIED).  Moving this bug to MODIFIED.
Comment 6 HuijingHei 2022-08-25 03:48:03 UTC 
Verify passed with latest 4.11.0-0.nightly

[fedora@hhei ~]$ oc get clusterversion
NAME      VERSION                              AVAILABLE   PROGRESSING   SINCE   STATUS
version   4.11.0-0.nightly-2022-08-24-091058   True        False         67m     Cluster version is 4.11.0-0.nightly-2022-08-24-091058

[fedora@hhei ~]$ oc get nodes
NAME                           STATUS   ROLES    AGE   VERSION
ip-10-0-133-171.ec2.internal   Ready    master   81m   v1.24.0+b62823b
ip-10-0-138-83.ec2.internal    Ready    worker   91s   v1.24.0+b62823b
ip-10-0-142-104.ec2.internal   Ready    master   81m   v1.24.0+b62823b
ip-10-0-221-200.ec2.internal   Ready    worker   69m   v1.24.0+b62823b
ip-10-0-232-166.ec2.internal   Ready    master   80m   v1.24.0+b62823b
[fedora@hhei ~]$ oc debug nodes/ip-10-0-221-200.ec2.internal
sh-4.4# chroot /host

sh-4.4# rpm -qai | grep Signature | cut -f3 -d"," | sed 's/Key ID//' | tr -s ' ' | cut -b10- | sort | uniq -c
      1  "XML Digital Signature" and "XML Encryption".
      1  Library providing support for "XML Signature" and "XML Encryption" standards
    501 fd431d51
sh-4.4# rpm-ostree status
State: idle
Deployments:
* pivot://quay.io/openshift-release-dev/ocp-v4.0-art-dev@sha256:2fac26697d0644cbabbb65641addab5ace068783a6e6d840144b80dc295452ce
              CustomOrigin: Managed by machine-config-operator
                   Version: 411.86.202208231420-0 (2022-08-23T14:24:06Z)
Comment 8 errata-xmlrpc 2022-08-29 06:46:57 UTC 
Since the problem described in this bug report should be
resolved in a recent advisory, it has been closed with a
resolution of ERRATA.

For information on the advisory (OpenShift Container Platform 4.11.2 bug fix update), and where to find the updated
files, follow the link below.

If the solution does not work for you, open a new bug report.

https://access.redhat.com/errata/RHBA-2022:6143
Note You need to log in before you can comment on or make changes to this bug.