cloud-images

apt upgrade on new image fails (nullboot)

Bug #2020384 reported by Reid Price on 2023-05-22

6

This bug affects 1 person

Affects		Status	Importance	Assigned to	Milestone
	cloud-images	New	Undecided	Unassigned

Bug Description

This is on a brand new instance

# rm -rf /var/lib/apt/lists/*
# apt upgrade -y -o Dpkg::Options::=--force-confnew
...
1 not fully installed or removed.
After this operation, 0 B of additional disk space will be used.
Setting up nullboot (0.4.0-0ubuntu0.22.04.2) ...
2023/05/22 18:26:16 cannot trust boot assets used for current boot: open /sys/kernel/security/tpm0/binary_bios_measurements: no such file or directory
dpkg: error processing package nullboot (--configure):
installed nullboot package post-installation script subprocess returned error exit status 1
Errors were encountered while processing:
nullboot
needrestart is being skipped since dpkg has failed
E: Sub-process /usr/bin/dpkg returned an error code (1)

This is the first command run on a brand new Ubuntu 22.04 image in Azure China.
The same issue does not occur in non-China Azure.

The package could not be removed, reinstalled, or installed as 0.4.0-0ubuntu0.22.04.2 or 0.3.0-0ubuntu1.

Any workarounds or recommendations appreciated.

Revision history for this message

Reid Price (reid-price) wrote on 2023-05-22:

#1

As a workaround I added `apt hold nullboot` beforehand, which unblocked me.

Revision history for this message

John Chittum (jchittum) wrote on 2023-05-22:

#2

Is this running in a confidential VM instance type? `nullboot` currently has strict requirements that are only strictly set when using confidential vm instance types. In this case it looks like the instance does not have the TPM mounted in the correct location

Revision history for this message

Reid Price (reid-price) wrote on 2023-05-22:

#3

Yes, this is a confidential VM instance (the only 22.04 image available in Azure China).

Revision history for this message

John Chittum (jchittum) wrote on 2023-05-23:

#4

there isn't a specific CVM image available, and you're trying to create one? There is a specific image we produce for CVM:

https://azuremarketplace.microsoft.com/en-us/marketplace/apps/canonical.0001-com-ubuntu-confidential-vm-jammy?tab=Overview

This should be available in China. If not, we'll need to work with Microsoft to ensure it is getting published there. Partner Center handles pushing to all the regions, so if it's not there, we'll need to work with the Partner Center team to ensure it's there.

We'll sync internally and find out more info

Revision history for this message

Gauthier Jolly (gjolly) wrote on 2023-05-23:

#5

reid-price this link should bring you to the 22.04 LTS image in the Chinese marketplace:

https://portal.azure.cn/#create/canonical.0001-com-ubuntu-server-jammy22_04-lts-gen2

Revision history for this message

Reid Price (reid-price) wrote on 2023-05-28:

#7

Thanks for the links and responses, appreciate it!

Report a bug

This report contains Public information

Everyone can see this information.

You are

Subscribing...

Edit bug mail

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.