nullboot 0.5.1
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
nullboot (Ubuntu) |
Fix Released
|
Undecided
|
Unassigned | ||
Focal |
New
|
Undecided
|
Unassigned | ||
Jammy |
New
|
Undecided
|
Unassigned | ||
Noble |
In Progress
|
Undecided
|
Unassigned |
Bug Description
[Impact]
new upstream release; usual vendored dependency updates per Go MIR policy (vendor/ directory is automatically generated by go mod vendor based on go.mod); aligning with snapd 2.62; and support for shim 15.8 per the secboot dependency update.
Targeted releases:
1. noble
2. jammy; after/when shim 15.8 lands there
3. focal; after/when shim 15.8 lands there
[Test plan]
* Test suite passes
* Deploy Azure CVM and TPM FDE
* Upgrade to this new package and reboot
* Boot should be successful
* Double check bios_measuremen
* CPC - build new image with nullboot preinstalled, and attempt to register and boot such an images as first time.
We have set block-proposed to allow testing in noble-proposed to be carried out before migration to noble release pocket.
[Where problems could occur]
Resealing of Azure CVM machines could fail and they would need to be unlocked with a recovery key.
description: | updated |
Changed in nullboot (Ubuntu Noble): | |
status: | New → Fix Committed |
description: | updated |
tags: | added: block-proposed |
Changed in nullboot (Ubuntu Noble): | |
status: | Fix Released → In Progress |
tags: |
added: jammy noble upgrade-software-version removed: block-proposed |
tags: | added: focal |
Changed in nullboot (Ubuntu): | |
status: | In Progress → Fix Released |
Gauthier verified it still boots fine on CVM, hooray