meta-efi-secure-boot: switch from EFI_BOOT_PATH to EFI_FILES_PATH #90
Conversation
|
I got the following error with your patch when building secure-core-image: ERROR: secure-core-image-1.0-r0 do_rootfs: Could not invoke dnf. Command '/build/tmp/work/genericx86_64-poky-linux/secure-core-image/1.0/recipe-sysroot-native/usr/bin/dnf -v --rpmverbosity=info -y -c /build/tmp/work/genericx86_64-poky-linux/secure-core-image/1.0/rootfs/etc/dnf/dnf.conf --setopt=reposdir=/build/tmp/work/genericx86_64-poky-linux/secure-core-image/1.0/rootfs/etc/yum.repos.d --installroot=/build/tmp/work/genericx86_64-poky-linux/secure-core-image/1.0/rootfs --setopt=logdir=/build/tmp/work/genericx86_64-poky-linux/secure-core-image/1.0/temp --repofrompath=oe-repo,/build/tmp/work/genericx86_64-poky-linux/secure-core-image/1.0/oe-rootfs-repo --nogpgcheck install base-passwd dnf kernel-image-bzimage kernel-initramfs packagegroup-core-boot packagegroup-efi-secure-boot packagegroup-tpm2 run-postinsts shadow util-linux' returned 1:
|
|
@yizhao1 yeah and I know exactly why this does not work, it's because by default grub-efi has a run dependency P.S. To bo honest I would prefer move of all grub configuration file to grub-bootconf package |
As meta-secure-core depends on openembedded-core, which defines already EFI_FILES_PATH in `openembedded-core/meta/conf/image-uefi.conf`, we should not define a new variable, but use already defined one. Signed-off-by: Piotr Łobacz <p.lobacz@welotec.com>
|
@yizhao1 I have fixed it please verify if it is building for you, but do not merge it until I will add additional commits regarding movement of all other files which are supposed to be in grub-bootconf package instead in grub-efi. P.S. in grub-bootconf_1.00.bb there is a a call |
By default grub-efi has set RDEPENDS:${PN} = "virtual-grub-bootconf",
which is grub-bootconf package. It is used for generation of boot
configuration file.
Currently it is not being used for generation, but signing it, when
secure boot is enabled, should be run in this recipe instead grub-efi,
as grub.cfg is part of it.
Signed-off-by: Piotr Łobacz <p.lobacz@welotec.com>
|
Thanks for the update. I'm on vacation now, I'll verify it as soon as I get back. |
Hava a nice holidays 👍 Take your time don't rush I still need to implement a lot in here:P |
As meta-secure-core depends on openembedded-core, which defines already EFI_FILES_PATH in openembedded-core/meta/conf/image-uefi.conf, we should not define a new variable, but use already defined one.