feat: kernel signing cache kernels · ublue-os/kernel-cache@9f7b4c5

Triggered via pull request July 11, 2024 14:40

m2Giles

synchronize #9

kernel-signing

Status Failure

Total duration 3m 32s

Artifacts –

reusable-build.yml

on: pull_request

Matrix: kernel-cache

Check all builds successful

0s

Annotations

2 errors

kernel-cache (surface, 40)

Error: buildah exited with code 1 + kernel_version=6.9.7-1.surface.fc40.x86_64 + kernel_flavor=surface + dnf install -y dnf-plugins-core rpmrebuild sbsigntools openssl + case "$kernel_flavor" in + dnf config-manager --add-repo=https://pkg.surfacelinux.com/fedora/linux-surface.repo + [[ surface =~ asus|fsync ]] + [[ surface == \s\u\r\f\a\c\e ]] + dnf download -y kernel-surface-6.9.7-1.surface.fc40.x86_64 kernel-surface-modules-6.9.7-1.surface.fc40.x86_64 kernel-surface-modules-core-6.9.7-1.surface.fc40.x86_64 kernel-surface-modules-extra-6.9.7-1.surface.fc40.x86_64 kernel-surface-devel-6.9.7-1.surface.fc40.x86_64 kernel-surface-devel-matched-6.9.7-1.surface.fc40.x86_64 kernel-surface-default-watchdog-6.9.7-1.surface.fc40.x86_64 iptsd libwacom-surface libwacom-surface-data + [[ surface =~ fsync ]] + [[ ! -s /tmp/certs/private_key.priv ]] + echo 'WARNING: Using test signing key.' + cp /tmp/certs/private_key.priv.test /tmp/certs/private_key.priv + cp /tmp/certs/public_key.der.test /tmp/certs/public_key.der + PUBLIC_KEY_PATH=/etc/pki/kernel/public/public_key.crt + PRIVATE_KEY_PATH=/etc/pki/kernel/private/private_key.priv + openssl x509 -in /tmp/certs/public_key.der -out /tmp/certs/public_key.crt + install -Dm644 /tmp/certs/public_key.crt /etc/pki/kernel/public/public_key.crt + install -Dm644 /tmp/certs/private_key.priv /etc/pki/kernel/private/private_key.priv + [[ surface =~ asus|fsync ]] + [[ surface =~ surface ]] + dnf install -y /kernel-surface-6.9.7-1.surface.fc40.x86_64.rpm /kernel-surface-modules-6.9.7-1.surface.fc40.x86_64.rpm /kernel-surface-modules-core-6.9.7-1.surface.fc40.x86_64.rpm /kernel-surface-modules-extra-6.9.7-1.surface.fc40.x86_64.rpm kernel-surface-core-6.9.7-1.surface.fc40.x86_64 Importing GPG key 0xAC421453: Userid : "linux-surface" Fingerprint: 87DE FA4A B94A 99A4 C8C3 1125 56C4 64BA AC42 1453 From : https://raw.githubusercontent.com/linux-surface/linux-surface/master/pkg/keys/surface.asc + [[ surface =~ main|coreos ]] ++ sbverify --list /usr/lib/modules/6.9.7-1.surface.fc40.x86_64/vmlinuz ++ grep '^signature $[0-9]\+$$' ++ sed 's/^signature $[0-9]\+$$/\1/' + EXISTING_SIGNATURES=1 + [[ -n 1 ]] + for SIGNUM in $EXISTING_SIGNATURES + echo 'Found existing signature at signum 1, removing...' + sbattach --remove /usr/lib/modules/6.9.7-1.surface.fc40.x86_64/vmlinuz + sbsign --cert /etc/pki/kernel/public/public_key.crt --key /etc/pki/kernel/private/private_key.priv /usr/lib/modules/6.9.7-1.surface.fc40.x86_64/vmlinuz --output /usr/lib/modules/6.9.7-1.surface.fc40.x86_64/vmlinuz Signing Unsigned original image + sbverify --list /usr/lib/modules/6.9.7-1.surface.fc40.x86_64/vmlinuz + rm -f /etc/pki/kernel/private/private_key.priv /etc/pki/kernel/public/public_key.crt + [[ 'true' == \t\r\u\e ]] + [[ surface =~ surface ]] + rpmrebuild --batch kernel-surface-core-6.9.7-1.surface.fc40.x86_64 /usr/lib/rpmrebuild/rpmrebuild.sh: WARNING: some files have been modified: .M....... g /boot/symvers-6.9.7-1.surface.fc40.x86_64.xz S.5....T. /lib/modules/6.9.7-1.surface.fc40.x86_64/vmlinuz + rm -f /usr/lib/modules/6.9.7-1.surface.fc40.x86_64/vmlinuz ++ uname -m + dnf install -y /kernel-surface-6.9.7-1.surface.fc40.x86_64.rpm /kernel-surface-modules-6.9.7-1.surface.fc40.x86_64.rpm /kernel-surface-modules-core-6.9.7-1.surface.fc40.x86_64.rpm /kernel-surface-modules-extra-6.9.7-1.surface.fc40.x86_64.rpm /root/rpmbuild/RPMS/x86_64/kernel-surface-core-6.9.7-1.surface.fc40.x86_64.rpm + sbverify --list /usr/lib/modules/6.9.7-1.surface.fc40.x86_64/vmlinuz Error reading file /usr/lib/modules/6.9.7-1.surface.fc40.x86_64/vmlinuz: No such file or directory Can't open image /usr/lib/modules/6.9.7-1.surface.fc40.x86_64/vmlinuz Error: building at STEP "RUN /tmp/fetch.sh": while running runtime: exit status 1

kernel-cache (surface, 39)

Error: buildah exited with code 1 + kernel_version=6.9.7-1.surface.fc39.x86_64 + kernel_flavor=surface + dnf install -y dnf-plugins-core rpmrebuild sbsigntools openssl + case "$kernel_flavor" in + dnf config-manager --add-repo=https://pkg.surfacelinux.com/fedora/linux-surface.repo + [[ surface =~ asus|fsync ]] + [[ surface == \s\u\r\f\a\c\e ]] + dnf download -y kernel-surface-6.9.7-1.surface.fc39.x86_64 kernel-surface-modules-6.9.7-1.surface.fc39.x86_64 kernel-surface-modules-core-6.9.7-1.surface.fc39.x86_64 kernel-surface-modules-extra-6.9.7-1.surface.fc39.x86_64 kernel-surface-devel-6.9.7-1.surface.fc39.x86_64 kernel-surface-devel-matched-6.9.7-1.surface.fc39.x86_64 kernel-surface-default-watchdog-6.9.7-1.surface.fc39.x86_64 iptsd libwacom-surface libwacom-surface-data + [[ surface =~ fsync ]] + [[ ! -s /tmp/certs/private_key.priv ]] + echo 'WARNING: Using test signing key.' + cp /tmp/certs/private_key.priv.test /tmp/certs/private_key.priv + cp /tmp/certs/public_key.der.test /tmp/certs/public_key.der + PUBLIC_KEY_PATH=/etc/pki/kernel/public/public_key.crt + PRIVATE_KEY_PATH=/etc/pki/kernel/private/private_key.priv + openssl x509 -in /tmp/certs/public_key.der -out /tmp/certs/public_key.crt + install -Dm644 /tmp/certs/public_key.crt /etc/pki/kernel/public/public_key.crt + install -Dm644 /tmp/certs/private_key.priv /etc/pki/kernel/private/private_key.priv + [[ surface =~ asus|fsync ]] + [[ surface =~ surface ]] + dnf install -y /kernel-surface-6.9.7-1.surface.fc39.x86_64.rpm /kernel-surface-modules-6.9.7-1.surface.fc39.x86_64.rpm /kernel-surface-modules-core-6.9.7-1.surface.fc39.x86_64.rpm /kernel-surface-modules-extra-6.9.7-1.surface.fc39.x86_64.rpm kernel-surface-core-6.9.7-1.surface.fc39.x86_64 Importing GPG key 0xAC421453: Userid : "linux-surface" Fingerprint: 87DE FA4A B94A 99A4 C8C3 1125 56C4 64BA AC42 1453 From : https://raw.githubusercontent.com/linux-surface/linux-surface/master/pkg/keys/surface.asc + [[ surface =~ main|coreos ]] ++ sbverify --list /usr/lib/modules/6.9.7-1.surface.fc39.x86_64/vmlinuz ++ grep '^signature $[0-9]\+$$' ++ sed 's/^signature $[0-9]\+$$/\1/' + EXISTING_SIGNATURES=1 + [[ -n 1 ]] + for SIGNUM in $EXISTING_SIGNATURES + echo 'Found existing signature at signum 1, removing...' + sbattach --remove /usr/lib/modules/6.9.7-1.surface.fc39.x86_64/vmlinuz + sbsign --cert /etc/pki/kernel/public/public_key.crt --key /etc/pki/kernel/private/private_key.priv /usr/lib/modules/6.9.7-1.surface.fc39.x86_64/vmlinuz --output /usr/lib/modules/6.9.7-1.surface.fc39.x86_64/vmlinuz Signing Unsigned original image + sbverify --list /usr/lib/modules/6.9.7-1.surface.fc39.x86_64/vmlinuz + rm -f /etc/pki/kernel/private/private_key.priv /etc/pki/kernel/public/public_key.crt + [[ 'true' == \t\r\u\e ]] + [[ surface =~ surface ]] + rpmrebuild --batch kernel-surface-core-6.9.7-1.surface.fc39.x86_64 /usr/lib/rpmrebuild/rpmrebuild.sh: WARNING: some files have been modified: .M....... g /boot/symvers-6.9.7-1.surface.fc39.x86_64.xz S.5....T. /lib/modules/6.9.7-1.surface.fc39.x86_64/vmlinuz + rm -f /usr/lib/modules/6.9.7-1.surface.fc39.x86_64/vmlinuz ++ uname -m + dnf install -y /kernel-surface-6.9.7-1.surface.fc39.x86_64.rpm /kernel-surface-modules-6.9.7-1.surface.fc39.x86_64.rpm /kernel-surface-modules-core-6.9.7-1.surface.fc39.x86_64.rpm /kernel-surface-modules-extra-6.9.7-1.surface.fc39.x86_64.rpm /root/rpmbuild/RPMS/x86_64/kernel-surface-core-6.9.7-1.surface.fc39.x86_64.rpm + sbverify --list /usr/lib/modules/6.9.7-1.surface.fc39.x86_64/vmlinuz Error reading file /usr/lib/modules/6.9.7-1.surface.fc39.x86_64/vmlinuz: No such file or directory Can't open image /usr/lib/modules/6.9.7-1.surface.fc39.x86_64/vmlinuz Error: building at STEP "RUN /tmp/fetch.sh": while running runtime: exit status 1

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

feat: kernel signing cache kernels #51

Summary

feat: kernel signing cache kernels #51

Jobs

Run details

reusable-build.yml

Annotations