-
Bug
-
Resolution: Done-Errata
-
Critical
-
None
-
4.16.0
-
Important
-
No
-
Proposed
-
False
-
-
Release Note Not Required
-
In Progress
Description of problem:
Installing with Shielded VMs (i.e. secureboot enabled) got control-plane machines failing to boot up
Version-Release number of selected component (if applicable):
4.16.0-0.nightly-2024-01-23-071601
How reproducible:
Always
Steps to Reproduce:
1. "create install-config", then edit it to insert "secureBoot: Enabled" for compute.platform.gcp and controlPlane.platform.gcp
2. "create cluster"
Actual results:
Bootstrap failed, and all the control-plane machines are inaccessible.
Expected results:
Installation should succeed.
Additional info:
The PROW CI test which failed: https://qe-private-deck-ci.apps.ci.l2s4.p1.openshiftapps.com/view/gs/qe-private-deck/logs/periodic-ci-openshift-openshift-tests-private-release-4.16-amd64-nightly-gcp-ipi-secureboot-confidential-computing-f14/1749497426076504064, where its bootstrap log bundle is at https://gcsweb-qe-private-deck-ci.apps.ci.l2s4.p1.openshiftapps.com/gcs/qe-private-deck/logs/periodic-ci-openshift-openshift-tests-private-release-4.16-amd64-nightly-gcp-ipi-secureboot-confidential-computing-f14/1749497426076504064/artifacts/gcp-ipi-secureboot-confidential-computing-f14/ipi-install-install/artifacts/log-bundle-20240122190107.tar QE's Flexy-install job which has the issue: Flexy-install/259851/ VARIABLES_LOCATION private-templates/functionality-testing/aos-4_16/ipi-on-gcp/versioned-installer-shieldedvms FYI one of the control-plane machine's serial port outputs snippet is available at https://drive.google.com/file/d/1v56vwtv5kvaO873l3Qt-UmY9jmEJraiQ/view?usp=drive_link
- links to
-
RHEA-2024:0041
OpenShift Container Platform 4.16.z bug fix update