SUSE / openSUSEThis Forum is for the discussion of Suse Linux.
Notices
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
And I can no longer access the boot loader settings via YAST ...
Code:
Internal error. Please report a bug report with logs.
Run save_y2logs to get complete logs.
Caller: /usr/lib64/ruby/gems/2.5.0/gems/cfa-0.7.0/lib/cfa/augeas_parser.rb:455:in `report_activity_error!'
Details: Augeas parsing error: Get did not match entire input at /etc/default/grub:11:0, lens /usr/share/augeas/lenses/dist/sysconfig.aug:65.12-.71:
Details: Augeas parsing error: Get did not match entire input at /etc/default/grub:11:0
Syntax error in /etc/grub/default, perhaps? At line 11, or around that line?
Also check if this dracut error could be related:
Code:
/boot/.vmlinuz-4.12(...)-default.hmac does not exist
I do have the suspicion that your attempts to generate a grub configuration fail. Does the grub.cfg file correspond to the default? Are you sure that you are configuring the correct grub.cfg?
Last edited by berndbausch; 07-31-2019 at 06:05 PM.
I would google the error message "FIPS integrity test failed". There are several results.
Which code line? And how do the lines differ?
In "-e" at boot, I see that fips=1 is still in 2nd position
=> In /etc/default/grab I definitely have it at the very end, as I've been (corrected) told
In "-e" at boot, I see that "splash=verbose" and "quiet" are still there,
=> In /etc/default/grab I've removed them
In "-e" at boot, I see that "boot=/dev/sda1" is not here
=> In /etc/default/grab I have that "boot=/dev/sda1" just before fips=1 at the end
Now my only way to boot is to -e and remove fips=1 each time
Last edited by eric.vanh; 07-31-2019 at 07:11 PM.
Reason: wordmissing
Syntax error in /etc/grub/default, perhaps? At line 11, or around that line?
Could very well be, but I can't access it ... because of the error.
I want to access bootloder via YAST because I'm pretty sure that what I write in YAST doesn't go to etc/defaut/grub
Quote:
Originally Posted by berndbausch
Also check if this dracut error could be related:
Code:
/boot/.vmlinuz-4.12(...)-default.hmac does not exist
That error message comes up only when I boot with fips=1.
I can't go any further as the system halts (won't boot)
Quote:
Originally Posted by berndbausch
I do have the suspicion that your attempts to generate a grub configuration fail. Does the grub.cfg file correspond to the default? Are you sure that you are configuring the correct grub.cfg?
I mod the /etc/default/grub/grub.conf file, but didn't touch any grub.cfg file, so yes, it correspond to the default
EDIT: BTW: I see that /etc/default/grub2 is empty despite I use grub2 ??
Last edited by eric.vanh; 07-31-2019 at 07:10 PM.
Reason: added info about grub2
/etc/grub.conf
This file contains the commands, parameters and options the GRUB shell needs for installing the boot loader correctly.
/etc/sysconfig/bootloader
This file is read by the perl-bootloader library which is used when configuring the boot loader with YaST and every time a new kernel is installed. It contains configuration options (such as kernel parameters) that will be added by default to the boot loader configuration file.
I think I mod "/etc/sysconfig/bootloader" when I accessed through YAST the bootloader menu
And these changes have not been transfered to /etc/default/grub
and it boots !
Still have a red error message on the splash but still can't read it (too fast)
Still doesn't have /proc/sys/crypto created (and therefore /proc/sys/crypto/fips_enabled doesn't exist)
So even though the system does boots (with parameter fips=1) the FIPS mode is not enabled
You mix too many symptoms. There is something wrong with your Yast and/or /etc/default/grub. You system didn't boot (I see that it does now). When it boots, FIPS is not enabled.
Personally, I am lost because of the problem mix. When I ask you for clarification, you reply back with other problems.
My suggestion: Focus on one error at the time. If Yast doesn't work, configure Grub manually and address the Yast problem later.
If an error message goes past too quickly while booting, try booting into single user mode. Check the kernel message buffer (dmesg command) for any error or warning, or any message related to crypto.
There are still messages like "FIPS integrity test failed" and "hmac file not found", which you reported earlier. Search for these messages on the internet and identify search results that fit your system.
You mix too many symptoms. There is something wrong with your Yast and/or /etc/default/grub. You system didn't boot (I see that it does now). When it boots, FIPS is not enabled.
Personally, I am lost because of the problem mix. When I ask you for clarification, you reply back with other problems.
My suggestion: Focus on one error at the time. If Yast doesn't work, configure Grub manually and address the Yast problem later.
If an error message goes past too quickly while booting, try booting into single user mode. Check the kernel message buffer (dmesg command) for any error or warning, or any message related to crypto.
There are still messages like "FIPS integrity test failed" and "hmac file not found", which you reported earlier. Search for these messages on the internet and identify search results that fit your system.
I do have many problems with Leap since day one, yes, and I've solved some so far, but many remains ...
For the YAST vs. /etc/default/grub, I can't access YAST "bootloader" option (perl reading error) but I can edit -and did- the grab file and uploaded it into the bootloader with grub2-mkconfig -o /boot/grub2/grub.cfg
Now (remaining problem 1) I have fips=1 in my grub and my system does boot (it didn't before) but systctl doesn't write /crypto/fips_enabled in /proc/sys/ so fips mode is not on.
other problems are:
YAST doesn't allow me to access bootloader option
(dmesg command) doesn't show me any error message I see during boot splash
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.