~ghadi-rahme/maas:3.1

Branch merges

Propose for merging

Rejected for merging into maas:3.1

MAAS Lander: Needs Fixing on 2024-01-29

Jack Lloyd-Walters: Approve on 2024-01-05

Diff: 52 lines (+23/-8)

1 file modified

src/provisioningserver/templates/uefi/config.local.amd64.template (+23/-8)

api

Related source package recipes

No recipes using this branch. (?)

Create packaging recipe

Related snap packages

Related charm recipes

9664d11... by Igor Brovtsin on 2023-08-25

Disable chainloading for third-party distros to fix secure boot

The usual MAAS local boot chain for well-known distros looks like this:

PXE -> MAAS shim -> MAAS GRUB2 -> Distro shim (if any) -> Distro loader

MAAS GRUB chainloads the distro to save time that otherwise the system
would spend trying to netboot with all capable NICs.

Investigating LP:2022084, we discovered that with this chain, RHEL GRUB2
tries to validate the kernel using MAAS shim, causing the secure boot
process to fail. Given the nature of shim and secure boot process in
general, there's not much we can do on MAAS side to fix this behaviour.
As a hotfix, we temporarily drop the chainloading for other distros so
that they could boot securely (even though with some extra wait time).

Ubuntu will still be chainloaded because the MAAS shim trusts the certs
our kernels/bootloaders are signed with. I also don't think Windows
boot loader can be affected by any shims whatsoever, so MAAS will still
try to chainload it.

(cherry picked from commit f3b643e5f40f171326df134a0827a93fdc0137e4)

887be7f... by Jacopo Rota on 2023-08-10

cherry pick ecb92f26d3d0735188ce0dfac03698d694fa5e13 - fix dhcp make_failover_peer_config mixing ipv4 and ipv6 addresses

e648160... by Seyeong Kim on 2023-06-13

Backport fix for lp1979403 to 3.1

969add0... by Mauricio Faria de Oliveira on 2023-06-06

Prepare for 3.1.2 RC1 release

740c5a7... by Tiago Pasqualini da Silva on 2023-06-01

Fix incorrect hostname from interface name

    MAAS currently creates a DNS record for each interface in a host
    by simply using its interface name. Whenever an interface has the
    '_' character, the code uses it anyway, which is currently breaking
    bind as this character is not allowed on domain names.
    This patch fixes that by verifying it and replacing the incorrect
    character.

    LP: #1807725

(cherry picked from commit 83b123eb37b88dd0b9974bed9ee4352474ddd0a0)
Signed-off-by: Mauricio Faria de Oliveira <email address hidden>

Backport:
 src/maasserver/models/staticipaddress.py

 Simple backport due to pyupgrade later;
 code formatted with black.

 commit 50d22fd35af7 ("run pyupgrade with minimum target python3.8")
 - entry = mapping["%s.%s" % (result.iface_name, result.fqdn)]
 + entry = mapping[f"{result.iface_name}.{result.fqdn}"]

 src/maasserver/models/tests/test_staticipaddress.py

 Change code formatting similarly,
 and remove `node.current_config` usage (not yet there),
 more aligned with the original function/above new one.

d463016... by Alberto Donato on 2023-03-06

LP:1773150 replace invalid UTF-8 chars in smartctl output

backport of 002f8c1c2d4a248b75fca33e3de29665464bf829

9cbd96f... by Alexsander de Souza on 2023-02-24

Prepare for 3.1.1 release

0d8bdaf... by Seyeong Kim on 2023-02-17

Fix utf-8 character error when bmc-config

Related LP and article

https://bugs.launchpad.net/bugs/1892983
https://bugs.launchpad.net/bugs/1929478
https://discourse.maas.io/t/maas-failed-commissioning/4904
(cherry picked from commit 3eec5b5161515a23f58c72638a5ff8aac7486622)

22c2ab1... by Alberto Donato on 2023-02-17

backport changes for piston 0.5

5b79ab7e5 - bump piston dependency, drop now useless monkeypatch
4117bcf3b - drop monkeypatch for piston emitter, since it's been fixed in piston itself

24f851b... by Alexsander de Souza on 2023-02-15

update submodules