1. Forum
  2. Usenet
  3. LINUX.DEBIAN.BUGS.RC

  • Bug#1092205: shim still b-d's on GCC 12, which should not be part of th

    From Chris Hofstaedtler@21:1/5 to Matthias Klose on Sun Apr 13 19:30:01 2025
    On Mon, Jan 06, 2025 at 07:22:41AM +0100, Matthias Klose wrote:
    shim still b-d's on GCC 12, which should not be part of the trixie release. Please update the build dependency to GCC 14 (or GCC 13, if the former doesn't work).

    Switching out gcc-12 to gcc-14 at least works. So whenever signing
    stuff can happen, at least it should be possible to build shim with
    gcc-14.

    --- SoupGate-Win32 v1.05
    * Origin: fsxNet Usenet Gateway (21:1/5)
  • From Debian Bug Tracking System@21:1/5 to All on Thu Apr 17 18:10:01 2025
    Processing control commands:

    tags -1 +pending
    Bug #1092205 [src:shim] shim still b-d's on GCC 12, which should not be part of the trixie release
    Added tag(s) pending.

    --
    1092205: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1092205
    Debian Bug Tracking System
    Contact owner@bugs.debian.org with problems

    --- SoupGate-Win32 v1.05
    * Origin: fsxNet Usenet Gateway (21:1/5)
  • From Steve McIntyre@21:1/5 to All on Thu Apr 17 18:10:01 2025
    control: tags -1 +pending

    Hsy guys,

    Sorry, I've not been updating bugs here enough to share progress.

    I've had changes for this ready for some time, just not pushed yet.

    The shim 16.0 release has already happened upstream, and it passes CI
    for me locally.

    *However*, we're waiting on a bugfix for

    https://github.com/rhboot/shim/issues/74

    which is a show-stopper bug for secure boot chains where UKIs are
    going to be a thing. A fix is coming Real Soon Now, I've been
    promised. That's going to prompt a 16.1 release.

    In the meantime, I really don't want to upload a 16.0 build, as that
    makes things much more awkward in terms of the signing pipeline (etc.)

    I was wary of updating to gcc-14 to start with, as we weren't yet at
    the toolchain freeze and shim builds need binary reproducibility when
    people come to review and sign them. Hence I tested with gcc-13 too.

    I've done tests locally with both gcc-13 and gcc-14, and all looks
    good here in either case at the moment.

    --
    Steve McIntyre, Cambridge, UK. steve@einval.com "I used to be the first kid on the block wanting a cranial implant,
    now I want to be the first with a cranial firewall. " -- Charlie Stross

    --- SoupGate-Win32 v1.05
    * Origin: fsxNet Usenet Gateway (21:1/5)