| Message ID | 155e2bf8-3a8f-4760-be0c-fefdd0bba180@siemens.com (mailing list archive) |
|---|---|
| State | New |
| Headers | show |
| Series | [isar-cip-core] Update isar revision | expand |
Hi Jan, Thanks for the patch. However the recent reproducible check pipeline run has failed due to a problem is with the qemu-arm image. https://gitlab.com/cip-project/cip-core/isar-cip-core/-/pipelines/1576628108 The qemu-arm reproducibility also failed in the previous run (1-Dec). The problem seems to be that the arm kernel is no longer reproducible. https://cip-project.gitlab.io/-/cip-core/isar-cip-core/-/jobs/8566485827/artifacts/cip-core-image-security-cip-core-bookworm-qemu-arm.wic.p2.diffoscope_output.html I am yet to investigate the root cause of the problem. But just wondering if the problem could be because of the move to the merged kernel configs for arm? [https://gitlab.com/assets/twitter_card-570ddb06edf56a2312253c5872489847a0f385112ddbcd71ccfa1570febab5d2.jpg]<https://gitlab.com/cip-project/cip-core/isar-cip-core/-/pipelines/1576628108> Pipeline · cip-project / cip-core / isar-cip-core · GitLab<https://gitlab.com/cip-project/cip-core/isar-cip-core/-/pipelines/1576628108> Debian/Isar layer to generate images using CIP Core Generic Profile packages and CIP kernels gitlab.com
On 06.12.24 13:38, Adithya.Balakumar@toshiba-tsip.com wrote: > Hi Jan, > > Thanks for the patch. > > However the recent reproducible check pipeline run has failed due to a > problem is with the qemu-arm image. > https://gitlab.com/cip-project/cip-core/isar-cip-core/-/ > pipelines/1576628108 <https://gitlab.com/cip-project/cip-core/isar-cip- > core/-/pipelines/1576628108> > > The qemu-arm reproducibility also failed in the previous run (1-Dec). > The problem seems to be that the arm kernel is no longer reproducible. > https://cip-project.gitlab.io/-/cip-core/isar-cip-core/-/ > jobs/8566485827/artifacts/cip-core-image-security-cip-core-bookworm- > qemu-arm.wic.p2.diffoscope_output.html <https://cip-project.gitlab.io/-/ > cip-core/isar-cip-core/-/jobs/8566485827/artifacts/cip-core-image- > security-cip-core-bookworm-qemu-arm.wic.p2.diffoscope_output.html> > Yeah, also saw this. > I am yet to investigate the root cause of the problem. But just > wondering if the problem could be because of the move to the merged > kernel configs for arm? > <https://gitlab.com/cip-project/cip-core/isar-cip-core/-/ > pipelines/1576628108> Would be worth a try, but then we would still sit in front of some larger config diff. Any idea which kernel config switch could negatively impact reproducibility? Jan > > Pipeline · cip-project / cip-core / isar-cip-core · GitLab <https:// > gitlab.com/cip-project/cip-core/isar-cip-core/-/pipelines/1576628108> > Debian/Isar layer to generate images using CIP Core Generic Profile > packages and CIP kernels > gitlab.com > > > > ------------------------------------------------------------------------ > *From:* Jan Kiszka <jan.kiszka@siemens.com> > *Sent:* Friday, December 6, 2024 3:18 PM > *To:* cip-dev <cip-dev@lists.cip-project.org> > *Cc:* balakumar adithya(TSIP TEUR) <Adithya.Balakumar@toshiba-tsip.com> > *Subject:* [isar-cip-core][PATCH] Update isar revision > > From: Jan Kiszka <jan.kiszka@siemens.com> > > Brings two improvement for image reproducibility. > > Signed-off-by: Jan Kiszka <jan.kiszka@siemens.com> > --- > kas-cip.yml | 2 +- > 1 file changed, 1 insertion(+), 1 deletion(-) > > diff --git a/kas-cip.yml b/kas-cip.yml > index abdf92af..1c868afc 100644 > --- a/kas-cip.yml > +++ b/kas-cip.yml > @@ -22,7 +22,7 @@ repos: > > isar: > url: https://github.com/ilbers/isar.git <https://github.com/ilbers/ > isar.git> > - commit: a6171856de84da3deca1355da7aa9c09588e7ea2 > + commit: 37cb017a0e63f9cc26c5ff1805190a95cd0cfad9 > layers: > meta: > > -- > 2.43.0
> Any idea which kernel config switch could negatively
impact reproducibility?
I still need to check the details, but possibly the lzop based compression that was recently added for arm configs.
The reason I say this is because the difference in the vmlinuz file in the linked diffoscope report looks like some lzop metadata.
https://cip-project.gitlab.io/-/cip-core/isar-cip-core/-/jobs/8566485827/artifacts/cip-core-image-security-cip-core-bookworm-qemu-arm.wic.p4.diffoscope_output.html
Will debug for more details and get back.
Adithya
diff --git a/kas-cip.yml b/kas-cip.yml index abdf92af..1c868afc 100644 --- a/kas-cip.yml +++ b/kas-cip.yml @@ -22,7 +22,7 @@ repos: isar: url: https://github.com/ilbers/isar.git - commit: a6171856de84da3deca1355da7aa9c09588e7ea2 + commit: 37cb017a0e63f9cc26c5ff1805190a95cd0cfad9 layers: meta: