kdump.service failed to start on CentOS 8

Question

Issue

kdump.service fails to start on CentOS 8 virtual machine on Google Cloud. Restarting the service keeps reproducing the same error.

It seems the secure boot is causing the issue or is at least related to it. Required key cannot be loaded.

The solution for CentOS 7 does not solve the issue. Packages kexec-tools, crash , and kernel-debug are installed.

How do I solve this issue? Thank you.

Below are technical details.

---

Environment

• CentOS 8 virtual machine instance on Google Cloud
• OS version: CentOS Linux release 8.2.2004 (Core)
• Kernel version: 4.18.0-193.19.1.el8_2.x86_64

Details

systemctl status kdump.service outputs:

kdump.service - Crash recovery kernel arming
   Loaded: loaded (/usr/lib/systemd/system/kdump.service; enabled; vendor preset: enabled)
   Active: failed (Result: exit-code) since Mon 2020-10-19 23:18:32 UTC; 2min 2s ago
  Process: 131082 ExecStart=/usr/bin/kdumpctl start (code=exited, status=1/FAILURE)
 Main PID: 131082 (code=exited, status=1/FAILURE)

Oct 19 23:18:28 my_hostname systemd[1]: Starting Crash recovery kernel arming...
Oct 19 23:18:32 my_hostname kdumpctl[131082]: Secure Boot is enabled. Using kexec file based syscall.
Oct 19 23:18:32 my_hostname kdumpctl[131082]: kexec_file_load failed: Required key not available
Oct 19 23:18:32 my_hostname kdumpctl[131082]: kexec: failed to load kdump kernel
Oct 19 23:18:32 my_hostname kdumpctl[131082]: Starting kdump: [FAILED]
Oct 19 23:18:32 my_hostname systemd[1]: kdump.service: Main process exited, code=exited, status=1/FAILURE
Oct 19 23:18:32 my_hostname systemd[1]: kdump.service: Failed with result 'exit-code'.
Oct 19 23:18:32 my_hostname systemd[1]: Failed to start Crash recovery kernel arming.

journalctl -xe outputs:

Oct 19 23:18:32 my_hostname kdumpctl[131082]: Secure Boot is enabled. Using kexec file based syscall.
Oct 19 23:18:32 my_hostname kdumpctl[131082]: kexec_file_load failed: Required key not available
Oct 19 23:18:32 my_hostname kdumpctl[131082]: kexec: failed to load kdump kernel
Oct 19 23:18:32 my_hostname kdumpctl[131082]: Starting kdump: [FAILED]
Oct 19 23:18:32 my_hostname systemd[1]: kdump.service: Main process exited, code=exited, status=1/FAILURE
Oct 19 23:18:32 my_hostname systemd[1]: kdump.service: Failed with result 'exit-code'.
Oct 19 23:18:32 my_hostname systemd[1]: Failed to start Crash recovery kernel arming.
-- Subject: Unit kdump.service has failed
-- Defined-By: systemd
-- Support: https://access.redhat.com/support
--
-- Unit kdump.service has failed.
--
-- The result is failed.
Oct 19 23:18:32 my_hostname sudo[131078]: pam_unix(sudo:session): session closed for user root

cat /proc/keys outputs:

00e8d728 I--Q---    14 perm 3f030000  1002    10 keyring   _ses: 1
029d6be0 I--Q---     1 perm 1f3f0000  1002 65534 keyring   _uid_ses.1002: 1
321674d8 I--Q---    11 perm 3f030000  1002    10 keyring   _ses: 1
37bb77f9 I--Q---     3 perm 1f3f0000  1002 65534 keyring   _uid.1002: empty
3b9154f0 I--Q---     8 perm 3f030000  1002    10 keyring   _ses: 1

rpm -q kexec-tools outputs:

kexec-tools-2.0.20-14.el8.x86_64