Your message dated Thu, 05 Sep 2019 08:44:26 +0000
with message-id <[email protected]>
and subject line Bug#931219: fixed in autopkgtest 5.11
has caused the Debian Bug report #931219,
regarding /usr/bin/autopkgtest-virt-qemu: should listen on 127.0.0.1 for SSH
port forward
to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact [email protected]
immediately.)
--
931219: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=931219
Debian Bug Tracking System
Contact [email protected] with problems
--- Begin Message ---
Package: autopkgtest
Version: 5.10
Severity: normal
File: /usr/bin/autopkgtest-virt-qemu
Tags: patch
User: [email protected]
Usertags: origin-kali kali-patch
When qemu is run by autopkgtest-virt-qemu, it will happily forward the
SSH port of the test VM to all network interfaces.
I'm not quite sure what's the purpose of this port forward (I thought
everything happened over serial terminals), but IMO it should really be
restricted to localhost only.
Here's the (untested & trivial) patch:
--- /usr/bin/autopkgtest-virt-qemu 2019-02-25 15:05:15.000000000 +0100
+++ /tmp/autopkgtest-virt-qemu 2019-06-28 15:02:38.942235854 +0200
@@ -540,7 +540,7 @@
ssh_port = find_free_port(10022)
if ssh_port:
adtlog.debug('Forwarding local port %i to VM ssh port 22' % ssh_port)
- nic_opt = ',hostfwd=tcp::%i-:22' % ssh_port
+ nic_opt = ',hostfwd=tcp:127.0.0.1:%i-:22' % ssh_port
else:
nic_opt = ''
-- System Information:
Debian Release: 10.0
APT prefers unstable
APT policy: (500, 'unstable'), (500, 'testing'), (500, 'stable'), (500,
'oldstable'), (1, 'experimental')
Architecture: amd64 (x86_64)
Foreign Architectures: i386
Kernel: Linux 4.19.0-5-amd64 (SMP w/4 CPU cores)
Locale: LANG=fr_FR.UTF-8, LC_CTYPE=fr_FR.UTF-8 (charmap=UTF-8),
LANGUAGE=fr_FR.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)
LSM: AppArmor: enabled
Versions of packages autopkgtest depends on:
ii apt-utils 1.8.2
ii libdpkg-perl 1.19.7
ii procps 2:3.3.15-2
ii python3 3.7.3-1
ii python3-debian 0.1.35
Versions of packages autopkgtest recommends:
ii autodep8 0.18
Versions of packages autopkgtest suggests:
pn lxc <none>
pn lxd <none>
ii ovmf 0~20181115.85588389-3
pn qemu-efi-aarch64 <none>
pn qemu-efi-arm <none>
pn qemu-system <none>
ii qemu-utils 1:3.1+dfsg-8
ii schroot 1.6.10-6+b1
ii vmdb2 0.13.2+git20190215-1
-- no debconf information
--- End Message ---
--- Begin Message ---
Source: autopkgtest
Source-Version: 5.11
We believe that the bug you reported is fixed in the latest version of
autopkgtest, which is due to be installed in the Debian FTP archive.
A summary of the changes between this version and the previous one is
attached.
Thank you for reporting the bug, which will now be closed. If you
have further comments please address them to [email protected],
and the maintainer will reopen the bug report if appropriate.
Debian distribution maintenance software
pp.
Paul Gevers <[email protected]> (supplier of updated autopkgtest package)
(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing [email protected])
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256
Format: 1.8
Date: Thu, 05 Sep 2019 09:32:10 +0200
Source: autopkgtest
Architecture: source
Version: 5.11
Distribution: unstable
Urgency: medium
Maintainer: Debian CI team <[email protected]>
Changed-By: Paul Gevers <[email protected]>
Closes: 851232 925966 931219 933062
Changes:
autopkgtest (5.11) unstable; urgency=medium
.
[ Dan Streetman ]
* autopkgtest-buildvm-ubuntu-cloud: work with precise and trusty
(LP: #1822331) (Closes: #925966)
.
[ Sébastien Delafond ]
* Add an optional 6th parameter to autopkgtest-build-qemu, to force a
specific image size
.
[ Julian Andres Klode ]
* ssh-setup/nova: Run nova show after console-log in debug_failure
.
[ Iain Lane ]
* setup-testbed: Add the -security pocket for Ubuntu releases
* nova: Use glanceclient to find images
* nova: --key_name is actually --key-name
* setup-testbed: Write preserve_sources_list in the new format
* nova: trim whitespace from server UUID
.
[ Simon McVittie ]
* autopkgtest-build-qemu: Parse named parameters
* autopkgtest-build-qemu: Allow overriding apt proxy via command-line
.
[ Simon McVittie ]
* testdesc: Report each unsupported test individually (Closes: #851232)
* setup-testbed: Provide more options for handling /etc/apt/sources.list
(Closes: #933062)
.
[ Dan Streetman ]
* ssh-setup/nova: allow specifying --image with name or uuid
.
[ Valentin Vidic ]
* autopkgtest-virt-lxc: accept lxc arguments for ephemeral containers
.
[ Michael Biebl ]
* Use virtio-rng to passthrough RNG to qemu runner and drop haveged
.
[ Raphaël Hertzog ]
* qemu: Forward VM's ssh port only to localhost (Closes: #931219)
Checksums-Sha1:
a53659ae5e3aebb8733ffd5cf4c2a914e620c8f1 1698 autopkgtest_5.11.dsc
69af1e3785a6f433413685df214823ac07f72790 182680 autopkgtest_5.11.tar.xz
Checksums-Sha256:
9123a9a51a9bfa2b61655879b02ffd8f21b0f4e98c4a8a670b8e5a454283b72b 1698
autopkgtest_5.11.dsc
4f57b8eebf3452aafe2015bf0d1a1298ad7d9d4400778e7ea68c4171b3eba0a8 182680
autopkgtest_5.11.tar.xz
Files:
73dfd791c3984ee1da7a6317162a04f3 1698 devel optional autopkgtest_5.11.dsc
2f736fc10102ddbe7ce79d441022a906 182680 devel optional autopkgtest_5.11.tar.xz
-----BEGIN PGP SIGNATURE-----
iQEzBAEBCAAdFiEEWLZtSHNr6TsFLeZynFyZ6wW9dQoFAl1wwhAACgkQnFyZ6wW9
dQpQXAgAvkeGT+d8M7eYh3Tyn1p7YNDzlqYC0Jdosuftb0lnkm5c01r8NCFzuK97
J7kuW8jR9AZZIi6pbsnHTD7UrFVgkw/qvB1mjGD7pLCA8HkfJzRgUQLSG6/wpQ4L
yXa0PdRiG1s8U3+M+Mq++b8dT/qeu+vDGns2V08zFnXxLbBcAtkn9ubdw3xytQBT
z0/KcZuqRb8HUoQssYNwD/dxsNhOm0eFxSqmbho5iLh2xlYcO2Vu01gvUOXMR2T9
KbNPKR+nE0ef4n7mml+vGC+mq25TFDOugKXvaHM48bYTUe8XwP18hWyZ2F0vPPBe
oHUc7rHnXEjvwFWTwEqXZPuRh/5Nag==
=ikbW
-----END PGP SIGNATURE-----
--- End Message ---
