[Kernel-packages] [Bug 1760656] Re: test_151_sysctl_disables_bpf_unpriv_userns in kernel security test failed with 4.4/4.15 kvm
This bug was fixed in the package linux-kvm - 4.4.0-1027.32 --- linux-kvm (4.4.0-1027.32) xenial; urgency=medium * linux-kvm: 4.4.0-1027.32 -proposed tracker (LP: #1772964) * Xenial update to 4.4.129 stable release (LP: #1768429) - [Config] Remove ARCH_HWEIGHT_CFLAGS * test_140_kernel_modules_not_tainted in kernel security test failed with 4.15 kvm kernel (LP: #1766832) - kvm: [config] enable CONFIG_MODULE_UNLOAD * test_072_config_debug_set_module_ronx in kernel security test failed with 4.4 X-kvm (LP: #1760646) - kvm: [config] enable CONFIG_DEBUG_SET_MODULE_RONX * test_151_sysctl_disables_bpf_unpriv_userns in kernel security test failed with 4.4/4.15 kvm (LP: #1760656) - kvm: [config] enable BPF_SYSCALL * test_077_config_security_ipsec in kernel security test failed with 4.4/4.15 kvm (LP: #1760653) - kvm: [config] enable ipsec configs * test_072_config_strict_devmem in kernel security test failed with 4.4/4.15 kvm (LP: #1760648) // test_072_strict_devmem in kernel security test failed with 4.4/4.15 kvm (LP: #1760649) - kvm: [config] enable DEVMEM * test_076_config_security_acl_ext4 in kernel security test failed with 4.4/4.15 kvm (LP: #1760652) // test_160_setattr_CVE_2015_1350 in kernel security test failed with 4.4/4.15 kvm (LP: #1760657) - kvm: [config] enable POSIX_ACL, XATTR, FS_SECURITY for all filesystems * test_074_config_security_default_mmap_min_addr in kernel security test failed with 4.4/4.15 kvm (LP: #1760650) - kvm: [config] DEFAULT_MMAP_MIN_ADDR=65536 * test_072_config_debug_rodata in kernel security test failed with 4.4 X-kvm (LP: #1760643) - [Config] enable CONFIG_DEBUG_RODATA [ Ubuntu: 4.4.0-128.154 ] * linux: 4.4.0-128.154 -proposed tracker (LP: #1772960) * CVE-2018-3639 (x86) - x86/cpu: Make alternative_msr_write work for 32-bit code - x86/bugs: Fix the parameters alignment and missing void - KVM: SVM: Move spec control call after restore of GS - x86/speculation: Use synthetic bits for IBRS/IBPB/STIBP - x86/cpufeatures: Disentangle MSR_SPEC_CTRL enumeration from IBRS - x86/cpufeatures: Disentangle SSBD enumeration - x86/cpu/AMD: Fix erratum 1076 (CPB bit) - x86/cpufeatures: Add FEATURE_ZEN - x86/speculation: Handle HT correctly on AMD - x86/bugs, KVM: Extend speculation control for VIRT_SPEC_CTRL - x86/speculation: Add virtualized speculative store bypass disable support - x86/speculation: Rework speculative_store_bypass_update() - x86/bugs: Unify x86_spec_ctrl_{set_guest,restore_host} - x86/bugs: Expose x86_spec_ctrl_base directly - x86/bugs: Remove x86_spec_ctrl_set() - x86/bugs: Rework spec_ctrl base and mask logic - x86/speculation, KVM: Implement support for VIRT_SPEC_CTRL/LS_CFG - KVM: SVM: Implement VIRT_SPEC_CTRL support for SSBD - x86/bugs: Rename SSBD_NO to SSB_NO - KVM: VMX: Expose SSBD properly to guests. * [i915_bpo] Fix flickering issue after panel change (LP: #1770565) - drm/i915: Fix iboost setting for DDI with 4 lanes on SKL - drm/i915: Name the "iboost bit" - drm/i915: Program iboost settings for HDMI/DVI on SKL - drm/i915: Move bxt_ddi_vswing_sequence() call into intel_ddi_pre_enable() for HDMI - drm/i915: Explicitly use ddi buf trans entry 9 for hdmi - drm/i915: Split DP/eDP/FDI and HDMI/DVI DDI buffer programming apart - drm/i915: Get the iboost setting based on the port type - drm/i915: Simplify intel_ddi_get_encoder_port() - drm/i915: Fix iboost setting for SKL Y/U DP DDI buffer translation entry 2 - drm/i915: KBL - Recommended buffer translation programming for DisplayPort - drm/i915: Ignore OpRegion panel type except on select machines * [SRU][Bionic/Artful] fix false positives in W+X checking (LP: #1769696) - init: fix false positives in W+X checking * [Ubuntu 16.04] kernel: fix rwlock implementation (LP: #1761674) - SAUCE: (no-up) s390: fix rwlock implementation * linux < 4.11: unable to use netfilter logging from non-init namespaces (LP: #1766573) - netfilter: allow logging from non-init namespaces * [LTC Test] Ubuntu 18.04: tm_sigreturn failed on P8 compat mode 16.04.04 guest (LP: #1771439) - powerpc: signals: Discard transaction state from signal frames * QCA9377 requires more IRAM banks for its new firmware (LP: #1748345) - ath10k: update the IRAM bank number for QCA9377 * i915/kbl_dmc_ver1.bin failed with error -2 package 1.157.17 kernel 4.4.0-116-generic (LP: #1752536) - ubuntu: i915_bpo - Add MODULE_FIRMWARE for Geminilake's DMC * Xenial update to 4.4.131 stable release (LP: #1768825) - ext4: prevent right-shifting extents beyond EXT_MAX_BLOCKS - ext4: set h_journal if there is a failure starting a reserved handle - ext4: add validity checks for bitmap block numbers - ext4: fix bitmap position validation - usbip: usbip_host: f
[Kernel-packages] [Bug 1760656] Re: test_151_sysctl_disables_bpf_unpriv_userns in kernel security test failed with 4.4/4.15 kvm
** Tags added: bionic ** Changed in: linux (Ubuntu Bionic) Status: Incomplete => Invalid ** Changed in: linux (Ubuntu Xenial) Status: New => Invalid -- You received this bug notification because you are a member of Kernel Packages, which is subscribed to linux-kvm in Ubuntu. https://bugs.launchpad.net/bugs/1760656 Title: test_151_sysctl_disables_bpf_unpriv_userns in kernel security test failed with 4.4/4.15 kvm Status in QA Regression Testing: Invalid Status in linux package in Ubuntu: Invalid Status in linux-kvm package in Ubuntu: Fix Released Status in linux source package in Xenial: Invalid Status in linux-kvm source package in Xenial: Fix Committed Status in linux source package in Bionic: Invalid Status in linux-kvm source package in Bionic: Fix Released Bug description: FAIL: test_151_sysctl_disables_bpf_unpriv_userns (__main__.KernelSecurityTest) unprivileged_bpf_disabled sysctl supported -- Traceback (most recent call last): File "./test-kernel-security.py", line 1951, in test_151_sysctl_disables_bpf_unpriv_userns self._test_sysctl_value('kernel/unprivileged_bpf_disabled', expected, exists=exists) File "/home/ubuntu/autotest/client/tmp/ubuntu_qrt_kernel_security/src/qa-regression-testing/scripts/testlib.py", line 1185, in _test_sysctl_value self.assertEqual(exists, os.path.exists(sysctl), sysctl) AssertionError: /proc/sys/kernel/unprivileged_bpf_disabled Steps to reproduce: Deploy the node with Xenial 4.4 kernel, install linux-kvm sudo apt-get install python-minimal git clone --depth=1 git://kernel.ubuntu.com/ubuntu/autotest-client-tests -b master-next git clone --depth=1 git://kernel.ubuntu.com/ubuntu/autotest rm -fr autotest/client/tests ln -sf ~/autotest-client-tests autotest/client/tests AUTOTEST_PATH=/home/ubuntu/autotest sudo -E autotest/client/autotest-local --verbose autotest/client/tests/ubuntu_qrt_kernel_security/control ProblemType: Bug DistroRelease: Ubuntu 16.04 Package: linux-image-4.4.0-1019-kvm 4.4.0-1019.24 ProcVersionSignature: User Name 4.4.0-1019.24-kvm 4.4.98 Uname: Linux 4.4.0-1019-kvm x86_64 NonfreeKernelModules: signpost ApportVersion: 2.20.1-0ubuntu2.15 Architecture: amd64 Date: Mon Apr 2 17:22:38 2018 ProcEnviron: TERM=xterm-256color PATH=(custom, no user) XDG_RUNTIME_DIR= LANG=en_US.UTF-8 SHELL=/bin/bash SourcePackage: linux-kvm UpgradeStatus: No upgrade log present (probably fresh install) To manage notifications about this bug go to: https://bugs.launchpad.net/qa-regression-testing/+bug/1760656/+subscriptions -- Mailing list: https://launchpad.net/~kernel-packages Post to : kernel-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~kernel-packages More help : https://help.launchpad.net/ListHelp
[Kernel-packages] [Bug 1760656] Re: test_151_sysctl_disables_bpf_unpriv_userns in kernel security test failed with 4.4/4.15 kvm
This bug was fixed in the package linux-kvm - 4.15.0-1006.6 --- linux-kvm (4.15.0-1006.6) bionic; urgency=medium * linux-kvm: 4.15.0-1006.6 -proposed tracker (LP: #1765498) [ Ubuntu: 4.15.0-18.19 ] * linux: 4.15.0-18.19 -proposed tracker (LP: #1765490) * [regression] Ubuntu 18.04:[4.15.0-17-generic #18] KVM Guest Kernel: meltdown: rfi/fallback displacement flush not enabled bydefault (kvm) (LP: #1765429) - powerpc/pseries: Fix clearing of security feature flags * signing: only install a signed kernel (LP: #1764794) - [Packaging] update to Debian like control scripts - [Packaging] switch to triggers for postinst.d postrm.d handling - [Packaging] signing -- switch to raw-signing tarballs - [Packaging] signing -- switch to linux-image as signed when available - [Config] signing -- enable Opal signing for ppc64el - [Packaging] printenv -- add signing options * [18.04 FEAT] Sign POWER host/NV kernels (LP: #1696154) - [Packaging] signing -- add support for signing Opal kernel binaries * Please cherrypick s390 unwind fix (LP: #1765083) - s390/compat: fix setup_frame32 * Ubuntu 18.04 installer does not detect any IPR based HDD/RAID array [S822L] [ipr] (LP: #1751813) - d-i: move ipr to storage-core-modules on ppc64el * drivers/gpu/drm/bridge/adv7511/adv7511.ko missing (LP: #1764816) - SAUCE: (no-up) rename the adv7511 drm driver to adv7511_drm * Miscellaneous Ubuntu changes - [Packaging] Add linux-oem to rebuild test blacklist. [ Ubuntu: 4.15.0-17.18 ] * linux: 4.15.0-17.18 -proposed tracker (LP: #1764498) * Eventual OOM with profile reloads (LP: #1750594) - SAUCE: apparmor: fix memory leak when duplicate profile load linux-kvm (4.15.0-1005.5) bionic; urgency=medium * linux-kvm: 4.15.0-1005.5 -proposed tracker (LP: #1763792) * test_151_sysctl_disables_bpf_unpriv_userns in kernel security test failed with 4.4/4.15 kvm (LP: #1760656) - kvm: [config] enable BPF_SYSCALL * test_077_config_security_ipsec in kernel security test failed with 4.4/4.15 kvm (LP: #1760653) - kvm: [config] enable ipsec configs * test_072_config_strict_devmem in kernel security test failed with 4.4/4.15 kvm (LP: #1760648) // test_072_strict_devmem in kernel security test failed with 4.4/4.15 kvm (LP: #1760649) - kvm: [config] enable DEVMEM * test_076_config_security_acl_ext4 in kernel security test failed with 4.4/4.15 kvm (LP: #1760652) // test_160_setattr_CVE_2015_1350 in kernel security test failed with 4.4/4.15 kvm (LP: #1760657) - kvm: [config] enable POSIX_ACL, XATTR, FS_SECURITY for all filesystems * test_074_config_security_default_mmap_min_addr in kernel security test failed with 4.4/4.15 kvm (LP: #1760650) - kvm: [config] DEFAULT_MMAP_MIN_ADDR=65536 * linux-kvm 4.15 needs UNWINDER_FRAME_POINTER (LP: #1763107) - kvm: [Config] CONFIG_UNWINDER_FRAME_POINTER=y for amd64 [ Ubuntu: 4.15.0-16.17 ] * linux: 4.15.0-16.17 -proposed tracker (LP: #1763785) * [18.04] [bug] CFL-S(CNP)/CNL GPIO testing failed (LP: #1757346) - [Config]: Set CONFIG_PINCTRL_CANNONLAKE=y * [Ubuntu 18.04] USB Type-C test failed on GLK (LP: #1758797) - SAUCE: usb: typec: ucsi: Increase command completion timeout value * Fix trying to "push" an already active pool VP (LP: #1763386) - SAUCE: powerpc/xive: Fix trying to "push" an already active pool VP * hisi_sas: Revert and replace SAUCE patches w/ upstream (LP: #1762824) - Revert "UBUNTU: SAUCE: scsi: hisi_sas: export device table of v3 hw to userspace" - Revert "UBUNTU: SAUCE: scsi: hisi_sas: config for hip08 ES" - scsi: hisi_sas: modify some register config for hip08 - scsi: hisi_sas: add v3 hw MODULE_DEVICE_TABLE() * Realtek card reader - RTS5243 [VEN_10EC&DEV_5260] (LP: #1737673) - misc: rtsx: Move Realtek Card Reader Driver to misc - updateconfigs for Realtek Card Reader Driver - misc: rtsx: Add support for RTS5260 - misc: rtsx: Fix symbol clashes * Mellanox [mlx5] [bionic] UBSAN: Undefined behaviour in ./include/linux/net_dim.h (LP: #1763269) - net/mlx5e: Fix int overflow * apparmor bug fixes for bionic (LP: #1763427) - apparmor: fix logging of the existence test for signals - apparmor: make signal label match work when matching stacked labels - apparmor: audit unknown signal numbers - apparmor: fix memory leak on buffer on error exit path - apparmor: fix mediation of prlimit * dangling symlinks to loaded apparmor policy (LP: #1755563) // apparmor bug fixes for bionic (LP: #1763427) - apparmor: fix dangling symlinks to policy rawdata after replacement * [OPAL] Assert fail: core/mem_region.c:447:lock_held_by_me(®ion->free_list_lock) (LP: #1762913) - powerpc/watchdog: remove arch_trigger_cpumask_backtrace * [LTC Test] Ubuntu 18.04: tm_trap_test failed on P8 compat mode guest (LP: #1762928) - powerpc/tm: Fix end
[Kernel-packages] [Bug 1760656] Re: test_151_sysctl_disables_bpf_unpriv_userns in kernel security test failed with 4.4/4.15 kvm
** Changed in: qa-regression-testing Status: New => Invalid -- You received this bug notification because you are a member of Kernel Packages, which is subscribed to linux-kvm in Ubuntu. https://bugs.launchpad.net/bugs/1760656 Title: test_151_sysctl_disables_bpf_unpriv_userns in kernel security test failed with 4.4/4.15 kvm Status in QA Regression Testing: Invalid Status in linux package in Ubuntu: Incomplete Status in linux-kvm package in Ubuntu: Fix Committed Status in linux source package in Xenial: New Status in linux-kvm source package in Xenial: Fix Committed Status in linux source package in Bionic: Incomplete Status in linux-kvm source package in Bionic: Fix Committed Bug description: FAIL: test_151_sysctl_disables_bpf_unpriv_userns (__main__.KernelSecurityTest) unprivileged_bpf_disabled sysctl supported -- Traceback (most recent call last): File "./test-kernel-security.py", line 1951, in test_151_sysctl_disables_bpf_unpriv_userns self._test_sysctl_value('kernel/unprivileged_bpf_disabled', expected, exists=exists) File "/home/ubuntu/autotest/client/tmp/ubuntu_qrt_kernel_security/src/qa-regression-testing/scripts/testlib.py", line 1185, in _test_sysctl_value self.assertEqual(exists, os.path.exists(sysctl), sysctl) AssertionError: /proc/sys/kernel/unprivileged_bpf_disabled Steps to reproduce: Deploy the node with Xenial 4.4 kernel, install linux-kvm sudo apt-get install python-minimal git clone --depth=1 git://kernel.ubuntu.com/ubuntu/autotest-client-tests -b master-next git clone --depth=1 git://kernel.ubuntu.com/ubuntu/autotest rm -fr autotest/client/tests ln -sf ~/autotest-client-tests autotest/client/tests AUTOTEST_PATH=/home/ubuntu/autotest sudo -E autotest/client/autotest-local --verbose autotest/client/tests/ubuntu_qrt_kernel_security/control ProblemType: Bug DistroRelease: Ubuntu 16.04 Package: linux-image-4.4.0-1019-kvm 4.4.0-1019.24 ProcVersionSignature: User Name 4.4.0-1019.24-kvm 4.4.98 Uname: Linux 4.4.0-1019-kvm x86_64 NonfreeKernelModules: signpost ApportVersion: 2.20.1-0ubuntu2.15 Architecture: amd64 Date: Mon Apr 2 17:22:38 2018 ProcEnviron: TERM=xterm-256color PATH=(custom, no user) XDG_RUNTIME_DIR= LANG=en_US.UTF-8 SHELL=/bin/bash SourcePackage: linux-kvm UpgradeStatus: No upgrade log present (probably fresh install) To manage notifications about this bug go to: https://bugs.launchpad.net/qa-regression-testing/+bug/1760656/+subscriptions -- Mailing list: https://launchpad.net/~kernel-packages Post to : kernel-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~kernel-packages More help : https://help.launchpad.net/ListHelp
[Kernel-packages] [Bug 1760656] Re: test_151_sysctl_disables_bpf_unpriv_userns in kernel security test failed with 4.4/4.15 kvm
** Changed in: linux-kvm (Ubuntu Xenial) Status: In Progress => Fix Committed ** Changed in: linux-kvm (Ubuntu Bionic) Status: In Progress => Fix Committed -- You received this bug notification because you are a member of Kernel Packages, which is subscribed to linux-kvm in Ubuntu. https://bugs.launchpad.net/bugs/1760656 Title: test_151_sysctl_disables_bpf_unpriv_userns in kernel security test failed with 4.4/4.15 kvm Status in QA Regression Testing: New Status in linux package in Ubuntu: Incomplete Status in linux-kvm package in Ubuntu: Fix Committed Status in linux source package in Xenial: New Status in linux-kvm source package in Xenial: Fix Committed Status in linux source package in Bionic: Incomplete Status in linux-kvm source package in Bionic: Fix Committed Bug description: FAIL: test_151_sysctl_disables_bpf_unpriv_userns (__main__.KernelSecurityTest) unprivileged_bpf_disabled sysctl supported -- Traceback (most recent call last): File "./test-kernel-security.py", line 1951, in test_151_sysctl_disables_bpf_unpriv_userns self._test_sysctl_value('kernel/unprivileged_bpf_disabled', expected, exists=exists) File "/home/ubuntu/autotest/client/tmp/ubuntu_qrt_kernel_security/src/qa-regression-testing/scripts/testlib.py", line 1185, in _test_sysctl_value self.assertEqual(exists, os.path.exists(sysctl), sysctl) AssertionError: /proc/sys/kernel/unprivileged_bpf_disabled Steps to reproduce: Deploy the node with Xenial 4.4 kernel, install linux-kvm sudo apt-get install python-minimal git clone --depth=1 git://kernel.ubuntu.com/ubuntu/autotest-client-tests -b master-next git clone --depth=1 git://kernel.ubuntu.com/ubuntu/autotest rm -fr autotest/client/tests ln -sf ~/autotest-client-tests autotest/client/tests AUTOTEST_PATH=/home/ubuntu/autotest sudo -E autotest/client/autotest-local --verbose autotest/client/tests/ubuntu_qrt_kernel_security/control ProblemType: Bug DistroRelease: Ubuntu 16.04 Package: linux-image-4.4.0-1019-kvm 4.4.0-1019.24 ProcVersionSignature: User Name 4.4.0-1019.24-kvm 4.4.98 Uname: Linux 4.4.0-1019-kvm x86_64 NonfreeKernelModules: signpost ApportVersion: 2.20.1-0ubuntu2.15 Architecture: amd64 Date: Mon Apr 2 17:22:38 2018 ProcEnviron: TERM=xterm-256color PATH=(custom, no user) XDG_RUNTIME_DIR= LANG=en_US.UTF-8 SHELL=/bin/bash SourcePackage: linux-kvm UpgradeStatus: No upgrade log present (probably fresh install) To manage notifications about this bug go to: https://bugs.launchpad.net/qa-regression-testing/+bug/1760656/+subscriptions -- Mailing list: https://launchpad.net/~kernel-packages Post to : kernel-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~kernel-packages More help : https://help.launchpad.net/ListHelp
[Kernel-packages] [Bug 1760656] Re: test_151_sysctl_disables_bpf_unpriv_userns in kernel security test failed with 4.4/4.15 kvm
** Changed in: linux-kvm (Ubuntu Xenial) Status: New => In Progress ** Changed in: linux-kvm (Ubuntu Bionic) Status: New => In Progress ** Changed in: linux-kvm (Ubuntu Xenial) Assignee: (unassigned) => Kamal Mostafa (kamalmostafa) ** Changed in: linux-kvm (Ubuntu Bionic) Assignee: (unassigned) => Kamal Mostafa (kamalmostafa) -- You received this bug notification because you are a member of Kernel Packages, which is subscribed to linux-kvm in Ubuntu. https://bugs.launchpad.net/bugs/1760656 Title: test_151_sysctl_disables_bpf_unpriv_userns in kernel security test failed with 4.4/4.15 kvm Status in QA Regression Testing: New Status in linux package in Ubuntu: Incomplete Status in linux-kvm package in Ubuntu: In Progress Status in linux source package in Xenial: New Status in linux-kvm source package in Xenial: In Progress Status in linux source package in Bionic: Incomplete Status in linux-kvm source package in Bionic: In Progress Bug description: FAIL: test_151_sysctl_disables_bpf_unpriv_userns (__main__.KernelSecurityTest) unprivileged_bpf_disabled sysctl supported -- Traceback (most recent call last): File "./test-kernel-security.py", line 1951, in test_151_sysctl_disables_bpf_unpriv_userns self._test_sysctl_value('kernel/unprivileged_bpf_disabled', expected, exists=exists) File "/home/ubuntu/autotest/client/tmp/ubuntu_qrt_kernel_security/src/qa-regression-testing/scripts/testlib.py", line 1185, in _test_sysctl_value self.assertEqual(exists, os.path.exists(sysctl), sysctl) AssertionError: /proc/sys/kernel/unprivileged_bpf_disabled Steps to reproduce: Deploy the node with Xenial 4.4 kernel, install linux-kvm sudo apt-get install python-minimal git clone --depth=1 git://kernel.ubuntu.com/ubuntu/autotest-client-tests -b master-next git clone --depth=1 git://kernel.ubuntu.com/ubuntu/autotest rm -fr autotest/client/tests ln -sf ~/autotest-client-tests autotest/client/tests AUTOTEST_PATH=/home/ubuntu/autotest sudo -E autotest/client/autotest-local --verbose autotest/client/tests/ubuntu_qrt_kernel_security/control ProblemType: Bug DistroRelease: Ubuntu 16.04 Package: linux-image-4.4.0-1019-kvm 4.4.0-1019.24 ProcVersionSignature: User Name 4.4.0-1019.24-kvm 4.4.98 Uname: Linux 4.4.0-1019-kvm x86_64 NonfreeKernelModules: signpost ApportVersion: 2.20.1-0ubuntu2.15 Architecture: amd64 Date: Mon Apr 2 17:22:38 2018 ProcEnviron: TERM=xterm-256color PATH=(custom, no user) XDG_RUNTIME_DIR= LANG=en_US.UTF-8 SHELL=/bin/bash SourcePackage: linux-kvm UpgradeStatus: No upgrade log present (probably fresh install) To manage notifications about this bug go to: https://bugs.launchpad.net/qa-regression-testing/+bug/1760656/+subscriptions -- Mailing list: https://launchpad.net/~kernel-packages Post to : kernel-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~kernel-packages More help : https://help.launchpad.net/ListHelp
[Kernel-packages] [Bug 1760656] Re: test_151_sysctl_disables_bpf_unpriv_userns in kernel security test failed with 4.4/4.15 kvm
** Also affects: linux (Ubuntu Bionic) Importance: Undecided Status: Incomplete ** Also affects: linux-kvm (Ubuntu Bionic) Importance: Undecided Status: New ** Also affects: linux (Ubuntu Xenial) Importance: Undecided Status: New ** Also affects: linux-kvm (Ubuntu Xenial) Importance: Undecided Status: New -- You received this bug notification because you are a member of Kernel Packages, which is subscribed to linux in Ubuntu. https://bugs.launchpad.net/bugs/1760656 Title: test_151_sysctl_disables_bpf_unpriv_userns in kernel security test failed with 4.4/4.15 kvm Status in QA Regression Testing: New Status in linux package in Ubuntu: Incomplete Status in linux-kvm package in Ubuntu: New Status in linux source package in Xenial: New Status in linux-kvm source package in Xenial: New Status in linux source package in Bionic: Incomplete Status in linux-kvm source package in Bionic: New Bug description: FAIL: test_151_sysctl_disables_bpf_unpriv_userns (__main__.KernelSecurityTest) unprivileged_bpf_disabled sysctl supported -- Traceback (most recent call last): File "./test-kernel-security.py", line 1951, in test_151_sysctl_disables_bpf_unpriv_userns self._test_sysctl_value('kernel/unprivileged_bpf_disabled', expected, exists=exists) File "/home/ubuntu/autotest/client/tmp/ubuntu_qrt_kernel_security/src/qa-regression-testing/scripts/testlib.py", line 1185, in _test_sysctl_value self.assertEqual(exists, os.path.exists(sysctl), sysctl) AssertionError: /proc/sys/kernel/unprivileged_bpf_disabled Steps to reproduce: Deploy the node with Xenial 4.4 kernel, install linux-kvm sudo apt-get install python-minimal git clone --depth=1 git://kernel.ubuntu.com/ubuntu/autotest-client-tests -b master-next git clone --depth=1 git://kernel.ubuntu.com/ubuntu/autotest rm -fr autotest/client/tests ln -sf ~/autotest-client-tests autotest/client/tests AUTOTEST_PATH=/home/ubuntu/autotest sudo -E autotest/client/autotest-local --verbose autotest/client/tests/ubuntu_qrt_kernel_security/control ProblemType: Bug DistroRelease: Ubuntu 16.04 Package: linux-image-4.4.0-1019-kvm 4.4.0-1019.24 ProcVersionSignature: User Name 4.4.0-1019.24-kvm 4.4.98 Uname: Linux 4.4.0-1019-kvm x86_64 NonfreeKernelModules: signpost ApportVersion: 2.20.1-0ubuntu2.15 Architecture: amd64 Date: Mon Apr 2 17:22:38 2018 ProcEnviron: TERM=xterm-256color PATH=(custom, no user) XDG_RUNTIME_DIR= LANG=en_US.UTF-8 SHELL=/bin/bash SourcePackage: linux-kvm UpgradeStatus: No upgrade log present (probably fresh install) To manage notifications about this bug go to: https://bugs.launchpad.net/qa-regression-testing/+bug/1760656/+subscriptions -- Mailing list: https://launchpad.net/~kernel-packages Post to : kernel-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~kernel-packages More help : https://help.launchpad.net/ListHelp
[Kernel-packages] [Bug 1760656] Re: test_151_sysctl_disables_bpf_unpriv_userns in kernel security test failed with 4.4/4.15 kvm
** Summary changed: - test_151_sysctl_disables_bpf_unpriv_userns in kernel security test failed with 4.4 X-kvm + test_151_sysctl_disables_bpf_unpriv_userns in kernel security test failed with 4.4/4.15 kvm -- You received this bug notification because you are a member of Kernel Packages, which is subscribed to linux-kvm in Ubuntu. https://bugs.launchpad.net/bugs/1760656 Title: test_151_sysctl_disables_bpf_unpriv_userns in kernel security test failed with 4.4/4.15 kvm Status in QA Regression Testing: New Status in linux package in Ubuntu: Incomplete Status in linux-kvm package in Ubuntu: New Bug description: FAIL: test_151_sysctl_disables_bpf_unpriv_userns (__main__.KernelSecurityTest) unprivileged_bpf_disabled sysctl supported -- Traceback (most recent call last): File "./test-kernel-security.py", line 1951, in test_151_sysctl_disables_bpf_unpriv_userns self._test_sysctl_value('kernel/unprivileged_bpf_disabled', expected, exists=exists) File "/home/ubuntu/autotest/client/tmp/ubuntu_qrt_kernel_security/src/qa-regression-testing/scripts/testlib.py", line 1185, in _test_sysctl_value self.assertEqual(exists, os.path.exists(sysctl), sysctl) AssertionError: /proc/sys/kernel/unprivileged_bpf_disabled Steps to reproduce: Deploy the node with Xenial 4.4 kernel, install linux-kvm sudo apt-get install python-minimal git clone --depth=1 git://kernel.ubuntu.com/ubuntu/autotest-client-tests -b master-next git clone --depth=1 git://kernel.ubuntu.com/ubuntu/autotest rm -fr autotest/client/tests ln -sf ~/autotest-client-tests autotest/client/tests AUTOTEST_PATH=/home/ubuntu/autotest sudo -E autotest/client/autotest-local --verbose autotest/client/tests/ubuntu_qrt_kernel_security/control ProblemType: Bug DistroRelease: Ubuntu 16.04 Package: linux-image-4.4.0-1019-kvm 4.4.0-1019.24 ProcVersionSignature: User Name 4.4.0-1019.24-kvm 4.4.98 Uname: Linux 4.4.0-1019-kvm x86_64 NonfreeKernelModules: signpost ApportVersion: 2.20.1-0ubuntu2.15 Architecture: amd64 Date: Mon Apr 2 17:22:38 2018 ProcEnviron: TERM=xterm-256color PATH=(custom, no user) XDG_RUNTIME_DIR= LANG=en_US.UTF-8 SHELL=/bin/bash SourcePackage: linux-kvm UpgradeStatus: No upgrade log present (probably fresh install) To manage notifications about this bug go to: https://bugs.launchpad.net/qa-regression-testing/+bug/1760656/+subscriptions -- Mailing list: https://launchpad.net/~kernel-packages Post to : kernel-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~kernel-packages More help : https://help.launchpad.net/ListHelp