** Description changed:
+ [Impact]
+
+ * New GL handling code in qemu/libs triggers apparmor denials in
+Jammy and later
+
+ * Libvirt already has code that does context aware "if gl is
+ enabled then allow things". The patch extends those by the
+ new paths it needs to access.
+
FYI - I have prepared a PPA and merge proposals for the related Ubuntu
package changes:
PPA: https://launchpad.net/~paelzer/+archive/ubuntu/lp-1970563-vnc-deadlock
Jammy:
https://code.launchpad.net/~paelzer/ubuntu/+source/qemu/+git/qemu/+merge/422947
Kinetic:
Based on the to-be-committed patch upstream I have prepared these Ubuntu
uploads and test PPA.
I'd be happy about review and feedback on those.
Kinetic:
https://code.launchpad.net/~paelzer/ubuntu/+source/libvirt/+git/libvirt/+merge/422941
Jammy:
)
Assignee: (unassigned) => Christian Ehrhardt (paelzer)
** Changed in: qemu (Ubuntu Kinetic)
Assignee: (unassigned) => Christian Ehrhardt (paelzer)
** Changed in: qemu (Ubuntu Kinetic)
Importance: Undecided => High
** Changed in: qemu (Ubuntu Jammy)
Importance: Undecided
Thanks Max, reviewed and approved upstream.
If there are no objections e.g. to the change of Author then I can merge it
there and start fix uploads for affected Ubuntu releases.
** Changed in: libvirt (Ubuntu Jammy)
Assignee: (unassigned) => Christian Ehrhardt (paelzer)
** Chan
** Also affects: libvirt (Ubuntu Jammy)
Importance: Undecided
Status: New
** Changed in: libvirt (Ubuntu Jammy)
Status: New => Triaged
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
** Tags removed: server-todo
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1576812
Title:
[MIR] ipmitool
To manage notifications about this bug go to:
** Tags added: bitesize
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1960937
Title:
Libvirtd conffiles should be less misleading and document tcp/tls
usage
To manage notifications about this
** Tags removed: server-todo
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1951490
Title:
Can't print after update to 4.13
To manage notifications about this bug go to:
** Changed in: exim4 (Ubuntu Bionic)
Assignee: (unassigned) => Bryce Harrington (bryce)
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1971489
Title:
exim4 GnuTLS breakage with outgoing TLS 1.3
** Tags added: bitesize
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1958629
Title:
Deprecation warnings about Proc.new
To manage notifications about this bug go to:
** Changed in: samba (Ubuntu)
Assignee: (unassigned) => Andreas Hasenack (ahasenack)
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1969654
Title:
Can't print with Samba via Windows 10 printer
ned) => Christian Ehrhardt (paelzer)
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1971315
Title:
Merge qemu from Debian unstable for kinetic
To manage notifications about this bug go to:
** Changed in: libvirt (Ubuntu)
Assignee: (unassigned) => Christian Ehrhardt (paelzer)
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1971289
Title:
Merge libvirt from Debian unsta
** Changed in: libvirt-dbus (Ubuntu)
Assignee: (unassigned) => Christian Ehrhardt (paelzer)
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1971290
Title:
Merge libvirt-dbus from Deb
** Changed in: spice (Ubuntu)
Milestone: ubuntu-22.05 => ubuntu-22.06
** Changed in: spice (Ubuntu)
Assignee: (unassigned) => Christian Ehrhardt (paelzer)
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
** Changed in: virglrenderer (Ubuntu)
Assignee: (unassigned) => Christian Ehrhardt (paelzer)
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1971333
Title:
Merge virglrenderer from Deb
ded for this case (lib only)
Problems: None
** Changed in: libwpe (Ubuntu)
Assignee: Christian Ehrhardt (paelzer) => Ubuntu Security Team
(ubuntu-security)
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchp
This can enter security queue while Desktop considers the remaining open
required todos.
Assigning.
Also setting the milestone matching that of ell.
** Changed in: iwd (Ubuntu)
Milestone: None => ubuntu-22.08
** Changed in: iwd (Ubuntu)
Assignee: Sebastien Bacher (seb128) => Ubuntu
** Changed in: libwpe (Ubuntu)
Assignee: (unassigned) => Christian Ehrhardt (paelzer)
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1973031
Title:
[MIR] libwpe
To manage notifications ab
** Attachment added: "Local build log (including post build lintian)"
https://bugs.launchpad.net/ubuntu/+source/ell/+bug/1971738/+attachment/5590379/+files/ell.buildlog-incl-lintian.txt
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to
** Attachment added: "lintian artifact"
https://bugs.launchpad.net/ubuntu/+source/ell/+bug/1971738/+attachment/5590378/+files/ell.lintian.source.txt
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
This really LGTM, but it needs security review as well.
FYI: I've also set the milestone to match was mentioned in the initial
report.
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1971738
Title:
ged in: ell (Ubuntu)
Assignee: Christian Ehrhardt (paelzer) => Ubuntu Security Team
(ubuntu-security)
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1971738
Title:
[MIR] ell
To manage notific
** Changed in: ell (Ubuntu)
Milestone: None => ubuntu-22.08
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1971738
Title:
[MIR] ell
To manage notifications about this bug go to:
I think this got another side effect.
needrestart detects services in their scope and so it finds dnsmasq processes
using outdated libs.
Once it does it will flag "libvirtd.service" as using outdated binaries,
essentially every time from that moment as - due to the lack of restarting them
-
Hi,
there will be a new set of stable releases in a few days which might fix that.
You said ICE, e.g. for DPDK 21.11 that you referenced that will include:
net/ice/base: add profile validation on switch filter
net/ice: fix build with 16-byte Rx descriptor
net/ice: fix link up when starting device
** Summary changed:
- eval packaging nvmet-clit as tool for nvme target configuration
+ eval packaging nvmet-cli as tool for nvme target configuration
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
Oh I assumed this was running s390x VM on s390x Host.
@Ryan - is this s390x emulation on a non-s390x host?
** Changed in: openssh (Ubuntu)
Status: New => Incomplete
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
** Changed in: nullboot (Ubuntu)
Assignee: (unassigned) => Ioanna Alifieraki (joalif)
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1965115
Title:
[MIR] nullboot
To manage notifications about
Indeed (thanks Richard) that is enabled since 3.6-1.
It is unlikely though due to the associated symbol changes (see e.g. the
old changelogs) that this can be provided as an SRU for older releases.
I'm not saying impossible, just unlikely as that evaluation has to be
done and checked in depth for
@Ryan - Before going deeper since I read
"readconf.c:read_config_file_depth" in there. Does the same happen on a
fresh Jammy guest that has all-default config files? Or only to this
particular guest that you have?
--
You received this bug notification because you are a member of Ubuntu
Bugs,
(gdb) bt
#0 __GI__IO_default_xsputn (n=, data=,
f=) at libioP.h:947
#1 __GI__IO_default_xsputn (f=0x3ffcbc7c2e8, data=,
n=2929360903402) at genops.c:370
#2 0x03ffa6c7896c in outstring_func (done=11, length=2929360903402,
string=0x2aa0b841cea <__func__.3.lto_priv.14>
Hi,
for comparison on another system I've taken a Host (was impish before upgrade)
and created guests with Xenial, Bionic, Focal, Jammy.
All worked fine at this stage - ssh login and health of guests/hosts was good.
Then I upgraded the Host to Jammy (as the reporter did).
Example of the simple
Hi,
we were revisiting this case which was lost due to Rafael no more being able to
look at it :-/
In the meantime nvme-cli is in main (since hirsute via bug 1889688). But
nvmet-cli still isn't packaged in Debian/Ubuntu.
nvme-cli just did a major release following the last 1.x [1] into 2.0 [2].
** Tags removed: server-todo
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1966237
Title:
ldnsutils emits wrong sha256 hashes
To manage notifications about this bug go to:
** Tags added: server-todo
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1968550
Title:
unattended updates, missing routes
To manage notifications about this bug go to:
** Tags removed: server-triage-discuss
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1968550
Title:
unattended updates, missing routes
To manage notifications about this bug go to:
** Changed in: php7.4 (Ubuntu)
Assignee: (unassigned) => Athos Ribeiro (athos-ribeiro)
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1968228
Title:
RTD collision with opcache
To manage
Ok, it is there now:
https://people.canonical.com/~ubuntu-archive/component-mismatches-proposed.html
gnome-bluetooth3: gir1.2-gnomebluetooth-3.0 gnome-bluetooth-3-common
libgnome-bluetooth-3.0-13 libgnome-bluetooth-3.0-dev libgnome-bluetooth-doc
libgnome-bluetooth-ui-3.0-13
I'm not seeing the dependency yet on [1] or [2].
What upload exactly are we waiting for here to have it show up?
[1]:
https://people.canonical.com/~ubuntu-archive/component-mismatches-proposed.html
[2]: https://people.canonical.com/~ubuntu-archive/component-mismatches.html
--
You received this
Thanks Vanessa for the testing on the PPA!
@Halil - I'd leave the debugging of the remaining issue to you as while
you can't reproduce it yet it still is much closer to you than it is to
me :-/ Thanks in advance, let us know what you find.
In the meantime I have prepared the SRU content and got
*** This bug is a duplicate of bug 1968187 ***
https://bugs.launchpad.net/bugs/1968187
Hi, I think we discovered that issue twice.
Marked as a dup as we are further in the other case.
** This bug has been marked a duplicate of bug 1968187
apparmor denial when using swtpm
--
You received
Thank you Jeremy, yes this looks all complete by now.
Thanks for addressing the remaining tasks.
MIR Team Ack.
Thereby this would be ready to be promoted once the dependency is present.
Which will happen once you upload for the FFE bug you have open.
** Changed in: gnome-bluetooth3 (Ubuntu)
We can add those - if we agree - as Ubuntu Delta kind of "right now" to fix it
before release.
But the swtpm changes then shall be part of the upstreaming effort to Stefan
that we planned anyway.
And the libvirt changes should go upstream there for the benefit of others as
well.
Summary of
For test purpose I was adding
/usr/bin/swtpm PUx,
to /etc/apparmor.d/local/abstractions/libvirt-qemu
I can see the error that you mean, that is something apparmor fails to load.
One can call apparmor_parser directly to see more.
ubuntu@swtpm-jammy:~$ sudo apparmor_parser -r
You are welcome,
trying to resolve things fast is the best I can give you in return for your
always fast and large scale testing ending in well written bugs :-)
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
FYI - uploads done, got accepted a few hours ago and building now.
Also the team subscription to the package was done.
It shows in component mismatches:
glusterfs: libgfapi0 libgfrpc0 libgfxdr0 libglusterfs0
MIR: #1950321 (Confirmed)
MIR: #1274247 (Won't Fix)
[Reverse-Depends: libgfapi0,
** Tags added: server-todo
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1968187
Title:
apparmor denial when using swtpm
To manage notifications about this bug go to:
Hi Benjamin, thanks for the bug.
This sounds like an issue not yet wreaking havoc but could be, so it is nice to
fix it before things get worse.
Limiting to "scsi + vsock" is what is needed I guess.
The rules we have are:
root@j:~# head /lib/udev/rules.d/60-open-vm-tools.rules
** Tags added: server-todo
** Changed in: open-vm-tools (Ubuntu)
Assignee: (unassigned) => Bryce Harrington (bryce)
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1968354
Title:
Please do not
** Changed in: python-xmlschema (Ubuntu)
Status: In Progress => Fix Released
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1953363
Title:
[MIR] python-xmlschema, elementpath,
Thanks for linking that Andreas.
For qemu it is: https://bugs.launchpad.net/cloud-archive/+bug/1246924
I think the FFE decision is the same for both samba/qemu and the reason
to come by late the same as well (this MIR being stalled) - so I'd hope
it makes it more easy to think->decide about it
Hi Łukasz,
thanks for having a look - sure let me try to summarize an answer to your
question.
# General
Yes - Debian has this enabled in both for what feels like ages.
It was the supportability in main which blocked us from following that, but we
had plenty of requests and are happy to
** Changed in: qemu (Ubuntu)
Status: Confirmed => In Progress
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1968258
Title:
Data corruption in qemu_rbd_co_block_status
To manage
Hi Markus,
your bug reports are always great, well prepared, reliable and useful!
Thank you so much already.
Both changes LGTM, are easily applied and should cause no side effects AFAICS.
I've added it to another case that i queued for review and upload already:
PPA:
Now all is in place, but due to all the delay this is now much later than
intended.
We will prepare the changes to samba and qemu which will pull this in, but
given the time I'd feel more comfortable to have a quick release-team FFE-ack.
PPA (just started building, lets hope it works as good as
FYI - completed in the new efforts referenced by Andreas \o/
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1274247
Title:
[MIR] Glusterfs
To manage notifications about this bug go to:
** Changed in: glusterfs (Ubuntu)
Assignee: Steve Beattie (sbeattie) => (unassigned)
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1950321
Title:
[MIR] glusterfs
To manage notifications about
Hmm,
ok I expected libvirt to call this e.g. from src/qemu/qemu_tpm.c and I wondered
already why it is the guests profile.
But since it runs under the guests profile it must be more like "libvirt ->
qemu -> ??? -> swtpm_setup" - do you have an example of the call path that you
see?
Only once
Apparmor follow up filed as:
https://bugs.launchpad.net/ubuntu/+source/libvirt/+bug/1968187
Uploaded the tested fix for swtpm:
Uploading swtpm_0.6.3-0ubuntu2.dsc
Uploading swtpm_0.6.3-0ubuntu2.debian.tar.xz
Uploading swtpm_0.6.3-0ubuntu2_source.buildinfo
Uploading
Install fine:
ubuntu@swtpm-jammy:/var/lib/swtpm$ sudo apt update; sudo apt upgrade
Hit:1 http://archive.ubuntu.com/ubuntu jammy InRelease
Hit:2 http://archive.ubuntu.com/ubuntu jammy-updates InRelease
Hit:3 http://security.ubuntu.com/ubuntu jammy-security
Public bug reported:
Guest using:
Triggers:
apparmor="DENIED" operation="open"
profile="libvirt-202a34a9-2ee2-4826-b206-c249f535be90"
name="/etc/ssl/openssl.cnf" pid=15149 comm="swtpm" requested_mask="r"
denied_mask="r" fsuid=113 ouid=0
Find from the swtpm side, but we need to open
The fix needed some polishing, but was a great hint.
Test PPA started to build at:
https://launchpad.net/~paelzer/+archive/ubuntu/lp-1968131-swtpm-rndfile
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
Yes Simon,
that is much better than me trying to fetch home and insert it into the string
:-)
Thanks for the reference.
It feels a bit odd seeing myself coming by between meetings all day and
make debug progress to then see such a simple solution. Please tell me
that my debug helped to make that
A new interim summary
Problem:
- debian/patches/openssl-not-certtool.patch adds "RANDFILE =
$ENV::HOME/.rnd\n"
- this is not picked up correctly at the time this file is evaluated
- Due to that swtpm-localca tries to access $CWD/.rnd and fails in most cases
- The upstreaming of this
In a set of cross checks I ran it as
#1 root, but this time in /home/ubuntu instead of in /root.
I got:
lrwxrwxrwx 1 root root 0 Apr 7 13:40 /proc/11805/cwd -> /home/ubuntu/
And afterwards
-rw--- 1 root root 1024 Apr 7 13:40 /home/ubuntu/.rnd
So it fully ignores $HOME
So root cause
Ok, it has
HOME=/var/lib/swtpm
So due to the config being
"RANDFILE = $ENV::HOME/.rnd\n"
one might expect `/var/lib/swtpm/.rnd`
But that isn't what it will resolve to, instead we see in strace that it uses:
"./.rnd"
And surprise :-P, it does not set CWD, I checked a running
The swtpm user is created as:
swtpm:x:113:121:virtual TPM software stack,,,:/var/lib/swtpm:/bin/false
But
$ ls -laF /var/lib/swtpm
ls: cannot access '/var/lib/swtpm': No such file or directory
I guess we need to give him a better home dir?
For example drop `--no-create-home` from the postinst
I think I got it, it is around that .rnd file as mentioned in the log.
Indeed after running this as root I have:
$ sudo ls -laF /root/.rnd
-rw--- 1 root root 1024 Apr 7 08:16 /root/.rnd
But running as swtpm I get this with strace:
This is the initial failure:
[pid 3049] 13:10:20 (+
# clean
$ sudo apt remove --purge swtpm swtpm-tools
$ sudo rm -rf /var/lib/libvirt/swtpm /var/lib/swtpm-localca /var/log/swtpm
# re-create a clean env by re-installing swtpm
$ sudo apt install swtpm swtpm-tools
# Status after install
$ sudo ls -laF /var/lib/libvirt/swtpm
Summary of initial triage:
- It is reproducible for me as reported => confirmed
- Other than hoped it is not "just" an apparmor denial (it is in the setup
stage,
not the later swtpm that talks with the guest) :-/
- running the failing command as root locally works
- seems to be associated to
I found it in ps
4 1131814 758 20 0 13772 5784 - S? 0:00 \_
/usr/bin/swtpm_setup --tpm2 --tpm-state
/var/lib/libvirt/swtpm/202a34a9-2ee2-4826-b206-c249f535be90/tpm2 --vmid
testguest:202a34a9-2ee2-4826-b206-c249f535be90 --logfile
I wanted to check if this is more virt-manager or libvirt to call it
badly (or call it in a bad environment).
I spawned a default libvirt based guest with uvtool.
In there I then added the most common pattern of
This is showing kind of the same behavior.
So while most tests before were
As invoked by the virt-stack we see:
Starting vTPM manufacturing as swtpm:swtpm @ Thu 07 Apr 2022 08:14:26 AM UTC
Successfully created RSA 2048 EK with handle 0x81010001.
Invoking /usr/lib/x86_64-linux-gnu/swtpm/swtpm-localca --type ek --ek
I agree that worst-case dropping the recommends is an option.
But only to mitigate - it is meant to be available and working.
It worked for me in the (far) past, but it might have been one of the
extra updates/features landing in the meantime. Although I have not used
it with virt-install yet
Since we couldn't get a hold how to fix/debug this I'm glad to hear
that!
** Changed in: open-vm-tools (Ubuntu)
Status: Incomplete => Invalid
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
As with the other case - Since we couldn't get a hold how to fix/debug
this I'm glad to hear that!
** Changed in: systemd (Ubuntu)
Status: Confirmed => Invalid
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
You are right for a general stance of SRU minimality
But this case felt like fixing 7/8 of a single whole.
And while indeed your case didn't need this one more fix someone else would and
we touch this code anyway. Vice versa all tests since this is upstream is done
with it applied - so the
Upgraded and tested from impish proposed
root@i:~# dpkg -l ldnsutils
Desired=Unknown/Install/Remove/Purge/Hold
| Status=Not/Inst/Conf-files/Unpacked/halF-conf/Half-inst/trig-aWait/Trig-pend
|/ Err?=(none)/Reinst-required (Status,Err: uppercase=bad)
||/ Name Version Architecture
Request to add the test to the upstream build time test filed here:
https://github.com/NLnetLabs/ldns/issues/169
** Bug watch added: github.com/NLnetLabs/ldns/issues #169
https://github.com/NLnetLabs/ldns/issues/169
--
You received this bug notification because you are a member of Ubuntu
Understanding what happens is critical, then - once we know what it is -
it might be tuned down in priority.
Also tagged/subscribed for foundations (fow swtpm) and server (for the
virt bits) attention.
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is
Thanks Martin,
IIRC the new virt-manager tries to provide swtpm if present and due tot he
dependency change it now it present. Since we do not yet know where the
root-cause or fix will land I've added a few more affected packages for now.
But I must admit I'm super busy and this makes me feel
** Changed in: freeradius (Ubuntu Focal)
Assignee: Lena Voytek (lvoytek) => Andreas Hasenack (ahasenack)
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1873923
Title:
freeradius with
Planning to have a look as part of next cycles merge.
** Tags removed: server-todo
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1581864
Title:
nginx.service: Failed to read PID from file
Planning to have a look as part of next cycles merge.
** Tags removed: server-todo
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1948699
Title:
Please enable luajit for arm64
To manage
** Tags removed: server-todo
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1893716
Title:
scripts in /etc/update-motd.d/ run even on login via non-interactive
scp and sftp sessions
To manage
There actually is an autopkgtest exercising this already, as part of
dns-root-data - this is how it was found. The problem is that this test
isn't fired when ldns itself is updated :-/
I'd not want to block the SRU on this Robie.
But I'd be ok to file a request upstream to please add it to their
Prepared
PPA:
https://launchpad.net/~paelzer/+archive/ubuntu/lp-1967814-scsi-error-handling/+packages
MP:
https://code.launchpad.net/~paelzer/ubuntu/+source/qemu/+git/qemu/+merge/418636
Let us see if one builds and tests fine and the other gets positive
review feedback.
--
You received this
I'm done reading and while a complex subsystem and a bunch of changes
they individually all seem sane to me (although a108557b could have side
effects that are hard to spot).
For SRU considerations I think this includes potential change of
behavior of formerly silently ignored errors now becoming
I can confirm that just on the patch-level only two need backporting,
the rest applies as is and I have regenerated them to match the
packaging requirements. The backport-adaptations themselves are minimal.
From the content I guess it is complex enough that nobody can be fully sure.
I'm still
For easier debugging this can be reproduced on any affected system
(Tried KVM and EC2) by just running:
$ sudo systemctl start hv-kvp-daemon.service
^^ This will stall while one would assume it should quick-exit due to
the ConditionVirtualization not being met.
A full cycle (90 second stall)
On a fresh AWS instance I already see it stalling on package install, I
do not even need to reboot :-/
ubuntu@ip-172-31-16-15:~$ sudo apt install linux-cloud-tools-common
Reading package lists... Done
Building dependency tree... Done
Reading state information... Done
The following NEW packages
Public bug reported:
I see a boot stall on a normal qemu/libvirt based KVM guest using an almost
fresh cloud image a stall on boot:
While live on the console I see:
[ OK ] Reached target System Time Set.
[ OK ] Finished Load AppArmor pro…s managed internally by snapd.
[* ] A start job is
** Package changed: kvm (Ubuntu) => linux (Ubuntu)
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1967894
Title:
KVM IPI Virtualization support for SPR
To manage notifications about this bug go to:
FYI: Filed upstream at https://github.com/linux-pam/linux-pam/issues/452
** Bug watch added: github.com/linux-pam/linux-pam/issues #452
https://github.com/linux-pam/linux-pam/issues/452
** Also affects: pam via
https://github.com/linux-pam/linux-pam/issues/452
Importance: Unknown
Overall the majority of this is now fixed and mitigated with the combination of:
ubuntu-release-upgrader | 1:22.04.8 | jammy | source
landscape-client | 19.12-0ubuntu13| jammy | source, amd64,
arm64, armhf, ppc64el, riscv64, s390x
update-notifier | 3.192.54 |
This shows in component mismatches (seed change landed)
nftables: libnftables-dev libnftables1 nftables
MIR: #1887187 (Fix Committed)
[Reverse-Depends: Rescued from nftables (Uploader: paelzer) (Uploader:
paelzer), Ubuntu.Jammy standard seed, nftables (Uploader: paelzer)]
It is only in jammy
** Changed in: nftables (Ubuntu)
Status: Fix Committed => In Progress
** Changed in: nftables (Ubuntu)
Assignee: Steve Beattie (sbeattie) => (unassigned)
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
List of original commits and the version they were in:
v5.2.0
commit 3b12a7fd39307017c8968b8d05986a63b33752b5
Author: Paolo Bonzini
Date: Thu Nov 12 10:52:04 2020 +0100
scsi-disk: convert more errno values back to SCSI statuses
v6.0.0
commit f95f61c2c9618fae7d8ea4c1d63e7416884bad52
201 - 300 of 10004 matches
Mail list logo