parse-sublike-perl (Ubuntu)
Status: Confirmed => Incomplete
** Changed in: libindirect-perl (Ubuntu)
Assignee: Christian Ehrhardt (paelzer) => (unassigned)
** Changed in: libobject-pad-perl (Ubuntu)
Assignee: Christian Ehrhardt (paelzer) => (unassigned)
** Changed
Review for Package: libunicode-escape-perl
[Summary]
MIR team NACK
(outdated, unmaintained, alternatives in main)
Unless there is a very strong explanation why this can't be done with
the better alternatives this is a NACK.
This does not need a security review
List of specific binary packages to
Review for Package: libobject-pad-perl
[Summary]
MIR team ACK
This does not need a security review
List of specific binary packages to be promoted to main: libobject-pad-perl
Specific binary packages built, but NOT to be promoted to main: n/a
[Duplication]
There is no other package in main prov
Review for Package: libindirect-perl
[Summary]
MIR team ACK
This does not need a security review
List of specific binary packages to be promoted to main: libindirect-perl
Specific binary packages built, but NOT to be promoted to main: n/a
[Duplication]
There is no other package in main providin
Completed in Kinetic, uploaded to Jammy now - waiting for the SRU team
to have a look
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1970563
Title:
Qemu 1:6.2+dfsg-2ubuntu6 deadlock bug
To manage no
** Changed in: libqrtr-glib (Ubuntu)
Assignee: (unassigned) => Lukas Märdian (slyon)
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1963707
Title:
[MIR] libqrtr-glib
To manage notifications abo
** Changed in: libindirect-perl (Ubuntu)
Assignee: (unassigned) => Christian Ehrhardt (paelzer)
** Changed in: libobject-pad-perl (Ubuntu)
Assignee: (unassigned) => Christian Ehrhardt (paelzer)
** Changed in: libunicode-escape-perl (Ubuntu)
Assignee: (unassigned) =>
** Changed in: libldac (Ubuntu)
Assignee: (unassigned) => Lukas Märdian (slyon)
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1973784
Title:
[MIR] libldac
To manage notifications about this bu
** Changed in: ruby-webrick (Ubuntu Kinetic)
Assignee: (unassigned) => Ioanna Alifieraki (joalif)
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1975523
Title:
[MIR] Promote to main in Jammy and
Ready for the seed/dependency change to land
** Changed in: libfreeaptx (Ubuntu)
Status: New => In Progress
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1971767
Title:
[MIR] libfreeaptx
To
# I have fetched a new cloud image.
$ wget
https://cloud-images.ubuntu.com/jammy/current/jammy-server-cloudimg-amd64-disk-kvm.img
$ file jammy-server-cloudimg-amd64-disk-kvm.img
jammy-server-cloudimg-amd64-disk-kvm.img: QEMU QCOW2 Image (v2), 2361393152
bytes
# Then I have extended it to 25G si
Hmm,
interesting - here our results differ then.
All of my 8 attachments do not have that problem.
"debugfs -R dump_unused" does not report anything and zerofree agrees reporting
all of them as "none to modify/free" / "almost all is free" / "total blocks"
example:
$ sudo zerofree -vn /dev/sdd
0/
Fixed in 6.6 and later, but nobody is sure via which changes exactly -
therefore we can't backport anything yet.
** Also affects: libvirt (Ubuntu Focal)
Importance: Undecided
Status: New
** Changed in: libvirt (Ubuntu)
Status: New => Fix Released
** Changed in: libvirt (Ubuntu F
Completed in Kinetic, uploaded for Jammy now - waiting on the SRU teams
review to accept it.
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1972075
Title:
Blank screen when viewing GL-accelerated vir
Thanks for the Review Sergio.
Uploaded the fix for Kinetic.
We can start the SRU to jammy once it is complete there.
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1970563
Title:
Qemu 1:6.2+dfsg-2ub
Thanks for the test Max.
Thanks for the review Sergio.
Uploaded for Kinetic, will start the Jammy SRU once it is fully
completed there.
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1972075
Title:
@Brent - Let me know if your data and/or lsblk/dump2fs look vastly
different?
I pondered if I should call this "a feature request to an old attachment type"
which is unlikely
to get much attention. But the only stomach-ache that I have with this (and
this is why I do not close this) is that it h
Hi Brent,
first of all I'm glad that you got around things via my suggestions.
There is a reason why those device types are usually recommended in
newer guides as well as being the default in higher level tools like
virt-manager, uvtool, ... is virtio nowadays. It is just more capable.
Thanks for
Compare:
- 25G qemu images each set to cache=none
- I ide/sata / V = Virtio
- Disk Options:
1 - discard=unmap
2 - discard=unmap + detect_zeroes=on
3 - discard=ignore
4 - defaults
One can check with lsblk --discard (as mentioned above) how the system thinks
it can discard and with dumpe2fs
I merged the change upstream.
Waiting for a review, but that is happening soon.
Max: Before we upload, could you give the PPA a try if it resolves
things in your setup as well (it should as it is your change, but why
not trying to be sure).
--
You received this bug notification because you are a
On Wed, May 18, 2022 at 12:51 AM Seth Arnold <1971...@bugs.launchpad.net> wrote:
>
> Hmm this thing seems to have its own TLS stack
> https://git.kernel.org/pub/scm/libs/ell/ell.git/tree/ell/tls.c
Yeah, as I've written it reimplements all base functions of a small
system in the lib.
--
You recei
Even without proper trimming from GNS there would be a regular cleanup on the
FS anyway.
Ubuntu has a timer based fstrim to clean up space that was freed without
trim/discard awareness.
Assuming that your consumed space is not just inode overhead (I can't
help with that) you could check if this
Also to attack this from a different angle simultaneously - have you
maybe already tried this on older/newer Ubuntu Hosts and did it behave
differently there?
** Changed in: qemu (Ubuntu)
Status: New => Incomplete
--
You received this bug notification because you are a member of Ubuntu
Bu
Hi Brent,
thank you for all the detail and dedication already spent on this!
Just to be sure as there are two theories up for discussion:
1. ext4lazyinit fills it all
2. gns3 with discard=on fills it all due to maybe DISCARD being ignored
I was reading through the links and discussions and I wan
Finally about discard to the guest.
I see you have ,discard=on in your qemu commandline.
But that is only half the deal, depending on various other setup details the
guest can recognize or not recognize that.
I do not know all the details of your setup but at least in the past
there was quit
** Description changed:
+ [Impact]
+
+ * A deadlock in the connect/disconnect code is present in qemu 6.2
+
+ * backport the fix which moves the unlock a bit to avoid racing with
+a lock triggered by clipboard unregistration. For more see the
+referenced upstream commit
+
+ [Test Pla
** Description changed:
+ [Impact]
+
+ * New GL handling code in qemu/libs triggers apparmor denials in
+Jammy and later
+
+ * Libvirt already has code that does context aware "if gl is
+ enabled then allow things". The patch extends those by the
+ new paths it needs to access.
+
FYI - I have prepared a PPA and merge proposals for the related Ubuntu
package changes:
PPA: https://launchpad.net/~paelzer/+archive/ubuntu/lp-1970563-vnc-deadlock
Jammy:
https://code.launchpad.net/~paelzer/ubuntu/+source/qemu/+git/qemu/+merge/422947
Kinetic:
https://code.launchpad.net/~paelzer/
Based on the to-be-committed patch upstream I have prepared these Ubuntu
uploads and test PPA.
I'd be happy about review and feedback on those.
Kinetic:
https://code.launchpad.net/~paelzer/ubuntu/+source/libvirt/+git/libvirt/+merge/422941
Jammy:
https://code.launchpad.net/~paelzer/ubuntu/+sourc
Jammy)
Assignee: (unassigned) => Christian Ehrhardt (paelzer)
** Changed in: qemu (Ubuntu Kinetic)
Assignee: (unassigned) => Christian Ehrhardt (paelzer)
** Changed in: qemu (Ubuntu Kinetic)
Importance: Undecided => High
** Changed in: qemu (Ubuntu Jammy)
Importance: Undec
Thanks Max, reviewed and approved upstream.
If there are no objections e.g. to the change of Author then I can merge it
there and start fix uploads for affected Ubuntu releases.
** Changed in: libvirt (Ubuntu Jammy)
Assignee: (unassigned) => Christian Ehrhardt (paelzer)
** Changed
** Also affects: libvirt (Ubuntu Jammy)
Importance: Undecided
Status: New
** Changed in: libvirt (Ubuntu Jammy)
Status: New => Triaged
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/19
** Tags removed: server-todo
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1576812
Title:
[MIR] ipmitool
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/clus
** Tags added: bitesize
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1960937
Title:
Libvirtd conffiles should be less misleading and document tcp/tls
usage
To manage notifications about this bug
** Tags removed: server-todo
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1951490
Title:
Can't print after update to 4.13
To manage notifications about this bug go to:
https://bugs.launchpad.net/s
** Changed in: exim4 (Ubuntu Bionic)
Assignee: (unassigned) => Bryce Harrington (bryce)
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1971489
Title:
exim4 GnuTLS breakage with outgoing TLS 1.3
** Tags added: bitesize
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1958629
Title:
Deprecation warnings about Proc.new
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubu
** Changed in: samba (Ubuntu)
Assignee: (unassigned) => Andreas Hasenack (ahasenack)
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1969654
Title:
Can't print with Samba via Windows 10 printer a
ned) => Christian Ehrhardt (paelzer)
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1971315
Title:
Merge qemu from Debian unstable for kinetic
To manage notifications about this bug go to:
** Changed in: libvirt (Ubuntu)
Assignee: (unassigned) => Christian Ehrhardt (paelzer)
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1971289
Title:
Merge libvirt from Debian unstable
** Changed in: libvirt-dbus (Ubuntu)
Assignee: (unassigned) => Christian Ehrhardt (paelzer)
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1971290
Title:
Merge libvirt-dbus from Deb
** Changed in: spice (Ubuntu)
Milestone: ubuntu-22.05 => ubuntu-22.06
** Changed in: spice (Ubuntu)
Assignee: (unassigned) => Christian Ehrhardt (paelzer)
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
** Changed in: virglrenderer (Ubuntu)
Assignee: (unassigned) => Christian Ehrhardt (paelzer)
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1971333
Title:
Merge virglrenderer from Deb
t, but none needed for this case (lib only)
Problems: None
** Changed in: libwpe (Ubuntu)
Assignee: Christian Ehrhardt (paelzer) => Ubuntu Security Team
(ubuntu-security)
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https
This can enter security queue while Desktop considers the remaining open
required todos.
Assigning.
Also setting the milestone matching that of ell.
** Changed in: iwd (Ubuntu)
Milestone: None => ubuntu-22.08
** Changed in: iwd (Ubuntu)
Assignee: Sebastien Bacher (seb128) => Ubuntu Sec
** Changed in: libwpe (Ubuntu)
Assignee: (unassigned) => Christian Ehrhardt (paelzer)
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1973031
Title:
[MIR] libwpe
To manage notifications ab
** Attachment added: "Local build log (including post build lintian)"
https://bugs.launchpad.net/ubuntu/+source/ell/+bug/1971738/+attachment/5590379/+files/ell.buildlog-incl-lintian.txt
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubunt
** Attachment added: "lintian artifact"
https://bugs.launchpad.net/ubuntu/+source/ell/+bug/1971738/+attachment/5590378/+files/ell.lintian.source.txt
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/19
This really LGTM, but it needs security review as well.
FYI: I've also set the milestone to match was mentioned in the initial
report.
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1971738
Title:
[
anged in: ell (Ubuntu)
Assignee: Christian Ehrhardt (paelzer) => Ubuntu Security Team
(ubuntu-security)
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1971738
Title:
[MIR] ell
To manage no
** Changed in: ell (Ubuntu)
Milestone: None => ubuntu-22.08
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1971738
Title:
[MIR] ell
To manage notifications about this bug go to:
https://bugs.lau
I think this got another side effect.
needrestart detects services in their scope and so it finds dnsmasq processes
using outdated libs.
Once it does it will flag "libvirtd.service" as using outdated binaries,
essentially every time from that moment as - due to the lack of restarting them
- that
Hi,
there will be a new set of stable releases in a few days which might fix that.
You said ICE, e.g. for DPDK 21.11 that you referenced that will include:
net/ice/base: add profile validation on switch filter
net/ice: fix build with 16-byte Rx descriptor
net/ice: fix link up when starting device
** Summary changed:
- eval packaging nvmet-clit as tool for nvme target configuration
+ eval packaging nvmet-cli as tool for nvme target configuration
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/167
Oh I assumed this was running s390x VM on s390x Host.
@Ryan - is this s390x emulation on a non-s390x host?
** Changed in: openssh (Ubuntu)
Status: New => Incomplete
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.l
** Changed in: nullboot (Ubuntu)
Assignee: (unassigned) => Ioanna Alifieraki (joalif)
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1965115
Title:
[MIR] nullboot
To manage notifications about
Indeed (thanks Richard) that is enabled since 3.6-1.
It is unlikely though due to the associated symbol changes (see e.g. the
old changelogs) that this can be provided as an SRU for older releases.
I'm not saying impossible, just unlikely as that evaluation has to be
done and checked in depth for
@Ryan - Before going deeper since I read
"readconf.c:read_config_file_depth" in there. Does the same happen on a
fresh Jammy guest that has all-default config files? Or only to this
particular guest that you have?
--
You received this bug notification because you are a member of Ubuntu
Bugs, whic
(gdb) bt
#0 __GI__IO_default_xsputn (n=, data=,
f=) at libioP.h:947
#1 __GI__IO_default_xsputn (f=0x3ffcbc7c2e8, data=,
n=2929360903402) at genops.c:370
#2 0x03ffa6c7896c in outstring_func (done=11, length=2929360903402,
string=0x2aa0b841cea <__func__.3.lto_priv.14> "read_config_file_dept
Hi,
for comparison on another system I've taken a Host (was impish before upgrade)
and created guests with Xenial, Bionic, Focal, Jammy.
All worked fine at this stage - ssh login and health of guests/hosts was good.
Then I upgraded the Host to Jammy (as the reporter did).
Example of the simple te
Hi,
we were revisiting this case which was lost due to Rafael no more being able to
look at it :-/
In the meantime nvme-cli is in main (since hirsute via bug 1889688). But
nvmet-cli still isn't packaged in Debian/Ubuntu.
nvme-cli just did a major release following the last 1.x [1] into 2.0 [2].
** Tags removed: server-todo
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1966237
Title:
ldnsutils emits wrong sha256 hashes
To manage notifications about this bug go to:
https://bugs.launchpad.ne
** Tags added: server-todo
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1968550
Title:
unattended updates, missing routes
To manage notifications about this bug go to:
https://bugs.launchpad.net/u
** Tags removed: server-triage-discuss
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1968550
Title:
unattended updates, missing routes
To manage notifications about this bug go to:
https://bugs.lau
** Changed in: php7.4 (Ubuntu)
Assignee: (unassigned) => Athos Ribeiro (athos-ribeiro)
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1968228
Title:
RTD collision with opcache
To manage notific
Ok, it is there now:
https://people.canonical.com/~ubuntu-archive/component-mismatches-proposed.html
gnome-bluetooth3: gir1.2-gnomebluetooth-3.0 gnome-bluetooth-3-common
libgnome-bluetooth-3.0-13 libgnome-bluetooth-3.0-dev libgnome-bluetooth-doc
libgnome-bluetooth-ui-3.0-13 libgnome-bluetooth-u
I'm not seeing the dependency yet on [1] or [2].
What upload exactly are we waiting for here to have it show up?
[1]:
https://people.canonical.com/~ubuntu-archive/component-mismatches-proposed.html
[2]: https://people.canonical.com/~ubuntu-archive/component-mismatches.html
--
You received this
Thanks Vanessa for the testing on the PPA!
@Halil - I'd leave the debugging of the remaining issue to you as while
you can't reproduce it yet it still is much closer to you than it is to
me :-/ Thanks in advance, let us know what you find.
In the meantime I have prepared the SRU content and got a
*** This bug is a duplicate of bug 1968187 ***
https://bugs.launchpad.net/bugs/1968187
Hi, I think we discovered that issue twice.
Marked as a dup as we are further in the other case.
** This bug has been marked a duplicate of bug 1968187
apparmor denial when using swtpm
--
You received
Thank you Jeremy, yes this looks all complete by now.
Thanks for addressing the remaining tasks.
MIR Team Ack.
Thereby this would be ready to be promoted once the dependency is present.
Which will happen once you upload for the FFE bug you have open.
** Changed in: gnome-bluetooth3 (Ubuntu)
We can add those - if we agree - as Ubuntu Delta kind of "right now" to fix it
before release.
But the swtpm changes then shall be part of the upstreaming effort to Stefan
that we planned anyway.
And the libvirt changes should go upstream there for the benefit of others as
well.
Summary of chan
For test purpose I was adding
/usr/bin/swtpm PUx,
to /etc/apparmor.d/local/abstractions/libvirt-qemu
I can see the error that you mean, that is something apparmor fails to load.
One can call apparmor_parser directly to see more.
ubuntu@swtpm-jammy:~$ sudo apparmor_parser -r
/etc/apparmor.d/lib
You are welcome,
trying to resolve things fast is the best I can give you in return for your
always fast and large scale testing ending in well written bugs :-)
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.ne
FYI - uploads done, got accepted a few hours ago and building now.
Also the team subscription to the package was done.
It shows in component mismatches:
glusterfs: libgfapi0 libgfrpc0 libgfxdr0 libglusterfs0
MIR: #1950321 (Confirmed)
MIR: #1274247 (Won't Fix)
[Reverse-Depends: libgfapi0, lib
** Tags added: server-todo
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1968187
Title:
apparmor denial when using swtpm
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubu
Hi Benjamin, thanks for the bug.
This sounds like an issue not yet wreaking havoc but could be, so it is nice to
fix it before things get worse.
Limiting to "scsi + vsock" is what is needed I guess.
The rules we have are:
root@j:~# head /lib/udev/rules.d/60-open-vm-tools.rules
/lib/udev/rules
** Tags added: server-todo
** Changed in: open-vm-tools (Ubuntu)
Assignee: (unassigned) => Bryce Harrington (bryce)
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1968354
Title:
Please do not r
** Changed in: python-xmlschema (Ubuntu)
Status: In Progress => Fix Released
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1953363
Title:
[MIR] python-xmlschema, elementpath, importlib-resour
Thanks for linking that Andreas.
For qemu it is: https://bugs.launchpad.net/cloud-archive/+bug/1246924
I think the FFE decision is the same for both samba/qemu and the reason
to come by late the same as well (this MIR being stalled) - so I'd hope
it makes it more easy to think->decide about it onc
Hi Łukasz,
thanks for having a look - sure let me try to summarize an answer to your
question.
# General
Yes - Debian has this enabled in both for what feels like ages.
It was the supportability in main which blocked us from following that, but we
had plenty of requests and are happy to finally
** Changed in: qemu (Ubuntu)
Status: Confirmed => In Progress
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1968258
Title:
Data corruption in qemu_rbd_co_block_status
To manage notifications
Hi Markus,
your bug reports are always great, well prepared, reliable and useful!
Thank you so much already.
Both changes LGTM, are easily applied and should cause no side effects AFAICS.
I've added it to another case that i queued for review and upload already:
PPA:
https://launchpad.net/~paelze
Now all is in place, but due to all the delay this is now much later than
intended.
We will prepare the changes to samba and qemu which will pull this in, but
given the time I'd feel more comfortable to have a quick release-team FFE-ack.
PPA (just started building, lets hope it works as good as
FYI - completed in the new efforts referenced by Andreas \o/
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1274247
Title:
[MIR] Glusterfs
To manage notifications about this bug go to:
https://bugs.
** Changed in: glusterfs (Ubuntu)
Assignee: Steve Beattie (sbeattie) => (unassigned)
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1950321
Title:
[MIR] glusterfs
To manage notifications about
Hmm,
ok I expected libvirt to call this e.g. from src/qemu/qemu_tpm.c and I wondered
already why it is the guests profile.
But since it runs under the guests profile it must be more like "libvirt ->
qemu -> ??? -> swtpm_setup" - do you have an example of the call path that you
see?
Only once w
Apparmor follow up filed as:
https://bugs.launchpad.net/ubuntu/+source/libvirt/+bug/1968187
Uploaded the tested fix for swtpm:
Uploading swtpm_0.6.3-0ubuntu2.dsc
Uploading swtpm_0.6.3-0ubuntu2.debian.tar.xz
Uploading swtpm_0.6.3-0ubuntu2_source.buildinfo
Uploading swtpm_0.6.3-0ubuntu2_source.c
Install fine:
ubuntu@swtpm-jammy:/var/lib/swtpm$ sudo apt update; sudo apt upgrade
Hit:1 http://archive.ubuntu.com/ubuntu jammy InRelease
Hit:2 http://archive.ubuntu.com/ubuntu jammy-updates InRelease
Hit:3 http://security.ubuntu.com/ubuntu jammy-security InRelease
Public bug reported:
Guest using:
Triggers:
apparmor="DENIED" operation="open"
profile="libvirt-202a34a9-2ee2-4826-b206-c249f535be90"
name="/etc/ssl/openssl.cnf" pid=15149 comm="swtpm" requested_mask="r"
denied_mask="r" fsuid=113 ouid=0
Find from the swtpm side, but we need to open u
The fix needed some polishing, but was a great hint.
Test PPA started to build at:
https://launchpad.net/~paelzer/+archive/ubuntu/lp-1968131-swtpm-rndfile
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bug
Yes Simon,
that is much better than me trying to fetch home and insert it into the string
:-)
Thanks for the reference.
It feels a bit odd seeing myself coming by between meetings all day and
make debug progress to then see such a simple solution. Please tell me
that my debug helped to make that
A new interim summary
Problem:
- debian/patches/openssl-not-certtool.patch adds "RANDFILE =
$ENV::HOME/.rnd\n"
- this is not picked up correctly at the time this file is evaluated
- Due to that swtpm-localca tries to access $CWD/.rnd and fails in most cases
- The upstreaming of this Del
In a set of cross checks I ran it as
#1 root, but this time in /home/ubuntu instead of in /root.
I got:
lrwxrwxrwx 1 root root 0 Apr 7 13:40 /proc/11805/cwd -> /home/ubuntu/
And afterwards
-rw--- 1 root root 1024 Apr 7 13:40 /home/ubuntu/.rnd
So it fully ignores $HOME
So root cause of
Ok, it has
HOME=/var/lib/swtpm
So due to the config being
"RANDFILE = $ENV::HOME/.rnd\n"
one might expect `/var/lib/swtpm/.rnd`
But that isn't what it will resolve to, instead we see in strace that it uses:
"./.rnd"
And surprise :-P, it does not set CWD, I checked a running progra
The swtpm user is created as:
swtpm:x:113:121:virtual TPM software stack,,,:/var/lib/swtpm:/bin/false
But
$ ls -laF /var/lib/swtpm
ls: cannot access '/var/lib/swtpm': No such file or directory
I guess we need to give him a better home dir?
For example drop `--no-create-home` from the postinst i
I think I got it, it is around that .rnd file as mentioned in the log.
Indeed after running this as root I have:
$ sudo ls -laF /root/.rnd
-rw--- 1 root root 1024 Apr 7 08:16 /root/.rnd
But running as swtpm I get this with strace:
This is the initial failure:
[pid 3049] 13:10:20 (+ 0.
# clean
$ sudo apt remove --purge swtpm swtpm-tools
$ sudo rm -rf /var/lib/libvirt/swtpm /var/lib/swtpm-localca /var/log/swtpm
# re-create a clean env by re-installing swtpm
$ sudo apt install swtpm swtpm-tools
# Status after install
$ sudo ls -laF /var/lib/libvirt/swtpm /var/lib/swtpm-localca
Summary of initial triage:
- It is reproducible for me as reported => confirmed
- Other than hoped it is not "just" an apparmor denial (it is in the setup
stage,
not the later swtpm that talks with the guest) :-/
- running the failing command as root locally works
- seems to be associated to the
I found it in ps
4 1131814 758 20 0 13772 5784 - S? 0:00 \_
/usr/bin/swtpm_setup --tpm2 --tpm-state
/var/lib/libvirt/swtpm/202a34a9-2ee2-4826-b206-c249f535be90/tpm2 --vmid
testguest:202a34a9-2ee2-4826-b206-c249f535be90 --logfile
/var/log/swtpm/libvirt/qemu/test
I wanted to check if this is more virt-manager or libvirt to call it
badly (or call it in a bad environment).
I spawned a default libvirt based guest with uvtool.
In there I then added the most common pattern of
This is showing kind of the same behavior.
So while most tests before were
401 - 500 of 9346 matches
Mail list logo