amavis virus check fails when nvidia CUDA is on the same system
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
amavisd-new |
Fix Released
|
Unknown
|
|||
amavisd-new (Ubuntu) |
Fix Released
|
Medium
|
Unassigned | ||
Xenial |
Won't Fix
|
Undecided
|
Unassigned |
Bug Description
Amavis incorrectly assumes that /usr/bin/nvcc is the "Norman virus control" executable, and attempts to use it to virus check incoming emails.
In systems with the NVIDIA CUDA compiler installed, the nvcc executable is actually the CUDA compiler, and so exits with a non-zero (exit) state every time amavis attempts to execute it on email traffic.
This behavior results in all email traffic being marked (and quarantined) by amavis as containing a virus whenever NVIDIA CUDA is installed on the same system as amavisd-new.
The increasing use of gpu acceleration for speeding up and multithreading particular server processing tasks means that in the future more servers may experience this problem as they have NVIDIA CUDA installed on them.
I believe that amavis should verify that nvcc is the Norman virus control executable prior to attempting to use it as a virus check.
A workaround for this bug on current ubuntu systems is to modify the default /etc/amavis/
['Norman Virus Control v5 / Linux', 'nvcc',
'-c -l:0 -s -u -temp:$TEMPBASE {}', [0,10,11], [1,2,14],
qr/(?i).* virus in .* -> \'(.+)\'/m ],
---------------
lsb_release -rd
Description: Ubuntu 16.04 LTS
Release: 16.04
---------------
apt-cache policy amavisd-new
amavisd-new:
Installed: 1:2.10.1-2ubuntu1
Candidate: 1:2.10.1-2ubuntu1
Version table:
*** 1:2.10.1-2ubuntu1 500
500 http://
500 http://
100 /var/lib/
ProblemType: Bug
DistroRelease: Ubuntu 16.04
Package: amavisd-new 1:2.10.1-2ubuntu1
ProcVersionSign
Uname: Linux 4.4.0-22-generic x86_64
NonfreeKernelMo
ApportVersion: 2.20.1-0ubuntu2
Architecture: amd64
CurrentDesktop: GNOME
Date: Tue May 17 00:11:34 2016
PackageArchitec
SourcePackage: amavisd-new
UpgradeStatus: Upgraded to xenial on 2016-04-27 (19 days ago)
modified.
modified.
modified.
modified.
modified.
mtime.conffile.
mtime.conffile.
mtime.conffile.
mtime.conffile.
mtime.conffile.
Changed in amavisd-new: | |
status: | Unknown → New |
Changed in amavisd-new: | |
status: | New → Fix Released |
Changed in amavisd-new: | |
status: | Fix Released → New |
Changed in amavisd-new: | |
status: | New → Fix Released |
Thank you for your report, I checked around and can confirm that the packaged nvidia-cuda-toolkit causes this conflict.
I added the disabling to the merge of amavisd-new which I prepared for Yakkety as I think it is right to disable the "out-of-archive" solution in this case.