test_520_config_random_trust_cpu in ubuntu_qrt_kernel_security failed on B-4.15 /F-5.4 arm64
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
QA Regression Testing |
Fix Released
|
Undecided
|
Po-Hsu Lin | ||
ubuntu-kernel-tests |
Fix Released
|
Undecided
|
Po-Hsu Lin |
Bug Description
Issue found on Focal 5.4.0-128.144 in cycle sru-20220919, with ARM64 only.
(Note that we have bug 1990090 fixed recently, which is asking this option to be set for all architectures with kernel > 4.9)
Test failed with:
FAIL: test_520_
Ensure RANDOM_TRUST_CPU is enabled (LP: #1823754)
------
Traceback (most recent call last):
File "./test-
self.
File "./test-
self.
File "./test-
'%s option was expected to be set in the kernel config' % name)
AssertionError: RANDOM_TRUST_CPU option was expected to be set in the kernel config
------
Ran 1 test in 0.003s
This option was not set to y in annotations from Focal:
CONFIG_
We will need to decide if we want to modify this or the test case itself.
Related branches
- Steve Beattie: Approve
-
Diff: 18 lines (+6/-1)1 file modifiedscripts/test-kernel-security.py (+6/-1)
description: | updated |
description: | updated |
Changed in qa-regression-testing: | |
status: | New → In Progress |
assignee: | nobody → Po-Hsu Lin (cypressyew) |
Changed in ubuntu-kernel-tests: | |
assignee: | nobody → Po-Hsu Lin (cypressyew) |
status: | New → In Progress |
Changed in ubuntu-kernel-tests: | |
status: | In Progress → Fix Released |
I just checked the Jammy config, we have arm64 set to y there.
Here is the feedback from smb regarding Focal kernel:
smb: 3f1b1245ea37a85 3aac2f741c
> So RANDOM_TRUST_CPU depends on ARCH_RANDOM and that is not defined for arm* for Focal 5.4 at least.
> In jammy there is and was introduced in 5.13 with
> commit 1a50ec0b3b2e9a8
> Author: Richard Henderson <email address hidden>
> Date: Tue Jan 21 12:58:52 2020 +0000
>
> arm64: Implement archrandom.h for ARMv8.5-RNG
>
> So whatever annotation in older kernels would say, without having above patch there is no TRUST_CPU possible
Conclusion:
At least for kernel < 5.13 and arm not set would be expected.