Bug #2046498 “test-execute fails in LXD with failure in exec-net...” : Bugs : systemd package : Ubuntu

Nick Rosbrook (enr0n) on 2023-12-14

Changed in systemd (Ubuntu):
importance:	Undecided → High
assignee:	nobody → Nick Rosbrook (enr0n)

Revision history for this message

Nick Rosbrook (enr0n) wrote on 2024-01-09:

#1

The issue with this is that during the test setup, adding the dummy-test-ns interface to the test-execute-netns network namespace fails with EPERM, but this return code is not checked at all:

...
/* Create dummy network interface for testing PrivateNetwork=yes */
have_net_dummy = system("ip link add dummy-test-exec type dummy") == 0;

        if (have_net_dummy) {
                /* Create a network namespace and a dummy interface in it for NetworkNamespacePath= */
                (void) system("ip netns add test-execute-netns");
                (void) system("ip netns exec test-execute-netns ip link add dummy-test-ns type dummy");
        }
...

Running these commands manually in the LXD environment that the tests run in:

# ip link add dummy-test-exec type dummy
# ip netns add test-execute-netns
# ip netns exec test-execute-netns ip link add dummy-test-ns type dummy
mount of /sys failed: Operation not permitted

The right solution might be to make the test case dependent on the success of those setup calls, similar to what is done with `have_net_dummy`.

Revision history for this message

Nick Rosbrook (enr0n) wrote on 2024-01-10:

#2

https://github.com/systemd/systemd/pull/30854

Changed in systemd (Ubuntu):
status:	New → Triaged

Revision history for this message

Launchpad Janitor (janitor) wrote on 2024-02-14:

#3

This bug was fixed in the package systemd - 255.2-3ubuntu2

---------------
systemd (255.2-3ubuntu2) noble; urgency=medium

  * test: skip test_exec_networknamespacepath if netns setup fails (LP: #2046498)
    Files:
    - debian/patches/lp2046498-test-skip-test_exec_networknamespacepath-if-netns-setup-f.patch
    - debian/patches/test-skip-failing-test-execute-tests-in-LXC.patch
    https://git.launchpad.net/~ubuntu-core-dev/ubuntu/+source/systemd/commit/?id=de1fcf756e47858f4a206db97434bce4a71384d0
  * test: skip TEST-43-PRIVATEUSER-UNPRIV if unprivileged userns is restricted
    File: debian/patches/test-skip-TEST-43-PRIVATEUSER-UNPRIV-if-unprivileged-user.patch
    https://git.launchpad.net/~ubuntu-core-dev/ubuntu/+source/systemd/commit/?id=2aba69874c83289c43d199ca360aa2fc451486a7
  * Drop debian/UBUNTU-src-test-test-execute.c-Skip-parts-of-test-execute-in-con.patch.
    This will be re-addressed with a different patch.
    File: debian/patches/debian/UBUNTU-src-test-test-execute.c-Skip-parts-of-test-execute-in-con.patch
    https://git.launchpad.net/~ubuntu-core-dev/ubuntu/+source/systemd/commit/?id=c3cd814e028364fe0c641d4bacfce22aafd1b572
  * Drop test-skip-failing-test-execute-tests-in-LXC.patch.
    This will be re-addressed with different patches.
    File: debian/patches/test-skip-failing-test-execute-tests-in-LXC.patch
    https://git.launchpad.net/~ubuntu-core-dev/ubuntu/+source/systemd/commit/?id=ab853707f4cc3e7e2d5993ff38998c3c2c789f62
  * test: temporarily skip credentials tests in LXC.
    This was already skipped in another patch, but now that we know what's
    going on with it, split it out.
    File: debian/patches/test-temporarily-skip-credentials-tests-in-LXC.patch
    https://git.launchpad.net/~ubuntu-core-dev/ubuntu/+source/systemd/commit/?id=c71acb411d315267fe811f024cdab97e032453f3
  * test: skip test-execute in arhmf LXC containers
    File: debian/patches/test-skip-test-execute-in-arhmf-LXC-containers.patch
    https://git.launchpad.net/~ubuntu-core-dev/ubuntu/+source/systemd/commit/?id=1cb1e3060822bfadddead564e779942e73e02f62
  * test: skip exec-privatenetwork-yes-privatemounts-yes.service in LXC (LP: #2046495)
    File: debian/patches/test-skip-exec-privatenetwork-yes-privatemounts-yes.servi.patch
    https://git.launchpad.net/~ubuntu-core-dev/ubuntu/+source/systemd/commit/?id=3ab76fd2db4291ee0531a07085c72cee06cb0d12
  * test: skip a systemd-run test if unprivileged userns is restricted
    File: debian/patches/test-skip-a-systemd-run-test-if-unprivileged-userns-is-re.patch
    https://git.launchpad.net/~ubuntu-core-dev/ubuntu/+source/systemd/commit/?id=c85f2b4e32ee8fd1c0dc58d23e7fabdb7590d3cc
  * test-execute: skip tests that are broken without unprivileged userns
    File: debian/patches/test-execute-skip-tests-that-are-broken-without-unprivile.patch
    https://git.launchpad.net/~ubuntu-core-dev/ubuntu/+source/systemd/commit/?id=7a6573c4f5133a7fec11fb059dd215f7c8c2204e

-- Nick Rosbrook <email address hidden> Wed, 24 Jan 2024 14:53:46 -0500

This bug was fixed in the package systemd - 255.2-3ubuntu2

---------------
systemd (255.2-3ubuntu2) noble; urgency=medium

* test: skip test_exec_networknamespacepath if netns setup fails (LP: #2046498)
    Files:
    - debian/patches/lp2046498-test-skip-test_exec_networknamespacepath-if-netns-setup-f.patch
    - debian/patches/test-skip-failing-test-execute-tests-in-LXC.patch
    https://git.launchpad.net/~ubuntu-core-dev/ubuntu/+source/systemd/commit/?id=de1fcf756e47858f4a206db97434bce4a71384d0
  * test: skip TEST-43-PRIVATEUSER-UNPRIV if unprivileged userns is restricted
    File: debian/patches/test-skip-TEST-43-PRIVATEUSER-UNPRIV-if-unprivileged-user.patch
    https://git.launchpad.net/~ubuntu-core-dev/ubuntu/+source/systemd/commit/?id=2aba69874c83289c43d199ca360aa2fc451486a7
  * Drop debian/UBUNTU-src-test-test-execute.c-Skip-parts-of-test-execute-in-con.patch.
    This will be re-addressed with a different patch.
    File: debian/patches/debian/UBUNTU-src-test-test-execute.c-Skip-parts-of-test-execute-in-con.patch
    https://git.launchpad.net/~ubuntu-core-dev/ubuntu/+source/systemd/commit/?id=c3cd814e028364fe0c641d4bacfce22aafd1b572
  * Drop test-skip-failing-test-execute-tests-in-LXC.patch.
    This will be re-addressed with different patches.
    File: debian/patches/test-skip-failing-test-execute-tests-in-LXC.patch
    https://git.launchpad.net/~ubuntu-core-dev/ubuntu/+source/systemd/commit/?id=ab853707f4cc3e7e2d5993ff38998c3c2c789f62
  * test: temporarily skip credentials tests in LXC.
    This was already skipped in another patch, but now that we know what's
    going on with it, split it out.
    File: debian/patches/test-temporarily-skip-credentials-tests-in-LXC.patch
    https://git.launchpad.net/~ubuntu-core-dev/ubuntu/+source/systemd/commit/?id=c71acb411d315267fe811f024cdab97e032453f3
  * test: skip test-execute in arhmf LXC containers
    File: debian/patches/test-skip-test-execute-in-arhmf-LXC-containers.patch
    https://git.launchpad.net/~ubuntu-core-dev/ubuntu/+source/systemd/commit/?id=1cb1e3060822bfadddead564e779942e73e02f62
  * test: skip exec-privatenetwork-yes-privatemounts-yes.service in LXC (LP: #2046495)
    File: debian/patches/test-skip-exec-privatenetwork-yes-privatemounts-yes.servi.patch
    https://git.launchpad.net/~ubuntu-core-dev/ubuntu/+source/systemd/commit/?id=3ab76fd2db4291ee0531a07085c72cee06cb0d12
  * test: skip a systemd-run test if unprivileged userns is restricted
    File: debian/patches/test-skip-a-systemd-run-test-if-unprivileged-userns-is-re.patch
    https://git.launchpad.net/~ubuntu-core-dev/ubuntu/+source/systemd/commit/?id=c85f2b4e32ee8fd1c0dc58d23e7fabdb7590d3cc
  * test-execute: skip tests that are broken without unprivileged userns
    File: debian/patches/test-execute-skip-tests-that-are-broken-without-unprivile.patch
    https://git.launchpad.net/~ubuntu-core-dev/ubuntu/+source/systemd/commit/?id=7a6573c4f5133a7fec11fb059dd215f7c8c2204e

-- Nick Rosbrook <enr0n@ubuntu.com>  Wed, 24 Jan 2024 14:53:46 -0500

Changed in systemd (Ubuntu):
status:	Triaged → Fix Released

Ubuntu
systemd package

test-execute fails in LXD with failure in exec-networknamespacepath-privatemounts-no.service

Bug Description

Other bug subscribers

Remote bug watches

Ubuntusystemd package

test-execute fails in LXD with failure in exec-networknamespacepath-privatemounts-no.service

Bug Description

Other bug subscribers

Remote bug watches

Ubuntu
systemd package