test_151_sysctl_disables_bpf_unpriv_userns in ubuntu_qrt_kernel_security failed on F-5.4
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
QA Regression Testing |
Fix Released
|
Undecided
|
Unassigned | ||
ubuntu-kernel-tests |
Fix Released
|
Undecided
|
Unassigned |
Bug Description
Issue found on Focal 5.4.0-105.119
With qa-regression-
======
FAIL: test_151_
unprivileged_
------
Traceback (most recent call last):
File "./test-
self.
File "/home/
self.
AssertionError: /proc/sys/
This issue does not exist in the previous kernel (with suite HEAD SHA1: e2d43929)
Related branches
- Steve Beattie: Approve
- Seth Arnold: Pending requested
-
Diff: 19 lines (+1/-3)1 file modifiedscripts/test-kernel-security.py (+1/-3)
tags: | added: 5.4 focal sru-20220221 ubuntu-qrt-kernel-security |
Since to my knowledge all kernels that support unprivileged bpf sysctl now default to it being disabled, is the fix for this as simple as:
diff --git a/scripts/ test-kernel- security. py b/scripts/ test-kernel- security. py test-kernel- security. py test-kernel- security. py est(KernelSecur ityBaseTest) : sysctl_ disables_ bpf_unpriv_ userns( self):
'''unprivileg ed_bpf_ disabled sysctl supported'''
index 74a8d5ca..d2032acd 100755
--- a/scripts/
+++ b/scripts/
@@ -1859,14 +1859,12 @@ class KernelSecurityT
def test_151_
- expected = 0 at_least( '4.4'):
self. _skipped( "unprivileged bpf disable sysctl did not exist before xenial")
expected = 1 at_least( '5.13') :
+ expected = 2
exists = True
if not self.kernel_
exists = False
- elif self.kernel_
- expected = 2