StarlingX

Openscap execution ends with "Segmentation fault (core dumped)"

Bug #2006782 reported by Marcelo de Castro Loebens
6
This bug affects 1 person
Affects Status Importance Assigned to Milestone
StarlingX
Fix Released
Medium
Marcelo de Castro Loebens

Bug Description

Brief Description
-----------------
Openscap analysis ends with a coredump due to segmentation fault in the execution.

Severity
--------
Major

Steps to Reproduce
------------------
Run openscap using default available profiles (i.e. xccdf_org.ssgproject.content_profile_anssi_np_nt28_high)

oscap xccdf eval --profile xccdf_org.ssgproject.content_profile_anssi_np_nt28_high --report controller-0-report.html /usr/share/xml/scap/ssg/content/ssg-debian11-ds-1.2.xml

Expected Behavior
------------------
Run entirely analysis and generate the report without coredumps.

Actual Behavior
----------------
Segmentation fault (core dumped) happens in the middle of the test.

Reproducibility
---------------
100%.

System Configuration
--------------------
Simplex.

Branch/Pull Time/Commit
-----------------------
Master (02/09/2022).

Last Pass
---------
NA

Timestamp/Logs
--------------
NA

Test Activity
-------------
Development test.

Workaround
----------
NA

Marcelo de Castro Loebens (mdecastr)
Changed in starlingx:
assignee: nobody → Marcelo de Castro Loebens (mdecastr)
OpenStack Infra (hudson-openstack)
Changed in starlingx:
status: New → In Progress
Ghada Khalil (gkhalil)
Changed in starlingx:
importance: Undecided → Medium
tags: added: stx.9.0 stx.integ stx.security
tags: added: stx.tools
removed: stx.integ
Revision history for this message
OpenStack Infra (hudson-openstack) wrote : Fix merged to integ (master)

Reviewed: https://review.opendev.org/c/starlingx/integ/+/873212
Committed: https://opendev.org/starlingx/integ/commit/e17b8303871893c9063fefb13f8c98ab5d5af957
Submitter: "Zuul (22348)"
Branch: master

commit e17b8303871893c9063fefb13f8c98ab5d5af957
Author: Marcelo de Castro Loebens <email address hidden>
Date: Wed Feb 8 18:55:30 2023 -0400

    Upgrade Openscap (1.3.5 -> 1.3.6)

    Upgrade Openscap tool to release 1.3.6, using the debianized version
    1.3.6+dsfg-6 for the packaging files available at
    https://salsa.debian.org/debian/openscap/-/blob/debian/1.3.6+dfsg-6/debian/changelog
    Didn't change any files or patches.

    Segmentation faults during Openscap usage seen in Starlingx were
    fixed in this release of Openscap, and are the reason of this upgrade.

    Test Plan:
    PASS: Build iso.

    PASS: Deploy AIO-SX.

    PASS: Check version (oscap --version). Result should be 1.3.6.

    PASS: Run openscap using one of default manifests. There should be no
    segmentation fault issues. Command i.e.:
    "oscap xccdf eval --profile \
    xccdf_org.ssgproject.content_profile_anssi_np_nt28_high \
    --report controller-0-report.html \
    /usr/share/xml/scap/ssg/content/ssg-debian11-ds-1.2.xml".

    Closes-Bug: 2006782

    Signed-off-by: Marcelo de Castro Loebens <email address hidden>
    Change-Id: I34ff193227ae51ec709b7d69b6a97abc074721f3

Changed in starlingx:
status: In Progress → Fix Released
To post a comment you must log in.
This report contains Public information  
Everyone can see this information.
Subscribing...

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.