[Bug 1903351] Re: ignore_eacces and ignore_erofs patches don't work properly
Launchpad Bug Tracker
1903351 at bugs.launchpad.net
Wed May 26 20:33:02 UTC 2021
This bug was fixed in the package procps - 2:3.3.17-5ubuntu1
---------------
procps (2:3.3.17-5ubuntu1) impish; urgency=low
* Merge from Debian unstable.
Remaining changes:
- autopkgtest for LP: #1874824. Submitted to debian as bug 988792
- debian/sysctl.d (Ubuntu-specific):
+ 10-console-messages.conf: stop low-level kernel messages on console.
+ 10-kernel-hardening.conf: add the kptr_restrict setting
+ 10-ipv6-privacy.conf: add a file to sysctl.d to apply the defaults
for IPv6 privacy extensions for interfaces. (LP: #176125, #841353)
+ 10-magic-sysrq.conf: Disable most magic sysrq by default, allowing
critical sync, remount, reboot functions. (LP: #194676, LP: #1025467)
+ 10-network-security.conf: enable rp_filter.
+ 10-ptrace.conf: describe new PTRACE setting.
+ 10-zeropage.conf: safe mmap_min_addr value for graceful fall-back.
for armhf, and arm64.
+ 10-qemu.conf.s390x for qemu.
+ README: describe how this directory is supposed to work.
- debian/rules: Fix cross build
- ignore_eaccess.patch: If we get eaccess when opening a sysctl file for
writing, don't error out. Otherwise package upgrades can fail,
especially in containers.
- Adjust logic due to rc no longer being propagated (LP: #1903351)
- ignore_erofs.patch: Same as ignore_eaccess but for the case where
part of /proc is read/only.
- Adjust logic due to rc no longer being propagated (LP: #1903351)
- debian/procps.maintscript: handle migration of link-protect.conf from
/etc to /usr.
Justification of dropped patches
- missing_potfiles_in: Debian has now added this code in POTFILES.in
so the patch is no longer needed
- pmap_test: This patch disables some tests that are not causing
any problems. These tests are run in Debian so should be run
in Ubuntu as well
- top_config_file_bwcompat: Debian has applied this code upstream so
the patch is no longer needed
- tar-version: Debian has applied this code upstream so the patch is
no longer needed
- stack_limit: Debian has applied this code upstream so the patch is
no longer needed
procps (2:3.3.17-5) unstable; urgency=medium
* Add break/replace for conflicting manpages-fr-extra Closes: #986276
procps (2:3.3.17-4) unstable; urgency=medium
* Remove w alternative in postinst Closes: #982803
procps (2:3.3.17-3) unstable; urgency=medium
* Install language files Closes: #982437
* Add epoch to manpages-pl Replaces/Breaks Closes: #982566
* Remove conflict with w-bassman as removed in 2010
* Remove w alternative as there is no alternative Closes: #982440
* Update to debhelper 13
* d/control: Remove conflict from non-existent pgrep package
procps (2:3.3.17-2) unstable; urgency=medium
* Rename pwait to pidwait Closes: #982391
* Mark autopkgtest as superficial Closes: #974459
* Actually install the translated manpages Closes: #953743
procps (2:3.3.17-1) unstable; urgency=medium
* New upstream source
- sysctl: Match systemd directory order Closes: #950788
- sysctl: Document directory order Closes: #951550
- top: ensure config file backward compatibility Closes: #951335
-- William 'jawn-smith' Wilson <william.wilson at canonical.com> Wed, 19
May 2021 09:24:31 +0000
** Changed in: procps (Ubuntu)
Status: Confirmed => Fix Released
--
You received this bug notification because you are a member of Ubuntu
Sponsors Team, which is subscribed to the bug report.
https://bugs.launchpad.net/bugs/1903351
Title:
ignore_eacces and ignore_erofs patches don't work properly
Status in procps package in Ubuntu:
Fix Released
Status in procps source package in Focal:
New
Status in procps source package in Groovy:
New
Bug description:
The patches used to ignore errors in containers no longer work as of
3.3.16 due to upstream commit https://gitlab.com/procps-
ng/procps/-/commit/7af88da373bb4d515a98ec2f0f5d56c63904f932
The ignore_eacces patch was fuzzed and gets applied to ReadSetting, not WriteSetting
Both patches ignore the change that rc is no longer propagated up and instead everything is trapped by:
if (!ignore_failure && errno != ENOENT)
rc = -1;
Versions affected: focal+
root at bfee89058713:/tmp# cat /etc/os-release
NAME="Ubuntu"
VERSION="20.10 (Groovy Gorilla)"
ID=ubuntu
ID_LIKE=debian
PRETTY_NAME="Ubuntu 20.10"
VERSION_ID="20.10"
HOME_URL="https://www.ubuntu.com/"
SUPPORT_URL="https://help.ubuntu.com/"
BUG_REPORT_URL="https://bugs.launchpad.net/ubuntu/"
PRIVACY_POLICY_URL="https://www.ubuntu.com/legal/terms-and-policies/privacy-policy"
VERSION_CODENAME=groovy
UBUNTU_CODENAME=groovy
root at bfee89058713:/# dpkg -l procps
Desired=Unknown/Install/Remove/Purge/Hold
| Status=Not/Inst/Conf-files/Unpacked/halF-conf/Half-inst/trig-aWait/Trig-pend
|/ Err?=(none)/Reinst-required (Status,Err: uppercase=bad)
||/ Name Version Architecture Description
+++-==============-=================-============-=================================
ii procps 2:3.3.16-5ubuntu2 amd64 /proc file system utilities
root at bfee89058713:/# echo "kernel.shmmax = 17179869184" > shmmax.conf
root at bfee89058713:/# sysctl -e -p shmmax.conf; echo $?
sysctl: setting key "kernel.shmmax": Read-only file system
255
root at bfee89058713:/# echo "-kernel.shmmax = 17179869184" > shmmax.conf
root at bfee89058713:/# sysctl -e -p shmmax.conf; echo $?
sysctl: setting key "kernel.shmmax": Read-only file system
0
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/procps/+bug/1903351/+subscriptions
More information about the Ubuntu-sponsors
mailing list