QA Regression Testing

Merge ~cascardo/qa-regression-testing:unprivileged_bpf into qa-regression-testing:master

  1. Git
  2. lp:~cascardo/qa-regression-testing
  3. unprivileged_bpf
  4. Merge into master
Proposed by Thadeu Lima de Souza Cascardo
Status: Merged
Merged at revision: a7f3750539702809138ecb24fe00246cc3e24398
Proposed branch: ~cascardo/qa-regression-testing:unprivileged_bpf
Merge into: qa-regression-testing:master
Diff against target: 19 lines (+1/-3)
1 file modified
scripts/test-kernel-security.py (+1/-3)
Reviewer Review Type Date Requested Status
Steve Beattie Approve
Seth Arnold Pending
Review via email: mp+416816@code.launchpad.net

Commit message

We have not turned unprivileged_bpf_disabled to 2 by default on all kernels.

To post a comment you must log in.
Revision history for this message
Steve Beattie (sbeattie) wrote :

thanks, merged!

review: Approve

Preview Diff

[H/L] Next/Prev Comment, [J/K] Next/Prev File, [N/P] Next/Prev Hunk
1diff --git a/scripts/test-kernel-security.py b/scripts/test-kernel-security.py
2index 74a8d5c..d2032ac 100755
3--- a/scripts/test-kernel-security.py
4+++ b/scripts/test-kernel-security.py
5@@ -1859,14 +1859,12 @@ class KernelSecurityTest(KernelSecurityBaseTest):
6 def test_151_sysctl_disables_bpf_unpriv_userns(self):
7 '''unprivileged_bpf_disabled sysctl supported'''
8
9- expected = 0
10+ expected = 2
11 exists = True
12 if not self.kernel_at_least('4.4'):
13 self._skipped("unprivileged bpf disable sysctl did not exist before xenial")
14 expected = 1
15 exists = False
16- elif self.kernel_at_least('5.13'):
17- expected = 2
18
19 self._test_sysctl_value('kernel/unprivileged_bpf_disabled', expected, exists=exists)
20

Subscribers

People subscribed via source and target branches