Control: reassign -1 debci Control: retitle -1 Please set net.ipv4.ping_group_range sysctl on debci test hosts
On Thu, Oct 17, 2024 at 10:06:06PM +0200, Paul Gevers wrote: > system /bin/ping6 -c 1 localhost > 57s CheckHostAlive: first ping (/bin/ping6 -c 1 localhost) failed (512, ) > 57s no ping response from localhost > 57s can't ping localhost (client = localhost); exiting In bookworm and earlier, ping uses CAP_NET_RAW file capabilities in order to obtain permission to transmit ICMP. The version in trixie and later no longer sets file based capabilities, instead relying on the net.ipv4.ping_group_range sysctl. This is a system-wide configuration, not controlled by ping. The default value, as set by the linux-sysctl-defaults package in trixe+ and listed as a Recommends by iputils-ping, grants permission for unprivileged users to run ping. Based on the above, I don't see this as a bug in ping, but rather an issue with the particular environment in which it's being executed. My recommendation is to ensure that you've got the sysctl value set appropriately as from https://salsa.debian.org/kernel-team/linux-base/-/blob/master/sysctl.d/50-default.conf?ref_type=heads#L39-45 Re-assigning this to the debci package so the change can be made there. noah
