So, while looking further, I found out that 1aa12bdf1bfb ("bpf: sockmap,
add sock close() hook to remove socks") is not even present on our 4.15
kernels. Not sure why the two commits were backported. The tcp,ulp one
seems fine to keep.
Even 952fad8e3239 ("bpf: fix sock_map_alloc() error path") is not
necessary if we are not setting err right before, which we do with
1aa12bdf1bfb. Other patches do not even apply, they are really dependent
on 1aa12bdf1bfb.
1aa12bdf1bfb, on the other hand, would be necessary, because I was able
to reproduce a BPF program leak. But that requires the use of sockmap,
which is restricted to root userns CAP_NET_ADMIN.
So, we need to pick 1aa12bdf1bfb and all of those fixes, or simply
revert 5028027844cf ("bpf: test_maps, only support ESTABLISHED socks").
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1839912
Title:
test_map in ubuntu_bpf failed with "Allowed update sockmap '0:3' not
in ESTABLISHED"
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu-kernel-tests/+bug/1839912/+subscriptions
--
ubuntu-bugs mailing list
ubuntu-bugs@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
