Ubuntu
linux package

Inconsistent handling of CONFIG_SYN_COOKIES breaks procps

Bug #361687 reported by Loïc Minier
10
Affects Status Importance Assigned to Milestone
linux (Ubuntu)
Fix Released
Medium
Unassigned
Ubuntu jaunty-updates
Jaunty
Fix Released
Medium
Amit Kucheria
Ubuntu jaunty-updates

Bug Description

SRU justification:

Impact: iop32x and versatile get an error on bot when network setup tries to enable syncookies because this is not defined on those kernels. All other kernels have this option set.

Fix: Enable CONFIG_SYN_COOKIES on those kernels.

Testcase: Network start

---

Hi

procps tries to set some sysctl vars on boot notably:
/etc/sysctl.d/10-network-security.conf:net.ipv4.tcp_syncookies=1

But it causes an error on the versatile flavor and presumably other flavors since this isn't supported.

debian/config/armel/config.iop32x:# CONFIG_SYN_COOKIES is not set
debian/config/armel/config.ixp4xx:CONFIG_SYN_COOKIES=y
debian/config/armel/config.versatile:# CONFIG_SYN_COOKIES is not set
debian/config/armel/config.imx51:CONFIG_SYN_COOKIES=y

These configs should be set consistenly for all Ubuntu kernels.

Bye

See original description
Loïc Minier (lool)
Changed in linux (Ubuntu):
importance: Undecided → Medium
milestone: none → jaunty-updates
Leann Ogasawara (leannogasawara)
Changed in linux (Ubuntu Jaunty):
status: New → Triaged
Revision history for this message
Amit Kucheria (amitk) wrote :

I did not touch iop32x because of its sensitivity to kernel size.

And I didn't have the bandwidth to test on ixp4xx before release.

But I can enable it if QA can test the change.

Revision history for this message
Loïc Minier (lool) wrote :

iop32x has room for a larger kernel still. ixp4xx is correct already.

Amit Kucheria (amitk)
Changed in linux (Ubuntu Jaunty):
assignee: nobody → Amit Kucheria (amitk)
status: Triaged → In Progress
Stefan Bader (smb)
description: updated
Amit Kucheria (amitk)
Changed in linux (Ubuntu Jaunty):
status: In Progress → Fix Committed
Revision history for this message
Steve Langasek (vorlon) wrote :

Accepted linux into jaunty-proposed, the package will build now and be available in a few hours. Please test and give feedback here. See https://wiki.ubuntu.com/Testing/EnableProposed for documentation how to enable and use -proposed. Thank you in advance!

tags: added: verification-needed
Paul Larson (pwlars)
tags: removed: arm
Revision history for this message
Launchpad Janitor (janitor) wrote :

This bug was fixed in the package linux - 2.6.28-13.44

---------------
linux (2.6.28-13.44) jaunty-proposed; urgency=low

  [ Stefan Bader ]

  * Revert "SAUCE: [jaunty] ALSA: Add retry for Intel8x0 clock measurement"
  * Revert "SAUCE: [jaunty] ALSA: Fix clock and buffer calculations for
    Intel8x0"
  * Revert "SAUCE: [jaunty] ALSA: Fix buffer positions and checks"

linux (2.6.28-12.43) jaunty-proposed; urgency=low

  [ Amit Kucheria ]

  * Enable SYN_COOKIES for iop32x and versatile flavours
    - LP: #361687
  * SAUCE: Quirk for BT USB device on MacbookPro to be reset before use
    - LP: #332443

  [ Brad Figg ]

  * [jaunty] Add missing mvsas (Marvel SAS 6440) module configuration.
    - LP: #352336

  [ Chuck Short ]

  * SAUCE: [USB] Unusual Device support for Gold MP3 Player Energy
    - LP: #125250

  [ Daniel T Chen ]

  * SAUCE: [jaunty] ALSA: Fix buffer positions and checks
    - LP: #345627
  * SAUCE: [jaunty] ALSA: Fix clock and buffer calculations for Intel8x0
    - LP: #345627
  * SAUCE: [jaunty] ALSA: Add retry for Intel8x0 clock measurement
    - LP: #345627

  [ Luke Yelavich ]

  * disable CONFIG_SND_HDA_INPUT_BEEP on amd64 and i386
    - LP: #331589

  [ Makito SHIOKAWA ]

  * [ARM] 5404/1: Fix condition in arm_elf_read_implies_exec() to set
    READ_IMPLIES_EXEC
    - LP: #364358

  [ Manoj Iyer ]

  * SAUCE: Added quirk to fix key release for Samsung NC20
    - LP: #360247

  [ Oleg Nesterov ]

  * posix timers: fix RLIMIT_CPU && fork()
    - LP: #361508

  [ Scott James Remnant ]

  * [Config] Disable libusual and the ub driver
    - LP: #364538

  [ Stefan Bader ]

  * Disable unwanted staging builds
    - LP: #366144
  * Remove prism2_usb driver from ubuntu and use the one from staging
    - LP: #325366
  * SAUCE: Make rtl8187se depend on WIRELESS_EXT
    - LP: #366144
  * Disable CONFIG_RTL8187SE for armel.versatile
    - LP: #366144

  [ Tejun Heo ]

  * libata: handle SEMB signature better
    - LP: #257790

  [ Tim Gardner ]

  * Set USB_SERIAL=m for i386/amd64
    - LP: #345002
  * SAUCE: Jaunty - aic79xx - set reset delay to 5 seconds, down from 15.
    - LP: #79542
  * SAUCE: (drop after 2.6.28) Wifi suspend/resume scan timeout fixes
    - LP: #336055
  * Sony laptop: Sony Vaio laptops do not enable wwan power by default.
    - LP: #364678

  [ Tyler Hicks ]

  * SAUCE: (drop after 2.6.28) eCryptfs: Larger buffer for encrypted
    symlink targets
    - LP: #357345

  [ Upstream Kernel Changes ]

  * V4L/DVB (9999): gspca - zc3xx: Webcam 046d:089d added.
    - LP: #326674
  * V4L/DVB (10044): gspca - pac7311: Webcam 093a:2620 added.
    - LP: #363195
  * hwmon: (it87) Add support for the ITE IT8720F
    - LP: #357766
  * vgacon: Return the upper half of 512 character fonts
    - LP: #355057
  * drm/i915: add support for G41 chipset
    - LP: #365958

 -- Stefan Bader <email address hidden> Mon, 25 May 2009 17:30:40 +0200

Changed in linux (Ubuntu Jaunty):
status: Fix Committed → Fix Released
Revision history for this message
Loïc Minier (lool) wrote :

Confirmed CONFIG_SYN_COOKIES=y in all three branches of ubuntu-karmic.git in all configs.

Changed in linux (Ubuntu):
assignee: Amit Kucheria (amitk) → nobody
status: Fix Committed → Fix Released
Ubuntu QA Website (ubuntuqa)
tags: added: iso-testing
To post a comment you must log in.
This report contains Public information  
Everyone can see this information.
Subscribing...

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.