| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-ID: <a2df88e6-5ecc-407c-a579-8c8b7b4fbd2b@kernel.org> Date: Mon, 29 Jan 2024 08:32:33 -0700 From: David Ahern <dsahern@...nel.org> To: Jakub Kicinski <kuba@...nel.org> Cc: Paolo Abeni <pabeni@...hat.com>, Hangbin Liu <liuhangbin@...il.com>, "netdev@...r.kernel.org" <netdev@...r.kernel.org>, "netdev-driver-reviewers@...r.kernel.org" <netdev-driver-reviewers@...r.kernel.org> Subject: Re: [ANN] net-next is OPEN On 1/29/24 8:03 AM, Jakub Kicinski wrote: > On Mon, 29 Jan 2024 10:23:15 +0100 Paolo Abeni wrote: >>> It's a bug in that version of iputils ping. It sets the BINDTODEVICE and >>> then resets it because the source address is not set on the command line >>> (it should not be required). >>> >>> There are a couple of workarounds - one which might not age well (ie., >>> amazon linux moving forward to newer packages -I <addr> -I <vrf>) and >>> one that bypasses the purpose of the test (ip vrf exec)). >> >> Could the script validate the 'ping' command WRT the bad behavior/bug >> and eventually skip the related tests? > > Skipping if the package has a bug would be best, if we can figure that > out. The latest version is fixed, right? I can build it locally, just > like pretty much everything else.. yes, that is why Ubuntu 23.10 passes. I downloaded iputils, built ping locally at the Amazon release version and did a side by side comparison of behavior to verify it is the ping command.
Powered by blists - more mailing lists