Ubuntu
procps package

kernel.maps_protect removed from 2.6.28 kernels

Bug #304117 reported by Luca Falavigna
8
This bug affects 1 person
Affects Status Importance Assigned to Milestone
procps (Ubuntu)
Fix Released
Medium
Kees Cook

Bug Description

Binary package hint: procps

2.6.28 kernel removed kernel.maps_protect sysctl.
procps still tries to set it, this will lead to display a failure message with new Ubuntu 2.6.28 kernels.

References:
http://lkml.org/lkml/2008/10/9/399
http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commitdiff;h=3bbfe0596746e1590888a6e1e6a07583265238b7

Related branches

lp:ubuntu/karmic/procps
Revision history for this message
Luca Falavigna (dktrkranz) wrote :
Changed in procps:
importance: Undecided → Medium
status: New → Triaged
Revision history for this message
Kees Cook (kees) wrote :

Thanks for the correction; I hadn't gotten around to cleaning this up yet. :)

Changed in procps:
assignee: nobody → kees
status: Triaged → Fix Committed
Revision history for this message
Launchpad Janitor (janitor) wrote :

This bug was fixed in the package procps - 1:3.2.7-9ubuntu3

---------------
procps (1:3.2.7-9ubuntu3) jaunty; urgency=low

  * debian/sysctl.d/10-process-security.conf:
    - Remove kernel.maps_protect option, it has been dropped in 2.6.28
      kernel tree: http://lkml.org/lkml/2008/10/9/399 (LP: #304117).

 -- Luca Falavigna <email address hidden> Mon, 01 Dec 2008 20:17:15 +0100

Changed in procps:
status: Fix Committed → Fix Released
Revision history for this message
Detlef Lechner (detlef-lechner) wrote :

After upgrading to Ubuntu 9.04 I obtain an error message: "Setting kernel variables... Kernel map detect is an unknown key kernel.maps_protect. [fail]"
I do not understand how a "fix has been released" and I still receive this error message. Can you explain?
uname -a; Linux MD97600 2.6.28-13-generic #44-Ubuntu SMP Tue Jun 2 07:57:31 UTC 2009 i686 GNU/Linux

Revision history for this message
Kees Cook (kees) wrote : Re: [Bug 304117] Re: kernel.maps_protect removed from 2.6.28 kernels

On Mon, Jun 22, 2009 at 12:21:20PM -0000, Detlef Lechner wrote:
> After upgrading to Ubuntu 9.04 I obtain an error message: "Setting kernel variables... Kernel map detect is an unknown key kernel.maps_protect. [fail]"
> I do not understand how a "fix has been released" and I still receive this error message. Can you explain?
> uname -a; Linux MD97600 2.6.28-13-generic #44-Ubuntu SMP Tue Jun 2 07:57:31 UTC 2009 i686 GNU/Linux

Your /etc/sysctl.conf file probably did not get merged correctly. If you
remove the maps_protect line, the warning should go away.

Revision history for this message
Detlef Lechner (detlef-lechner) wrote :

Kees Cook wrote on 2009-07-01:
> If you remove the maps_protect line, the warning should go away.

I commented that line out and the error message on reboot went away. -- Thank you.

The trouble probably arose because I decided to keep the file /etc/sysctl.conf when dist-upgrading from 8.04.2 to 8.10 and from 8.10 to 9.04.

To post a comment you must log in.
This report contains Public information  
Everyone can see this information.
Subscribing...

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.