EFI test failure
Hi Heinrich,
I see this in the test_efi_bootmgr test:
cp: cannot open '/boot/vmlinuz-5.4.0-122-generic' for reading: Permission denied
Does it really need read access to the kernel? On my Ubuntu 20.04 machine that seems to be missing.
Regards, Simon
Simon Glass sjg@chromium.org schrieb am Sa., 6. Aug. 2022, 20:21:
Hi Heinrich,
I see this in the test_efi_bootmgr test:
cp: cannot open '/boot/vmlinuz-5.4.0-122-generic' for reading: Permission denied
Does it really need read access to the kernel? On my Ubuntu 20.04 machine that seems to be missing.
Regards, Simon
Yes, the virtual machine used to create the disk image used in the test requires a copy of the kernel.
The security team of Canonical prefers to make the kernel non-readable for normal users. Just chmod your kernel.
Best regards
Heinrich
Hi Heinrich,
On Sat, 6 Aug 2022 at 14:19, Heinrich Schuchardt heinrich.schuchardt@canonical.com wrote:
Simon Glass sjg@chromium.org schrieb am Sa., 6. Aug. 2022, 20:21:
Hi Heinrich,
I see this in the test_efi_bootmgr test:
cp: cannot open '/boot/vmlinuz-5.4.0-122-generic' for reading: Permission denied
Does it really need read access to the kernel? On my Ubuntu 20.04 machine that seems to be missing.
Regards, Simon
Yes, the virtual machine used to create the disk image used in the test requires a copy of the kernel.
The security team of Canonical prefers to make the kernel non-readable for normal users. Just chmod your kernel.
Does it really need the kernel or could it be a dummy file?
Regards, Simon
participants (2)
-
Heinrich Schuchardt -
Simon Glass