Testing as-is (remember to clean old images if you have tested the ppa on the same system before) $ docker system prune -a
... Test steps ... Step 8/8 : RUN ./test-statx test-file ---> Running in 60210feb0c2e test-file: Operation not permitted statx(test-file) = -1 The command '/bin/sh -c ./test-statx test-file' returned a non-zero code: 1 Fails as expected Upgrading to libseccomp2 from proposed $ sudo apt install libseccomp2/bionic-proposed Reading package lists... Done Building dependency tree Reading state information... Done Selected version '2.3.1-2.1ubuntu4.1' (Ubuntu:18.04/bionic-proposed [amd64]) for 'libseccomp2' The following package was automatically installed and is no longer required: grub-pc-bin Use 'sudo apt autoremove' to remove it. The following additional packages will be installed: libseccomp-dev The following packages will be upgraded: libseccomp-dev libseccomp2 2 upgraded, 0 newly installed, 0 to remove and 26 not upgraded. Need to get 96.9 kB of archives. After this operation, 15.4 kB of additional disk space will be used. Do you want to continue? [Y/n] y Get:1 http://archive.ubuntu.com/ubuntu bionic-proposed/main amd64 libseccomp-dev amd64 2.3.1-2.1ubuntu4.1 [57.8 kB] Get:2 http://archive.ubuntu.com/ubuntu bionic-proposed/main amd64 libseccomp2 amd64 2.3.1-2.1ubuntu4.1 [39.1 kB] Fetched 96.9 kB in 0s (755 kB/s) (Reading database ... 102759 files and directories currently installed.) Preparing to unpack .../libseccomp-dev_2.3.1-2.1ubuntu4.1_amd64.deb ... Unpacking libseccomp-dev:amd64 (2.3.1-2.1ubuntu4.1) over (2.3.1-2.1ubuntu4) ... Preparing to unpack .../libseccomp2_2.3.1-2.1ubuntu4.1_amd64.deb ... Unpacking libseccomp2:amd64 (2.3.1-2.1ubuntu4.1) over (2.3.1-2.1ubuntu4) ... Setting up libseccomp2:amd64 (2.3.1-2.1ubuntu4.1) ... Setting up libseccomp-dev:amd64 (2.3.1-2.1ubuntu4.1) ... Processing triggers for libc-bin (2.27-3ubuntu1) ... Processing triggers for man-db (2.8.3-2ubuntu0.1) ... Retest the case: Step 8/8 : RUN ./test-statx test-file ---> Running in 3b7450662773 statx(test-file) = 0 results=fff Size: 0 Blocks: 0 IO Block: 4096 regular file Device: 00:31 Inode: 261790 Links: 1 Access: (0644/-rw-r--r--) Uid: 0 Gid: 0 Access: 2019-02-28 09:38:56.000000000+0000 Modify: 2019-02-28 09:38:56.000000000+0000 Change: 2019-02-28 09:38:56.266396084+0000 Birth: 2019-02-28 09:38:56.266396084+0000 Attributes: 0000000000000000 (........ ........ ........ ........ ........ ........ ....-... .---.-..) Removing intermediate container 3b7450662773 ---> c381bca61860 Successfully built c381bca61860 Thereby setting verified ** Tags removed: verification-needed verification-needed-bionic ** Tags added: verification-done verification-done-bionic -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1755250 Title: backport statx syscall whitelist fix To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/docker.io/+bug/1755250/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
