Bug 1217397

Summary: [Build 2.31] memfd_create() without MFD_EXEC nor MFD_NOEXEC_SEAL, pid=1 'systemd'
Product: [openSUSE] PUBLIC SUSE Linux Enterprise Server 15 SP6 Reporter: Martin Loviska <mloviska>
Component: KernelAssignee: Kernel Bugs <kernel-bugs>
Status: NEW --- QA Contact:
Severity: Normal    
Priority: P4 - Low CC: eugenio.paolantonio, tiwai, vbabka
Version: unspecified   
Target Milestone: ---   
Hardware: Other   
OS: Other   
URL: https://openqa.suse.de/tests/12864574/modules/journal_check/steps/6
Whiteboard:
Found By: openQA Services Priority:
Business Priority: Blocker: Yes
Marketing QA Status: --- IT Deployment: ---

Description Martin Loviska 2023-11-22 12:28:02 UTC 
## Observation

openQA test in scenario sle-15-SP6-JeOS-for-MS-HyperV-x86_64-jeos-apparmor@svirt-hyperv-uefi fails in
[journal_check](https://openqa.suse.de/tests/12864574/modules/journal_check/steps/6)

## Test suite description
Apparmor test suite for JeOS. It is enabled from 15-SP4, where JeOS (MinimalVM) comes with apparmor enabled by default.

Currently, we are seeing below warning message in sle15sp6 tests.

> Nov 22 11:34:13.436557 localhost kernel: memfd_create() without MFD_EXEC nor MFD_NOEXEC_SEAL, pid=1 'systemd'

As systemd package[1] should be updated and there are some pending fixes for SLE15-SP6 kernel implementation of memfd. I am rather opening this bug for further tracking purposes.

[1] systemd-249.16-150400.8.35.5.x86_64
[2] kernel-default-base-6.4.0-150600.2.1.150600.10.1.x86_64

## Reproducible

Fails since (at least) Build [1.14](https://openqa.suse.de/tests/12036845)


## Expected result

Last good: [1.11](https://openqa.suse.de/tests/11975925) (or more recent)


## Further details

Always latest result in this scenario: [latest](https://openqa.suse.de/tests/latest?arch=x86_64&distri=sle&flavor=JeOS-for-MS-HyperV&machine=svirt-hyperv-uefi&test=jeos-apparmor&version=15-SP6)
Comment 1 Takashi Iwai 2023-11-22 12:38:29 UTC 
AFAIU, it's merely an info to suggest for user-space changes:
  https://bugzilla.kernel.org/show_bug.cgi?id=217508

Adding Vlastimil to Cc.