Hi,
On Sat, 2017-12-30 at 03:34 -0500, Rob Sherwood wrote:
> Hi,
>
> I'm running stock Ubuntu 17.10 on two roughly identical boxes (4.13.0
> kernel) and am trying to verify that my setup works by running the
> xdp1 example code that ships with the default kernel code
> (./samples/bpf/xdp1_{user,kern}.c).
>
> On one box (a bare metal server), the code works as expected. But on
> the other box (a virtual machine), any of the bpf system calls return
> EPERM even though I'm running as root:
...
>
> I've even made sure that I can use promiscuous mode on the virtual
> machine (this requires extra permissions from the hypervisor), so
> that's not the problem. The problem persists even if I try to attach
> the xdp code to a pure virtual interface (e.g., a veth pair).
>
> Any one have any guess what the problem could be?
Could it be a memlock limit issue ? Can you try something like
ulimit -l 100000000 to see if it fixes the problem ?
BR,
--
Eric Leblond <eric@xxxxxxxxx>
Blog: https://home.regit.org/
|