Skip to content

Introduce a service to wait for network uplink #603

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 1 commit into from
Oct 23, 2025
Merged

Introduce a service to wait for network uplink #603

merged 1 commit into from
Oct 23, 2025
+24 −0

Conversation

ben-grande
Copy link
Contributor

This was referenced Sep 4, 2025
Merged
Open
@marmarek
Copy link
Member

marmarek commented Sep 5, 2025

Better add "network" somewhere in the service name.

@ben-grande ben-grande force-pushed the preload-netvm branch 2 times, most recently from bf95730 to 8b1948f Compare September 5, 2025 07:27
@codecov
Copy link

codecov bot commented Sep 5, 2025
edited
Loading

Codecov Report

✅ All modified and coverable lines are covered by tests.
✅ Project coverage is 70.68%. Comparing base (6034fe1) to head (741d5a1).
⚠️ Report is 19 commits behind head on main.

Additional details and impacted files 
@@            Coverage Diff             @@
##             main     #603      +/-   ##
==========================================
- Coverage   71.10%   70.68%   -0.42%     
==========================================
  Files           3        3              
  Lines         481      481              
==========================================
- Hits          342      340       -2     
- Misses        139      141       +2

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

🚀 New features to boost your workflow:
  • ❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.

This was referenced Sep 5, 2025
Merged
Open
@qubesos-bot
Copy link

qubesos-bot commented Sep 5, 2025
edited
Loading

OpenQA test summary

Complete test suite and dependencies: https://openqa.qubes-os.org/tests/overview?distri=qubesos&version=4.3&build=2025102219-4.3&flavor=pull-requests

Test run included the following:

New failures, excluding unstable

Compared to: https://openqa.qubes-os.org/tests/overview?distri=qubesos&version=4.3&build=2025081011-4.3&flavor=update

  • system_tests_gui_tools

    • qubesmanager_vmsettings: unnamed test (unknown)
    • qubesmanager_vmsettings: Failed (test died)
      # Test died: no candidate needle with tag(s) 'vm-settings-devices-s...

  • system_tests_guivm_vnc_gui_interactive

    • gui_filecopy: unnamed test (unknown)
    • gui_filecopy: Failed (test died)
      # Test died: no candidate needle with tag(s) 'files-test-file' matc...

  • system_tests_qwt_win10@hw13

    • windows_install: Failed (test died)
      # Test died: command 'script -e -c 'bash -x /usr/bin/qvm-create-win...

  • system_tests_qwt_win10_seamless@hw13

    • windows_clipboard_and_filecopy: unnamed test (unknown)
    • windows_clipboard_and_filecopy: Failed (test died)
      # Test died: no candidate needle with tag(s) 'windows-Edge-address-...

  • system_tests_qwt_win11@hw13

    • windows_install: wait_serial (wait serial expected)
      # wait_serial expected: qr/iDVvW-\d+-/...

    • windows_install: Failed (test died + timed out)
      # Test died: command 'script -e -c 'bash -x /usr/bin/qvm-create-win...

  • system_tests_gui_tools@hw7

    • qubesmanager_vmsettings: unnamed test (unknown)
    • qubesmanager_vmsettings: Failed (test died)
      # Test died: no candidate needle with tag(s) 'vm-settings-devices-s...

Failed tests

12 failures

  • system_tests_gui_tools

    • qubesmanager_vmsettings: unnamed test (unknown)
    • qubesmanager_vmsettings: Failed (test died)
      # Test died: no candidate needle with tag(s) 'vm-settings-devices-s...

  • system_tests_extra

    • TC_00_QVCTest_whonix-workstation-17: test_010_screenshare (failure)
      AssertionError: 1 != 0 : Timeout waiting for /dev/video0 in test-in...

  • system_tests_guivm_vnc_gui_interactive

    • gui_filecopy: unnamed test (unknown)
    • gui_filecopy: Failed (test died)
      # Test died: no candidate needle with tag(s) 'files-test-file' matc...

  • system_tests_qwt_win10@hw13

    • windows_install: Failed (test died)
      # Test died: command 'script -e -c 'bash -x /usr/bin/qvm-create-win...

  • system_tests_qwt_win10_seamless@hw13

    • windows_clipboard_and_filecopy: unnamed test (unknown)
    • windows_clipboard_and_filecopy: Failed (test died)
      # Test died: no candidate needle with tag(s) 'windows-Edge-address-...

  • system_tests_qwt_win11@hw13

    • windows_install: wait_serial (wait serial expected)
      # wait_serial expected: qr/iDVvW-\d+-/...

    • windows_install: Failed (test died + timed out)
      # Test died: command 'script -e -c 'bash -x /usr/bin/qvm-create-win...

  • system_tests_gui_tools@hw7

    • qubesmanager_vmsettings: unnamed test (unknown)
    • qubesmanager_vmsettings: Failed (test died)
      # Test died: no candidate needle with tag(s) 'vm-settings-devices-s...

Fixed failures

Compared to: https://openqa.qubes-os.org/tests/149225#dependencies

84 fixed

  • system_tests_kde_gui_interactive

    • gui_keyboard_layout: wait_serial (wait serial expected)
      # wait_serial expected: "echo -e '[Layout]\nLayoutList=us,de' | sud...

    • gui_keyboard_layout: Failed (test died)
      # Test died: command 'test "$(cd ~user;ls e1*)" = "$(qvm-run -p wor...

  • system_tests_audio

    • system_tests: Fail (unknown)
      Tests qubes.tests.integ.audio failed (exit code 1), details reporte...

    • system_tests: Failed (test died)
      # Test died: Some tests failed at qubesos/tests/system_tests.pm lin...

    • TC_20_AudioVM_Pulse_whonix-workstation-17: test_223_audio_play_hvm (error)
      qubes.exc.QubesVMError: Cannot connect to qrexec agent for 120 seco...

    • TC_20_AudioVM_Pulse_whonix-workstation-17: test_224_audio_rec_muted_hvm (error)
      qubes.exc.QubesVMError: Cannot connect to qrexec agent for 120 seco...

    • TC_20_AudioVM_Pulse_whonix-workstation-17: test_225_audio_rec_unmuted_hvm (error)
      qubes.exc.QubesVMError: Cannot connect to qrexec agent for 120 seco...

    • TC_20_AudioVM_Pulse_whonix-workstation-17: test_252_audio_playback_audiovm_switch_hvm (error)
      qubes.exc.QubesVMError: Cannot connect to qrexec agent for 120 seco...

  • system_tests_dispvm_perf@hw7

  • system_tests_guivm_gpu_gui_interactive@hw13

    • guivm_startup: wait_serial (wait serial expected)
      # wait_serial expected: qr/lEcbc-\d+-/...

    • guivm_startup: Failed (test died + timed out)
      # Test died: command '! qvm-check sys-whonix || time qvm-start sys-...

  • system_tests_basic_vm_qrexec_gui_ext4

    • system_tests: Fail (unknown)
      Tests qubes.tests.integ.vm_qrexec_gui failed (exit code 1), details...

    • system_tests: Failed (test died)
      # Test died: Some tests failed at qubesos/tests/system_tests.pm lin...

    • TC_20_NonAudio_whonix-gateway-17-pool: test_012_qubes_desktop_run (error + cleanup)
      raise TimeoutError from exc_val... TimeoutError

  • system_tests_audio@hw1

    • system_tests: Fail (unknown)
      Tests qubes.tests.integ.audio failed (exit code 1), details reporte...

    • system_tests: Failed (test died)
      # Test died: Some tests failed at qubesos/tests/system_tests.pm lin...

    • TC_20_AudioVM_Pulse_whonix-workstation-17: test_223_audio_play_hvm (error)
      qubes.exc.QubesVMError: Cannot connect to qrexec agent for 60 secon...

    • TC_20_AudioVM_Pulse_whonix-workstation-17: test_224_audio_rec_muted_hvm (error)
      qubes.exc.QubesVMError: Cannot connect to qrexec agent for 60 secon...

    • TC_20_AudioVM_Pulse_whonix-workstation-17: test_252_audio_playback_audiovm_switch_hvm (error)
      qubes.exc.QubesVMError: Cannot connect to qrexec agent for 60 secon...

  • system_tests_dispvm

    • system_tests: Fail (unknown)
      Tests qubes.tests.integ.dispvm failed (exit code 1), details report...

    • TC_20_DispVM_debian-13-xfce: test_012_preload_low_mem (failure)
      ~~~~~~~~~~~~~~~~^^^^^^^^^^^^^^^^^^^^^^^^^^^^... AssertionError: 1 != 0

    • TC_20_DispVM_debian-13-xfce: test_013_preload_gui (error)
      raise KeyError(key)... KeyError: 'disp3723'

    • TC_20_DispVM_debian-13-xfce: test_014_preload_nogui (error + cleanup)
      raise TimeoutError from exc_val... TimeoutError

    • TC_20_DispVM_debian-13-xfce: test_015_preload_race_more (error + cleanup)
      raise KeyError(key)... KeyError: 'disp1187'

    • TC_20_DispVM_debian-13-xfce: test_016_preload_race_less (failure + cleanup)
      ^^^^^^^^^^^^^^^^^^^^^^... AssertionError

    • TC_20_DispVM_debian-13-xfce: test_017_preload_autostart (error)
      raise KeyError(key)... KeyError: 'disp7317'

    • TC_20_DispVM_debian-13-xfce: test_018_preload_global (error)
      raise KeyError(key)... KeyError: 'disp8572'

    • TC_20_DispVM_debian-13-xfce: test_019_preload_refresh (error)
      raise KeyError(key)... KeyError: 'disp6425'

    • TC_20_DispVM_fedora-42-xfce: test_012_preload_low_mem (failure)
      ~~~~~~~~~~~~~~~~^^^^^^^^^^^^^^^^^^^^^^^^^^^^... AssertionError: 1 != 0

    • TC_20_DispVM_whonix-workstation-17: test_012_preload_low_mem (failure)
      ~~~~~~~~~~~~~~~~^^^^^^^^^^^^^^^^^^^^^^^^^^^^... AssertionError: 1 != 0

Unstable tests

Performance Tests

Performance degradation:

17 performance degradations
  • fedora-42-xfce_exec-data-duplex: 74.80 🔻 ( previous job: 67.92, degradation: 110.14%)
  • whonix-workstation-17_exec: 8.59 🔻 ( previous job: 7.57, degradation: 113.52%)
  • dom0_root_seq1m_q8t1_read 3:read_bandwidth_kb: 177215.00 🔻 ( previous job: 497426.00, degradation: 35.63%)
  • dom0_root_seq1m_q8t1_write 3:write_bandwidth_kb: 188190.00 🔻 ( previous job: 265260.00, degradation: 70.95%)
  • dom0_root_seq1m_q1t1_read 3:read_bandwidth_kb: 120482.00 🔻 ( previous job: 431512.00, degradation: 27.92%)
  • dom0_root_seq1m_q1t1_write 3:write_bandwidth_kb: 74418.00 🔻 ( previous job: 196254.00, degradation: 37.92%)
  • dom0_root_rnd4k_q32t1_read 3:read_bandwidth_kb: 5803.00 🔻 ( previous job: 23940.00, degradation: 24.24%)
  • fedora-42-xfce_root_seq1m_q8t1_write 3:write_bandwidth_kb: 99799.00 🔻 ( previous job: 140215.00, degradation: 71.18%)
  • fedora-42-xfce_root_seq1m_q1t1_write 3:write_bandwidth_kb: 37850.00 🔻 ( previous job: 47575.00, degradation: 79.56%)
  • fedora-42-xfce_root_rnd4k_q32t1_write 3:write_bandwidth_kb: 1399.00 🔻 ( previous job: 3020.00, degradation: 46.32%)
  • fedora-42-xfce_root_rnd4k_q1t1_write 3:write_bandwidth_kb: 558.00 🔻 ( previous job: 1368.00, degradation: 40.79%)
  • fedora-42-xfce_private_seq1m_q1t1_write 3:write_bandwidth_kb: 48450.00 🔻 ( previous job: 79539.00, degradation: 60.91%)
  • fedora-42-xfce_private_rnd4k_q32t1_write 3:write_bandwidth_kb: 1529.00 🔻 ( previous job: 3765.00, degradation: 40.61%)
  • fedora-42-xfce_private_rnd4k_q1t1_write 3:write_bandwidth_kb: 340.00 🔻 ( previous job: 1251.00, degradation: 27.18%)
  • fedora-42-xfce_volatile_seq1m_q8t1_write 3:write_bandwidth_kb: 86646.00 🔻 ( previous job: 157382.00, degradation: 55.05%)
  • fedora-42-xfce_volatile_rnd4k_q32t1_write 3:write_bandwidth_kb: 3635.00 🔻 ( previous job: 4098.00, degradation: 88.70%)
  • fedora-42-xfce_volatile_rnd4k_q1t1_write 3:write_bandwidth_kb: 1438.00 🔻 ( previous job: 2384.00, degradation: 60.32%)

Remaining performance tests:

163 tests
  • debian-13-xfce_vm-dispvm (mean:6.69): 80.28
  • debian-13-xfce_vm-dispvm-gui (mean:7.675): 92.10
  • debian-13-xfce_vm-dispvm-concurrent (mean:3.181): 38.18
  • debian-13-xfce_vm-dispvm-gui-concurrent (mean:3.958): 47.49
  • debian-13-xfce_dom0-dispvm (mean:7.074): 84.89
  • debian-13-xfce_dom0-dispvm-gui (mean:8.196): 98.35
  • debian-13-xfce_dom0-dispvm-concurrent (mean:3.225): 38.69
  • debian-13-xfce_dom0-dispvm-gui-concurrent (mean:4.077): 48.93
  • debian-13-xfce_vm-dispvm-preload (mean:2.776): 33.31
  • debian-13-xfce_vm-dispvm-preload-gui (mean:4.061): 48.73
  • debian-13-xfce_vm-dispvm-preload-concurrent (mean:2.631): 31.58
  • debian-13-xfce_vm-dispvm-preload-gui-concurrent (mean:3.44): 41.28
  • debian-13-xfce_dom0-dispvm-preload (mean:3.502): 42.02
  • debian-13-xfce_dom0-dispvm-preload-gui (mean:10.669): 128.03
  • debian-13-xfce_dom0-dispvm-preload-concurrent (mean:3.159): 37.90
  • debian-13-xfce_dom0-dispvm-preload-gui-concurrent (mean:3.804): 45.65
  • debian-13-xfce_dom0-dispvm-api (mean:7.148): 85.78
  • debian-13-xfce_dom0-dispvm-gui-api (mean:8.267): 99.20
  • debian-13-xfce_dom0-dispvm-concurrent-api (mean:3.455): 41.46
  • debian-13-xfce_dom0-dispvm-gui-concurrent-api (mean:4.106): 49.28
  • debian-13-xfce_dom0-dispvm-preload-less-less-api (mean:3.827): 45.93
  • debian-13-xfce_dom0-dispvm-preload-less-api (mean:3.882): 46.58
  • debian-13-xfce_dom0-dispvm-preload-api (mean:3.482): 41.78
  • debian-13-xfce_dom0-dispvm-preload-more-api (mean:3.415): 40.98
  • debian-13-xfce_dom0-dispvm-preload-more-more-api (mean:3.749): 44.99
  • debian-13-xfce_dom0-dispvm-preload-gui-api (mean:4.484): 53.81
  • debian-13-xfce_dom0-dispvm-preload-concurrent-api (mean:3.11): 37.33
  • debian-13-xfce_dom0-dispvm-preload-gui-concurrent-api (mean:3.873): 46.47
  • debian-13-xfce_vm-vm (mean:0.039): 0.47
  • debian-13-xfce_vm-vm-gui (mean:0.031): 0.37
  • debian-13-xfce_vm-vm-concurrent (mean:0.019): 0.23
  • debian-13-xfce_vm-vm-gui-concurrent (mean:0.02): 0.23
  • debian-13-xfce_dom0-vm-api (mean:0.042): 0.51
  • debian-13-xfce_dom0-vm-gui-api (mean:0.052): 0.63
  • debian-13-xfce_dom0-vm-concurrent-api (mean:0.024): 0.29
  • debian-13-xfce_dom0-vm-gui-concurrent-api (mean:0.029): 0.34
  • fedora-42-xfce_vm-dispvm (mean:7.203): 86.43
  • fedora-42-xfce_vm-dispvm-gui (mean:8.162): 97.94
  • fedora-42-xfce_vm-dispvm-concurrent (mean:3.589): 43.06
  • fedora-42-xfce_vm-dispvm-gui-concurrent (mean:4.287): 51.44
  • fedora-42-xfce_dom0-dispvm (mean:7.685): 92.22
  • fedora-42-xfce_dom0-dispvm-gui (mean:8.868): 106.42
  • fedora-42-xfce_dom0-dispvm-concurrent (mean:3.908): 46.90
  • fedora-42-xfce_dom0-dispvm-gui-concurrent (mean:4.365): 52.38
  • fedora-42-xfce_vm-dispvm-preload (mean:3.246): 38.95
  • fedora-42-xfce_vm-dispvm-preload-gui (mean:6.702): 80.42
  • fedora-42-xfce_vm-dispvm-preload-concurrent (mean:2.953): 35.44
  • fedora-42-xfce_vm-dispvm-preload-gui-concurrent (mean:3.821): 45.85
  • fedora-42-xfce_dom0-dispvm-preload (mean:3.88): 46.55
  • fedora-42-xfce_dom0-dispvm-preload-gui (mean:4.923): 59.07
  • fedora-42-xfce_dom0-dispvm-preload-concurrent (mean:3.477): 41.73
  • fedora-42-xfce_dom0-dispvm-preload-gui-concurrent (mean:4.074): 48.88
  • fedora-42-xfce_dom0-dispvm-api (mean:7.801): 93.61
  • fedora-42-xfce_dom0-dispvm-gui-api (mean:9.029): 108.34
  • fedora-42-xfce_dom0-dispvm-concurrent-api (mean:3.771): 45.25
  • fedora-42-xfce_dom0-dispvm-gui-concurrent-api (mean:4.464): 53.56
  • fedora-42-xfce_dom0-dispvm-preload-less-less-api (mean:4.292): 51.50
  • fedora-42-xfce_dom0-dispvm-preload-less-api (mean:4.247): 50.96
  • fedora-42-xfce_dom0-dispvm-preload-api (mean:4.119): 49.43
  • fedora-42-xfce_dom0-dispvm-preload-more-api (mean:3.896): 46.75
  • fedora-42-xfce_dom0-dispvm-preload-more-more-api (mean:4.037): 48.44
  • fedora-42-xfce_dom0-dispvm-preload-gui-api (mean:5.069): 60.83
  • fedora-42-xfce_dom0-dispvm-preload-concurrent-api (mean:3.419): 41.03
  • fedora-42-xfce_dom0-dispvm-preload-gui-concurrent-api (mean:4.36): 52.32
  • fedora-42-xfce_vm-vm (mean:0.033): 0.39
  • fedora-42-xfce_vm-vm-gui (mean:0.025): 0.30
  • fedora-42-xfce_vm-vm-concurrent (mean:0.024): 0.29
  • fedora-42-xfce_vm-vm-gui-concurrent (mean:0.02): 0.24
  • fedora-42-xfce_dom0-vm-api (mean:0.043): 0.52
  • fedora-42-xfce_dom0-vm-gui-api (mean:0.045): 0.54
  • fedora-42-xfce_dom0-vm-concurrent-api (mean:0.028): 0.34
  • fedora-42-xfce_dom0-vm-gui-concurrent-api (mean:0.03): 0.36
  • whonix-workstation-17_vm-dispvm (mean:7.797): 93.57
  • whonix-workstation-17_vm-dispvm-gui (mean:8.998): 107.97
  • whonix-workstation-17_vm-dispvm-concurrent (mean:4.547): 54.56
  • whonix-workstation-17_vm-dispvm-gui-concurrent (mean:4.902): 58.83
  • whonix-workstation-17_dom0-dispvm (mean:8.357): 100.28
  • whonix-workstation-17_dom0-dispvm-gui (mean:9.374): 112.49
  • whonix-workstation-17_dom0-dispvm-concurrent (mean:4.38): 52.56
  • whonix-workstation-17_dom0-dispvm-gui-concurrent (mean:5.32): 63.84
  • whonix-workstation-17_vm-dispvm-preload (mean:3.393): 40.72
  • whonix-workstation-17_vm-dispvm-preload-gui (mean:4.762): 57.15
  • whonix-workstation-17_vm-dispvm-preload-concurrent (mean:3.339): 40.07
  • whonix-workstation-17_vm-dispvm-preload-gui-concurrent (mean:4.216): 50.59
  • whonix-workstation-17_dom0-dispvm-preload (mean:4.447): 53.36
  • whonix-workstation-17_dom0-dispvm-preload-gui (mean:5.444): 65.33
  • whonix-workstation-17_dom0-dispvm-preload-concurrent (mean:3.746): 44.96
  • whonix-workstation-17_dom0-dispvm-preload-gui-concurrent (mean:4.483): 53.80
  • whonix-workstation-17_dom0-dispvm-api (mean:8.51): 102.12
  • whonix-workstation-17_dom0-dispvm-gui-api (mean:9.737): 116.85
  • whonix-workstation-17_dom0-dispvm-concurrent-api (mean:4.062): 48.74
  • whonix-workstation-17_dom0-dispvm-gui-concurrent-api (mean:4.597): 55.17
  • whonix-workstation-17_dom0-dispvm-preload-less-less-api (mean:4.57): 54.84
  • whonix-workstation-17_dom0-dispvm-preload-less-api (mean:5.064): 60.77
  • whonix-workstation-17_dom0-dispvm-preload-api (mean:4.264): 51.16
  • whonix-workstation-17_dom0-dispvm-preload-more-api (mean:4.408): 52.89
  • whonix-workstation-17_dom0-dispvm-preload-more-more-api (mean:4.262): 51.15
  • whonix-workstation-17_dom0-dispvm-preload-gui-api (mean:5.348): 64.17
  • whonix-workstation-17_dom0-dispvm-preload-concurrent-api (mean:3.733): 44.79
  • whonix-workstation-17_dom0-dispvm-preload-gui-concurrent-api (mean:4.5): 54.00
  • whonix-workstation-17_vm-vm (mean:0.024): 0.29
  • whonix-workstation-17_vm-vm-gui (mean:0.048): 0.58
  • whonix-workstation-17_vm-vm-concurrent (mean:0.015): 0.18
  • whonix-workstation-17_vm-vm-gui-concurrent (mean:0.03): 0.37
  • whonix-workstation-17_dom0-vm-api (mean:0.037): 0.45
  • whonix-workstation-17_dom0-vm-gui-api (mean:0.039): 0.47
  • whonix-workstation-17_dom0-vm-concurrent-api (mean:0.031): 0.37
  • whonix-workstation-17_dom0-vm-gui-concurrent-api (mean:0.025): 0.31
  • debian-13-xfce_exec: 8.04 🟢 ( previous job: 8.36, improvement: 96.18%)
  • debian-13-xfce_exec-root: 27.04 🟢 ( previous job: 27.36, improvement: 98.82%)
  • debian-13-xfce_socket: 8.08 🟢 ( previous job: 8.57, improvement: 94.21%)
  • debian-13-xfce_socket-root: 8.71 🔻 ( previous job: 8.26, degradation: 105.53%)
  • debian-13-xfce_exec-data-simplex: 67.47 🟢 ( previous job: 72.43, improvement: 93.15%)
  • debian-13-xfce_exec-data-duplex: 67.40 🟢 ( previous job: 76.65, improvement: 87.93%)
  • debian-13-xfce_exec-data-duplex-root: 80.77 🟢 ( previous job: 91.79, improvement: 88.00%)
  • debian-13-xfce_socket-data-duplex: 131.73 🟢 ( previous job: 133.45, improvement: 98.71%)
  • fedora-42-xfce_exec: 9.16 🔻 ( previous job: 9.06, degradation: 101.16%)
  • fedora-42-xfce_exec-root: 59.71 🔻 ( previous job: 58.19, degradation: 102.62%)
  • fedora-42-xfce_socket: 8.33 🟢 ( previous job: 8.48, improvement: 98.22%)
  • fedora-42-xfce_socket-root: 8.01 🟢 ( previous job: 8.18, improvement: 97.88%)
  • fedora-42-xfce_exec-data-simplex: 68.24 🟢 ( previous job: 78.48, improvement: 86.94%)
  • fedora-42-xfce_exec-data-duplex-root: 104.92 🔻 ( previous job: 96.36, degradation: 108.88%)
  • fedora-42-xfce_socket-data-duplex: 143.26 🔻 ( previous job: 142.58, degradation: 100.48%)
  • whonix-gateway-17_exec: 7.48 🟢 ( previous job: 8.12, improvement: 92.19%)
  • whonix-gateway-17_exec-root: 39.06 🟢 ( previous job: 41.05, improvement: 95.15%)
  • whonix-gateway-17_socket: 8.02 🟢 ( previous job: 8.52, improvement: 94.03%)
  • whonix-gateway-17_socket-root: 7.13 🟢 ( previous job: 8.12, improvement: 87.84%)
  • whonix-gateway-17_exec-data-simplex: 69.19 🟢 ( previous job: 83.60, improvement: 82.77%)
  • whonix-gateway-17_exec-data-duplex: 73.35 🔻 ( previous job: 68.38, degradation: 107.26%)
  • whonix-gateway-17_exec-data-duplex-root: 89.69 🟢 ( previous job: 99.37, improvement: 90.25%)
  • whonix-gateway-17_socket-data-duplex: 150.59 🟢 ( previous job: 167.12, improvement: 90.11%)
  • whonix-workstation-17_exec-root: 54.57 🟢 ( previous job: 56.76, improvement: 96.15%)
  • whonix-workstation-17_socket: 8.72 🔻 ( previous job: 8.59, degradation: 101.56%)
  • whonix-workstation-17_socket-root: 8.78 🟢 ( previous job: 8.89, improvement: 98.79%)
  • whonix-workstation-17_exec-data-simplex: 72.49 🔻 ( previous job: 66.80, degradation: 108.51%)
  • whonix-workstation-17_exec-data-duplex: 72.97 🟢 ( previous job: 74.50, improvement: 97.94%)
  • whonix-workstation-17_exec-data-duplex-root: 92.74 🟢 ( previous job: 102.34, improvement: 90.62%)
  • whonix-workstation-17_socket-data-duplex: 146.49 🟢 ( previous job: 147.97, improvement: 99.00%)
  • dom0_root_rnd4k_q32t1_write 3:write_bandwidth_kb: 6286.00 🟢 ( previous job: 2446.00, improvement: 256.99%)
  • dom0_root_rnd4k_q1t1_read 3:read_bandwidth_kb: 11909.00 🟢 ( previous job: 5874.00, improvement: 202.74%)
  • dom0_root_rnd4k_q1t1_write 3:write_bandwidth_kb: 1062.00 🟢 ( previous job: 29.00, improvement: 3662.07%)
  • dom0_varlibqubes_seq1m_q8t1_read 3:read_bandwidth_kb: 284939.00 🔻 ( previous job: 292489.00, degradation: 97.42%)
  • dom0_varlibqubes_seq1m_q8t1_write 3:write_bandwidth_kb: 107727.00 🔻 ( previous job: 110817.00, degradation: 97.21%)
  • dom0_varlibqubes_seq1m_q1t1_read 3:read_bandwidth_kb: 418760.00 🟢 ( previous job: 137802.00, improvement: 303.89%)
  • dom0_varlibqubes_seq1m_q1t1_write 3:write_bandwidth_kb: 198582.00 🟢 ( previous job: 121719.00, improvement: 163.15%)
  • dom0_varlibqubes_rnd4k_q32t1_read 3:read_bandwidth_kb: 106661.00 🟢 ( previous job: 103932.00, improvement: 102.63%)
  • dom0_varlibqubes_rnd4k_q32t1_write 3:write_bandwidth_kb: 6531.00 🟢 ( previous job: 6356.00, improvement: 102.75%)
  • dom0_varlibqubes_rnd4k_q1t1_read 3:read_bandwidth_kb: 7570.00 🔻 ( previous job: 7695.00, degradation: 98.38%)
  • dom0_varlibqubes_rnd4k_q1t1_write 3:write_bandwidth_kb: 4089.00 🟢 ( previous job: 3925.00, improvement: 104.18%)
  • fedora-42-xfce_root_seq1m_q8t1_read 3:read_bandwidth_kb: 403608.00 🟢 ( previous job: 366891.00, improvement: 110.01%)
  • fedora-42-xfce_root_seq1m_q1t1_read 3:read_bandwidth_kb: 308404.00 🟢 ( previous job: 299764.00, improvement: 102.88%)
  • fedora-42-xfce_root_rnd4k_q32t1_read 3:read_bandwidth_kb: 87506.00 🟢 ( previous job: 86001.00, improvement: 101.75%)
  • fedora-42-xfce_root_rnd4k_q1t1_read 3:read_bandwidth_kb: 8721.00 🔻 ( previous job: 9042.00, degradation: 96.45%)
  • fedora-42-xfce_private_seq1m_q8t1_read 3:read_bandwidth_kb: 367019.00 🔻 ( previous job: 387500.00, degradation: 94.71%)
  • fedora-42-xfce_private_seq1m_q8t1_write 3:write_bandwidth_kb: 129084.00 🔻 ( previous job: 136640.00, degradation: 94.47%)
  • fedora-42-xfce_private_seq1m_q1t1_read 3:read_bandwidth_kb: 320469.00 🔻 ( previous job: 325139.00, degradation: 98.56%)
  • fedora-42-xfce_private_rnd4k_q32t1_read 3:read_bandwidth_kb: 97952.00 🟢 ( previous job: 87396.00, improvement: 112.08%)
  • fedora-42-xfce_private_rnd4k_q1t1_read 3:read_bandwidth_kb: 8383.00 🔻 ( previous job: 8992.00, degradation: 93.23%)
  • fedora-42-xfce_volatile_seq1m_q8t1_read 3:read_bandwidth_kb: 359717.00 🔻 ( previous job: 383531.00, degradation: 93.79%)
  • fedora-42-xfce_volatile_seq1m_q1t1_read 3:read_bandwidth_kb: 297721.00 🟢 ( previous job: 293225.00, improvement: 101.53%)
  • fedora-42-xfce_volatile_seq1m_q1t1_write 3:write_bandwidth_kb: 89150.00 🟢 ( previous job: 64217.00, improvement: 138.83%)
  • fedora-42-xfce_volatile_rnd4k_q32t1_read 3:read_bandwidth_kb: 88228.00 🟢 ( previous job: 87141.00, improvement: 101.25%)
  • fedora-42-xfce_volatile_rnd4k_q1t1_read 3:read_bandwidth_kb: 8967.00 🟢 ( previous job: 8804.00, improvement: 101.85%)

This was referenced Sep 5, 2025
Merged
Merged
Merged
Draft
@marmarek
Copy link
Member

marmarek commented Sep 6, 2025

system_tests_network

* VmNetworking_debian-13-xfce: [test_001_simple_networking_paused](https://openqa.qubes-os.org/tests/152112#step/VmNetworking_debian-13-xfce/2) (failure)
  `~~~~~~~~~~~~~~~~^^^^^^^^^^^^^^^^^^^^^^^^^^^^... AssertionError: 2 != 0`

This fails reliably on Debian 13. I don't see in logs on which side the problem is, might be related to calling as non-root, but might be also something else.

@marmarek
Copy link
Member

marmarek commented Sep 6, 2025

Ah, you found that in the other PR already.

This was referenced Sep 9, 2025
Merged
Merged
@ben-grande
Copy link
Contributor Author

No failure happens if I use await asyncio.sleep(5) after this service completes.

user@dom0:~/qubes-core-admin$ ~/run-tests.sh -L INFO -o /tmp/out qubes.tests.integ.network/VmNetworking_debian-13-xfce/test_001_simple_networking_paused qubes.tests.integ.network_ipv6/VmIPv6Networking_debian-13-xfce/test_001_simple_networking_paused qubes.tests.integ.network_ipv6/VmIPv6Networking_debian-13-xfce/test_501_ipv6_simple_networking_paused
qubes.tests.integ.network/VmNetworking_debian-13-xfce/test_001_simple_networking_paused
  :type self: qubes.tests.SystemTestCase | VMNetworkingMixin ... ok
qubes.tests.integ.network_ipv6/VmIPv6Networking_debian-13-xfce/test_001_simple_networking_paused
  :type self: qubes.tests.SystemTestCase | VMNetworkingMixin ... ok
qubes.tests.integ.network_ipv6/VmIPv6Networking_debian-13-xfce/test_501_ipv6_simple_networking_paused
  :type self: qubes.tests.SystemTestCase | VmIPv6NetworkingMixin ... ok

----------------------------------------------------------------------
Ran 3 tests in 190.574s

OK
user@dom0:~/qubes-core-admin$ ~/run-tests.sh -L INFO -o /tmp/out qubes.tests.integ.network/VmNetworking_fedora-42-xfce/test_001_simple_networking_paused qubes.tests.integ.network_ipv6/VmIPv6Networking_fedora-42-xfce/test_001_simple_networking_paused qubes.tests.integ.network_ipv6/VmIPv6Networking_fedora-42-xfce/test_501_ipv6_simple_networking_paused
qubes.tests.integ.network/VmNetworking_fedora-42-xfce/test_001_simple_networking_paused
  :type self: qubes.tests.SystemTestCase | VMNetworkingMixin ... ok
qubes.tests.integ.network_ipv6/VmIPv6Networking_fedora-42-xfce/test_001_simple_networking_paused
  :type self: qubes.tests.SystemTestCase | VMNetworkingMixin ... ok
qubes.tests.integ.network_ipv6/VmIPv6Networking_fedora-42-xfce/test_501_ipv6_simple_networking_paused
  :type self: qubes.tests.SystemTestCase | VmIPv6NetworkingMixin ... ok

----------------------------------------------------------------------
Ran 3 tests in 204.107s

OK

So it means it is not waiting for something that would signal that network has been established.

@ben-grande
Copy link
Contributor Author

Waiting for ping gateway to return seems enough https://github.com/QubesOS/qubes-core-agent-linux/compare/1bc691a9323151aa43793e0c5dc24de7c0a0a60c..07c8f9fe5eafcbe45587abd16656b932f4fcc45e

user@dom0:~/qubes-core-admin$ ~/run-tests.sh -L INFO -o /tmp/out qubes.tests.integ.network/VmNetworking_fedora-42-xfce/test_001_simple_networking_paused qubes.tests.integ.network_ipv6/VmIPv6Networking_fedora-42-xfce/test_001_simple_networking_paused qubes.tests.integ.network_ipv6/VmIPv6Networking_fedora-42-xfce/test_501_ipv6_simple_networking_paused
qubes.tests.integ.network/VmNetworking_fedora-42-xfce/test_001_simple_networking_paused
  :type self: qubes.tests.SystemTestCase | VMNetworkingMixin ... ok
qubes.tests.integ.network_ipv6/VmIPv6Networking_fedora-42-xfce/test_001_simple_networking_paused
  :type self: qubes.tests.SystemTestCase | VMNetworkingMixin ... ok
qubes.tests.integ.network_ipv6/VmIPv6Networking_fedora-42-xfce/test_501_ipv6_simple_networking_paused
  :type self: qubes.tests.SystemTestCase | VmIPv6NetworkingMixin ... ok

----------------------------------------------------------------------
Ran 3 tests in 205.421s

OK

@ben-grande
Copy link
Contributor Author

Except it doesn't always works:

user@dom0:~/qubes-core-admin$ ~/run-tests.sh -L INFO -o /tmp/out qubes.tests.integ.network/VmNetworking_fedora-42-xfce/test_001_simple_networking_paused qubes.tests.integ.network_ipv6/VmIPv6Networking_fedora-42-xfce/test_001_simple_networking_paused qubes.tests.integ.network_ipv6/VmIPv6Networking_fedora-42-xfce/test_501_ipv6_simple_networking_paused
qubes.tests.integ.network/VmNetworking_fedora-42-xfce/test_001_simple_networking_paused
  :type self: qubes.tests.SystemTestCase | VMNetworkingMixin ... qubes.tests.integ.network_ipv6/VmIPv6Networking_fedora-42-xfce/test_001_simple_networking_paused
  :type self: qubes.tests.SystemTestCase | VMNetworkingMixin ... ok
qubes.tests.integ.network_ipv6/VmIPv6Networking_fedora-42-xfce/test_501_ipv6_simple_networking_paused
  :type self: qubes.tests.SystemTestCase | VmIPv6NetworkingMixin ... ok

======================================================================
FAIL: qubes.tests.integ.network/VmNetworking_fedora-42-xfce/test_001_simple_networking_paused [netvm=something -> netvm=something (shutdown old)]
  :type self: qubes.tests.SystemTestCase | VMNetworkingMixin
----------------------------------------------------------------------
Traceback (most recent call last):
  File "/home/user/qubes-core-admin/qubes/tests/integ/network.py", line 252, in _networking_paused
    self.assertEqual(self.run_cmd(self.testvm1, ip), 0)
    ~~~~~~~~~~~~~~~~^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
AssertionError: 2 != 0

======================================================================
FAIL: qubes.tests.integ.network/VmNetworking_fedora-42-xfce/test_001_simple_networking_paused [netvm=something -> netvm=something (purge old)]
  :type self: qubes.tests.SystemTestCase | VMNetworkingMixin
----------------------------------------------------------------------
Traceback (most recent call last):
  File "/home/user/qubes-core-admin/qubes/tests/integ/network.py", line 273, in _networking_paused
    self.assertEqual(self.run_cmd(self.testvm1, ip), 0)
    ~~~~~~~~~~~~~~~~^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
AssertionError: 2 != 0

----------------------------------------------------------------------
Ran 3 tests in 204.815s

FAILED (failures=2)

@ben-grande
Copy link
Contributor Author

When it fails, it only fails on ipv4, which is tested before ipv6. Ipv6 may not be failing because it takes more time as it tries to ping the gateway of both ipv4 and ipv6 if both are available.

@ben-grande
Copy link
Contributor Author

Waiting for ECHO_REPLY seems to be working reliably: https://github.com/QubesOS/qubes-core-agent-linux/compare/07c8f9fe5eafcbe45587abd16656b932f4fcc45e..b4219a1f2b3ed46dd97f190678b3c2358996a64a

@marmarek
Copy link
Member

Ping is a bad idea, the backend may not necessarily respond to them (I wouldn't be surprised if Whonix blocks them at firewall, or Mirage firewall wouldn't respond either).

Maybe add some debug info collection (see what network tests do on failure) before/after wait and see what is actually changing? Could be also some delay on the backend side maybe?

If all fails, IMO better to accept that network may start working with some delay (and deal with that in tests), than having forced delay in disposable usage. After all, internet protocols need to deal with unreliable packet transfers anyway.

@ben-grande
Copy link
Contributor Author

Ping is a bad idea, the backend may not necessarily respond to them (I wouldn't be surprised if Whonix blocks them at firewall, or Mirage firewall wouldn't respond either).

Right...

Maybe add some debug info collection (see what network tests do on failure) before/after wait and see what is actually changing? Could be also some delay on the backend side maybe?

The ping errors are:

  • ip: Network is unreachable
  • name: Temporary failure in name resolution

Could be some delay on the backend/netvm side, yes. It tends to happen shutdown old or purge old.

user@dom0:~/qubes-core-admin$ qvm-prefs untrusted netvm ''
user@dom0:~/qubes-core-admin$ qvm-prefs untrusted netvm -D; time qvm-run -p untrusted ping -c1 -W1 -n qubes-os.org
PING qubes-os.org (104.21.48.1) 56(84) bytes of data.
64 bytes from 104.21.48.1: icmp_seq=1 ttl=54 time=13.4 ms

--- qubes-os.org ping statistics ---
1 packets transmitted, 1 received, 0% packet loss, time 0ms
rtt min/avg/max/mdev = 13.401/13.401/13.401/0.000 ms

real    0m0.314s
user    0m0.110s
sys     0m0.068s
# sys-firewall removing a client
Sep 11 12:27:59 sys-firewall root[2550]: /etc/xen/scripts/vif-route-qubes: offline type_if=vif XENBUS_PATH=backend/vif/277/0
Sep 11 12:27:59 sys-firewall kernel: kauditd_printk_skb: 108 callbacks suppressed
Sep 11 12:27:59 sys-firewall kernel: audit: type=1325 audit(1757593679.530:543): table=qubes:257 family=2 entries=2 op=nft_unregister_setelem pid=2571 subj=system_u:system_r:iptables_t:s0 comm="nft"
Sep 11 12:27:59 sys-firewall audit[2571]: NETFILTER_CFG table=qubes:257 family=2 entries=2 op=nft_unregister_setelem pid=2571 subj=system_u:system_r:iptables_t:s0 comm="nft"
Sep 11 12:27:59 sys-firewall audit[2571]: SYSCALL arch=c000003e syscall=46 success=yes exit=188 a0=3 a1=7ffe8f49f180 a2=0 a3=0 items=0 ppid=2542 pid=2571 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="nft" exe="/usr/bin/nft" subj=system_u:system_r:iptables_t:s0 key=(null)
Sep 11 12:27:59 sys-firewall audit: PROCTITLE proctitle=6E66740064656C65746520656C656D656E7420697020717562657320616C6C6F776564207B20227669663237372E3022202E2031302E3133372E302E3136207D0A64656C65746520656C656D656E7420697020717562657320646F776E73747265616D207B2031302E3133372E302E3136207D
Sep 11 12:27:59 sys-firewall kernel: audit: type=1300 audit(1757593679.530:543): arch=c000003e syscall=46 success=yes exit=188 a0=3 a1=7ffe8f49f180 a2=0 a3=0 items=0 ppid=2542 pid=2571 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="nft" exe="/usr/bin/nft" subj=system_u:system_r:iptables_t:s0 key=(null)
Sep 11 12:27:59 sys-firewall kernel: audit: type=1327 audit(1757593679.530:543): proctitle=6E66740064656C65746520656C656D656E7420697020717562657320616C6C6F776564207B20227669663237372E3022202E2031302E3133372E302E3136207D0A64656C65746520656C656D656E7420697020717562657320646F776E73747265616D207B2031302E3133372E302E3136207D
Sep 11 12:27:59 sys-firewall root[2573]: /etc/xen/scripts/vif-route-qubes: Successful vif-route-qubes offline for vif277.0.
Sep 11 12:27:59 sys-firewall audit[2574]: NETFILTER_CFG table=qubes-firewall:258 family=2 entries=18 op=nft_register_chain pid=2574 subj=system_u:system_r:unconfined_service_t:s0 comm="nft"
Sep 11 12:27:59 sys-firewall audit[2574]: SYSCALL arch=c000003e syscall=46 success=yes exit=1432 a0=3 a1=7fff4dccf4a0 a2=0 a3=0 items=0 ppid=469 pid=2574 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="nft" exe="/usr/bin/nft" subj=system_u:system_r:unconfined_service_t:s0 key=(null)
Sep 11 12:27:59 sys-firewall audit: PROCTITLE proctitle=6E6674002D66002F6465762F737464696E
Sep 11 12:27:59 sys-firewall kernel: audit: type=1325 audit(1757593679.559:544): table=qubes-firewall:258 family=2 entries=18 op=nft_register_chain pid=2574 subj=system_u:system_r:unconfined_service_t:s0 comm="nft"
Sep 11 12:27:59 sys-firewall kernel: audit: type=1300 audit(1757593679.559:544): arch=c000003e syscall=46 success=yes exit=1432 a0=3 a1=7fff4dccf4a0 a2=0 a3=0 items=0 ppid=469 pid=2574 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="nft" exe="/usr/bin/nft" subj=system_u:system_r:unconfined_service_t:s0 key=(null)
Sep 11 12:27:59 sys-firewall kernel: audit: type=1327 audit(1757593679.559:544): proctitle=6E6674002D66002F6465762F737464696E

# sys-firewall adding a client
Sep 11 12:28:07 sys-firewall audit[2576]: NETFILTER_CFG table=qubes-firewall:259 family=2 entries=20 op=nft_register_chain pid=2576 subj=system_u:system_r:unconfined_service_t:s0 comm="nft"
Sep 11 12:28:07 sys-firewall kernel: audit: type=1325 audit(1757593687.447:545): table=qubes-firewall:259 family=2 entries=20 op=nft_register_chain pid=2576 subj=system_u:system_r:unconfined_service_t:s0 comm="nft"
Sep 11 12:28:07 sys-firewall kernel: audit: type=1300 audit(1757593687.447:545): arch=c000003e syscall=46 success=yes exit=1464 a0=3 a1=7ffd0bc893d0 a2=0 a3=0 items=0 ppid=469 pid=2576 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="nft" exe="/usr/bin/nft" subj=system_u:system_r:unconfined_service_t:s0 key=(null)
Sep 11 12:28:07 sys-firewall kernel: audit: type=1327 audit(1757593687.447:545): proctitle=6E6674002D66002F6465762F737464696E
Sep 11 12:28:07 sys-firewall audit[2576]: SYSCALL arch=c000003e syscall=46 success=yes exit=1464 a0=3 a1=7ffd0bc893d0 a2=0 a3=0 items=0 ppid=469 pid=2576 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="nft" exe="/usr/bin/nft" subj=system_u:system_r:unconfined_service_t:s0 key=(null)
Sep 11 12:28:07 sys-firewall audit: PROCTITLE proctitle=6E6674002D66002F6465762F737464696E
Sep 11 12:28:07 sys-firewall kernel: vif vif-277-0 vif277.0: Guest Rx ready
Sep 11 12:28:07 sys-firewall kernel: audit: type=1325 audit(1757593687.481:546): table=qubes-firewall:260 family=2 entries=5 op=nft_register_chain pid=2579 subj=system_u:system_r:unconfined_service_t:s0 comm="nft"
Sep 11 12:28:07 sys-firewall kernel: audit: type=1300 audit(1757593687.481:546): arch=c000003e syscall=46 success=yes exit=420 a0=3 a1=7ffeaec490a0 a2=0 a3=0 items=0 ppid=469 pid=2579 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="nft" exe="/usr/bin/nft" subj=system_u:system_r:unconfined_service_t:s0 key=(null)
Sep 11 12:28:07 sys-firewall kernel: audit: type=1327 audit(1757593687.481:546): proctitle=6E6674002D66002F6465762F737464696E
Sep 11 12:28:07 sys-firewall audit[2579]: NETFILTER_CFG table=qubes-firewall:260 family=2 entries=5 op=nft_register_chain pid=2579 subj=system_u:system_r:unconfined_service_t:s0 comm="nft"
Sep 11 12:28:07 sys-firewall audit[2579]: SYSCALL arch=c000003e syscall=46 success=yes exit=420 a0=3 a1=7ffeaec490a0 a2=0 a3=0 items=0 ppid=469 pid=2579 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="nft" exe="/usr/bin/nft" subj=system_u:system_r:unconfined_service_t:s0 key=(null)
Sep 11 12:28:07 sys-firewall audit: PROCTITLE proctitle=6E6674002D66002F6465762F737464696E
Sep 11 12:28:07 sys-firewall root[2594]: /etc/xen/scripts/vif-route-qubes: online type_if=vif XENBUS_PATH=backend/vif/277/0
Sep 11 12:28:07 sys-firewall audit[2615]: NETFILTER_CFG table=qubes-nat-accel:261 family=1 entries=8 op=nft_register_chain pid=2615 subj=system_u:system_r:iptables_t:s0 comm="nft"
Sep 11 12:28:07 sys-firewall audit[2615]: NETFILTER_CFG table=qubes-nat-accel:261 family=1 entries=5 op=nft_unregister_table pid=2615 subj=system_u:system_r:iptables_t:s0 comm="nft"
Sep 11 12:28:07 sys-firewall audit[2615]: SYSCALL arch=c000003e syscall=46 success=yes exit=1056 a0=3 a1=7ffc3708e6f0 a2=0 a3=0 items=0 ppid=2580 pid=2615 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="nft" exe="/usr/bin/nft" subj=system_u:system_r:iptables_t:s0 key=(null)
Sep 11 12:28:07 sys-firewall audit: PROCTITLE proctitle=6E6674000A616464207461626C6520696E65742071756265732D6E61742D616363656C0A64656C657465207461626C6520696E65742071756265732D6E61742D616363656C0A7461626C6520696E65742071756265732D6E61742D616363656C207B0A202020666C6F777461626C652071756265732D616363656C207B0A2020
Sep 11 12:28:07 sys-firewall kernel: audit: type=1325 audit(1757593687.513:547): table=qubes-nat-accel:261 family=1 entries=8 op=nft_register_chain pid=2615 subj=system_u:system_r:iptables_t:s0 comm="nft"
Sep 11 12:28:07 sys-firewall kernel: audit: type=1325 audit(1757593687.513:547): table=qubes-nat-accel:261 family=1 entries=5 op=nft_unregister_table pid=2615 subj=system_u:system_r:iptables_t:s0 comm="nft"
Sep 11 12:28:07 sys-firewall kernel: audit: type=1300 audit(1757593687.513:547): arch=c000003e syscall=46 success=yes exit=1056 a0=3 a1=7ffc3708e6f0 a2=0 a3=0 items=0 ppid=2580 pid=2615 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="nft" exe="/usr/bin/nft" subj=system_u:system_r:iptables_t:s0 key=(null)
Sep 11 12:28:07 sys-firewall kernel: audit: type=1327 audit(1757593687.513:547): proctitle=6E6674000A616464207461626C6520696E65742071756265732D6E61742D616363656C0A64656C657465207461626C6520696E65742071756265732D6E61742D616363656C0A7461626C6520696E65742071756265732D6E61742D616363656C207B0A202020666C6F777461626C652071756265732D616363656C207B0A2020
Sep 11 12:28:07 sys-firewall audit[2622]: NETFILTER_CFG table=qubes:262 family=2 entries=2 op=nft_register_setelem pid=2622 subj=system_u:system_r:iptables_t:s0 comm="nft"
Sep 11 12:28:07 sys-firewall audit[2622]: SYSCALL arch=c000003e syscall=46 success=yes exit=204 a0=3 a1=7fff780b8f80 a2=0 a3=0 items=0 ppid=2580 pid=2622 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="nft" exe="/usr/bin/nft" subj=system_u:system_r:iptables_t:s0 key=(null)
Sep 11 12:28:07 sys-firewall audit: PROCTITLE proctitle=6E66740061646420656C656D656E7420697020717562657320616C6C6F776564207B20227669663237372E3022202E2031302E3133372E302E3136207D0A61646420656C656D656E7420697020717562657320646F776E73747265616D207B2031302E3133372E302E3136207D
Sep 11 12:28:07 sys-firewall root[2627]: /etc/xen/scripts/vif-route-qubes: Successful vif-route-qubes online for vif277.0.
Sep 11 12:28:07 sys-firewall root[2628]: /etc/xen/scripts/vif-route-qubes: Writing backend/vif/277/0/hotplug-status connected to xenstore.

# untrusted system journal
Sep 11 12:45:19 untrusted kernel: xen_netfront: backend supports XDP headroom
Sep 11 12:45:19 untrusted kernel: vif vif-0: bouncing transmitted data to zeroed pages
Sep 11 12:45:19 untrusted systemd[1]: Stopping [email protected] - Qubes network uplink (eth0) setup...
Sep 11 12:45:19 untrusted systemd[1]: [email protected]: Deactivated successfully.
Sep 11 12:45:19 untrusted systemd[1]: Stopped [email protected] - Qubes network uplink (eth0) setup.
Sep 11 12:45:19 untrusted audit[1]: SERVICE_STOP pid=1 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:init_t:s0 msg='unit=qubes-network-uplink@eth0 comm="systemd" exe="/usr/lib/systemd/systemd" hostname=? addr=? terminal=? res=success'
Sep 11 12:45:19 untrusted kernel: audit: type=1131 audit(1757594719.832:187): pid=1 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:init_t:s0 msg='unit=qubes-network-uplink@eth0 comm="systemd" exe="/usr/lib/systemd/systemd" hostname=? addr=? terminal=? res=success'
Sep 11 12:45:19 untrusted systemd[1]: Starting [email protected] - Qubes network uplink (eth0) setup...
Sep 11 12:45:19 untrusted systemd-resolved[475]: eth0: Bus client set DNS server list to: 10.139.1.1, 10.139.1.2
Sep 11 12:45:19 untrusted systemd[1]: Finished [email protected] - Qubes network uplink (eth0) setup.
Sep 11 12:45:19 untrusted audit[1]: SERVICE_START pid=1 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:init_t:s0 msg='unit=qubes-network-uplink@eth0 comm="systemd" exe="/usr/lib/systemd/systemd" hostname=? addr=? terminal=? res=success'
Sep 11 12:45:19 untrusted kernel: audit: type=1130 audit(1757594719.892:188): pid=1 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:init_t:s0 msg='unit=qubes-network-uplink@eth0 comm="systemd" exe="/usr/lib/systemd/systemd" hostname=? addr=? terminal=? res=success'

# untrusted .xsession-errors
2025-09-11 12:49:21.428 qrexec-fork-server[2344]: qrexec-agent-data.c:274:handle_new_process_common: executed: QUBESRPC qubes.VMExec+ping+--c1+--W1+--n+qubes--os.org dom0 (pid 2346)
2025-09-11 12:49:21.470 qrexec-fork-server[2344]: qrexec-agent-data.c:309:handle_new_process_common: pid 2346 exited with 0

# set untrusted netvm to none, paused untrusted, the following log from sys-firewall is from disconnecting the paused client
Sep 11 12:58:00 sys-firewall audit[3942]: NETFILTER_CFG table=qubes-firewall:343 family=2 entries=20 op=nft_register_chain pid=3942 subj=system_u:system_r:unconfined_service_t:s0 comm="nft"
Sep 11 12:58:00 sys-firewall audit[3942]: SYSCALL arch=c000003e syscall=46 success=yes exit=1464 a0=3 a1=7ffc982d4a80 a2=0 a3=0 items=0 ppid=469 pid=3942 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="nft" exe="/usr/bin/nft" subj=system_u:system_r:unconfined_service_t:s0 key=(null)
Sep 11 12:58:00 sys-firewall audit: PROCTITLE proctitle=6E6674002D66002F6465762F737464696E
Sep 11 12:58:00 sys-firewall kernel: kauditd_printk_skb: 12 callbacks suppressed
Sep 11 12:58:00 sys-firewall kernel: audit: type=1325 audit(1757595480.198:651): table=qubes-firewall:343 family=2 entries=20 op=nft_register_chain pid=3942 subj=system_u:system_r:unconfined_service_t:s0 comm="nft"
Sep 11 12:58:00 sys-firewall kernel: audit: type=1300 audit(1757595480.198:651): arch=c000003e syscall=46 success=yes exit=1464 a0=3 a1=7ffc982d4a80 a2=0 a3=0 items=0 ppid=469 pid=3942 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="nft" exe="/usr/bin/nft" subj=system_u:system_r:unconfined_service_t:s0 key=(null)
Sep 11 12:58:00 sys-firewall kernel: audit: type=1327 audit(1757595480.198:651): proctitle=6E6674002D66002F6465762F737464696E
Sep 11 12:58:00 sys-firewall audit[3944]: NETFILTER_CFG table=qubes-firewall:344 family=2 entries=5 op=nft_register_chain pid=3944 subj=system_u:system_r:unconfined_service_t:s0 comm="nft"
Sep 11 12:58:00 sys-firewall audit[3944]: SYSCALL arch=c000003e syscall=46 success=yes exit=420 a0=3 a1=7fffffdf4660 a2=0 a3=0 items=0 ppid=469 pid=3944 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="nft" exe="/usr/bin/nft" subj=system_u:system_r:unconfined_service_t:s0 key=(null)
Sep 11 12:58:00 sys-firewall audit: PROCTITLE proctitle=6E6674002D66002F6465762F737464696E
Sep 11 12:58:00 sys-firewall kernel: audit: type=1325 audit(1757595480.217:652): table=qubes-firewall:344 family=2 entries=5 op=nft_register_chain pid=3944 subj=system_u:system_r:unconfined_service_t:s0 comm="nft"
Sep 11 12:58:00 sys-firewall kernel: audit: type=1300 audit(1757595480.217:652): arch=c000003e syscall=46 success=yes exit=420 a0=3 a1=7fffffdf4660 a2=0 a3=0 items=0 ppid=469 pid=3944 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="nft" exe="/usr/bin/nft" subj=system_u:system_r:unconfined_service_t:s0 key=(null)
Sep 11 12:58:00 sys-firewall kernel: audit: type=1327 audit(1757595480.217:652): proctitle=6E6674002D66002F6465762F737464696E

If all fails, IMO better to accept that network may start working with some delay (and deal with that in tests), than having forced delay in disposable usage. After all, internet protocols need to deal with unreliable packet transfers anyway.

Sure. I will probably move the ping -w10 -c1 to the tests, as it is allowed there.

qvm-prefs untrusted netvm sys-firewall-alt
qvm-pause untrusted
qvm-prefs untrusted netvm -D  # sys-firewall
qvm-shutdown --wait sys-firewall-alt
qvm-run -p ping -c1 -W1 -n qubes-os.org

Ping works, no packet loss, but a bit worrying:

# untrusted system journal
Sep 11 13:12:32 untrusted kernel: ------------[ cut here ]------------
Sep 11 13:12:32 untrusted kernel: WARNING: CPU: 1 PID: 141 at include/linux/mm.h:1328 xennet_disconnect_backend+0x1be/0x590 [xen_netfront]
Sep 11 13:12:32 untrusted kernel: Modules linked in: snd_seq_dummy snd_hrtimer snd_seq snd_seq_device snd_timer snd soundcore nft_reject_ipv6 nf_reject_ipv6 nft_reject_ipv4 nf_reject_ipv4 nft_reject nft_ct nft_masq nft_chain_nat nf_nat nf_conntrack nf_defrag_ipv6 nf_defrag_ipv4 nf_tables intel_rapl_msr intel_rapl_common intel_uncore_frequency_common intel_pmc_core pmt_telemetry pmt_discovery pmt_class intel_pmc_ssram_telemetry intel_vsec polyval_clmulni ghash_clmulni_intel xen_netfront pcspkr xen_scsiback target_core_mod xen_netback xen_privcmd xen_gntdev xen_gntalloc xen_blkback xen_evtchn i2c_dev loop fuse nfnetlink overlay xen_blkfront
Sep 11 13:12:32 untrusted kernel: CPU: 1 UID: 0 PID: 141 Comm: xenwatch Not tainted 6.17.0-0.rc5.1.qubes.1.fc41.x86_64 #1 PREEMPT(full)
Sep 11 13:12:32 untrusted kernel: RIP: 0010:xennet_disconnect_backend+0x1be/0x590 [xen_netfront]
Sep 11 13:12:32 untrusted kernel: Code: 00 0f 83 93 03 00 00 48 8b 94 dd 90 10 00 00 48 8b 4a 08 f6 c1 01 75 79 66 90 0f b6 4a 33 81 f9 f5 00 00 00 0f 85 f3 fe ff ff <0f> 0b 49 81 ff 00 01 00 00 0f 82 01 ff ff ff 4c 89 fe 48 c7 c7 e0
Sep 11 13:12:32 untrusted kernel: RSP: 0018:ffffc90001123cf8 EFLAGS: 00010246
Sep 11 13:12:32 untrusted kernel: RAX: 0000000000000010 RBX: 0000000000000001 RCX: 00000000000000f5
Sep 11 13:12:32 untrusted kernel: RDX: ffffea0000a05200 RSI: 0000000000000001 RDI: ffffffff82528d60
Sep 11 13:12:32 untrusted kernel: RBP: ffff888041400000 R08: ffff888005054c80 R09: ffff888005054c80
Sep 11 13:12:32 untrusted kernel: R10: 0000000000150013 R11: ffff88801851cd80 R12: 0000000000000000
Sep 11 13:12:32 untrusted kernel: R13: ffff888053619000 R14: ffff888005d61a80 R15: 0000000000000001
Sep 11 13:12:32 untrusted kernel: FS:  0000000000000000(0000) GS:ffff8880952c6000(0000) knlGS:0000000000000000
Sep 11 13:12:32 untrusted kernel: CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
Sep 11 13:12:32 untrusted kernel: CR2: 00006182a11f3328 CR3: 000000001084c006 CR4: 0000000000770ef0
Sep 11 13:12:32 untrusted kernel: PKRU: 55555554
Sep 11 13:12:32 untrusted kernel: Call Trace:
Sep 11 13:12:32 untrusted kernel:  <TASK>
Sep 11 13:12:32 untrusted kernel:  xennet_remove+0x1e/0x80 [xen_netfront]
Sep 11 13:12:32 untrusted kernel:  xenbus_dev_remove+0x6e/0xf0
Sep 11 13:12:32 untrusted kernel:  device_release_driver_internal+0x19c/0x200
Sep 11 13:12:32 untrusted kernel:  bus_remove_device+0xc6/0x130
Sep 11 13:12:32 untrusted kernel:  device_del+0x160/0x3e0
Sep 11 13:12:32 untrusted kernel:  ? _raw_spin_unlock+0xe/0x30
Sep 11 13:12:32 untrusted kernel:  ? klist_iter_exit+0x18/0x30
Sep 11 13:12:32 untrusted kernel:  ? __pfx_xenwatch_thread+0x10/0x10
Sep 11 13:12:32 untrusted kernel:  device_unregister+0x17/0x60
Sep 11 13:12:32 untrusted kernel:  xenbus_dev_changed+0x1d7/0x240
Sep 11 13:12:32 untrusted kernel:  xenwatch_thread+0x8f/0x1c0
Sep 11 13:12:32 untrusted kernel:  ? __pfx_autoremove_wake_function+0x10/0x10
Sep 11 13:12:32 untrusted kernel:  kthread+0xf9/0x240
Sep 11 13:12:32 untrusted kernel:  ? __pfx_kthread+0x10/0x10
Sep 11 13:12:32 untrusted kernel:  ret_from_fork+0x152/0x180
Sep 11 13:12:32 untrusted kernel:  ? __pfx_kthread+0x10/0x10
Sep 11 13:12:32 untrusted kernel:  ret_from_fork_asm+0x1a/0x30
Sep 11 13:12:32 untrusted kernel:  </TASK>
Sep 11 13:12:32 untrusted kernel: ---[ end trace 0000000000000000 ]---
Sep 11 13:12:32 untrusted kernel: xen_netfront: backend supports XDP headroom
Sep 11 13:12:32 untrusted kernel: vif vif-0: bouncing transmitted data to zeroed pages
Sep 11 13:12:32 untrusted qrexec-agent[2685]: 2025-09-11 13:12:32.224 qrexec-agent[2685]: qrexec-agent-data.c:274:handle_new_process_common: executed: root:QUBESRPC qubes.WaitForNetworkUplink dom0 (pid 2687)
Sep 11 13:12:32 untrusted systemd[1]: Stopping [email protected] - Qubes network uplink (eth0) setup...
Sep 11 13:12:32 untrusted kernel: audit: type=1100 audit(1757596352.234:252): pid=2687 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:local_login_t:s0-s0:c0.c1023 msg='op=PAM:authentication grantors=pam_rootok acct="root" exe="/usr/lib/qubes/qrexec-agent" hostname=? addr=? terminal=? res=success'
Sep 11 13:12:32 untrusted kernel: audit: type=1103 audit(1757596352.236:253): pid=2687 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:local_login_t:s0-s0:c0.c1023 msg='op=PAM:setcred grantors=pam_rootok acct="root" exe="/usr/lib/qubes/qrexec-agent" hostname=? addr=? terminal=? res=success'
Sep 11 13:12:32 untrusted kernel: audit: type=1006 audit(1757596352.236:254): pid=2687 uid=0 subj=system_u:system_r:local_login_t:s0-s0:c0.c1023 old-auid=4294967295 auid=0 tty=(none) old-ses=4294967295 ses=10 res=1
Sep 11 13:12:32 untrusted kernel: audit: type=1300 audit(1757596352.236:254): arch=c000003e syscall=1 success=yes exit=1 a0=3 a1=7ffcdf2b1680 a2=1 a3=0 items=0 ppid=2685 pid=2687 auid=0 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=10 comm="qrexec-agent" exe="/usr/lib/qubes/qrexec-agent" subj=system_u:system_r:local_login_t:s0-s0:c0.c1023 key=(null)
Sep 11 13:12:32 untrusted kernel: audit: type=1327 audit(1757596352.236:254): proctitle="/usr/lib/qubes/qrexec-agent"
Sep 11 13:12:32 untrusted kernel: audit: type=2300 audit(1757596352.236:255): pid=2687 uid=0 auid=0 ses=10 subj=system_u:system_r:local_login_t:s0-s0:c0.c1023 msg='op=pam_selinux default-context=unconfined_u:unconfined_r:unconfined_t:s0-s0:c0.c1023 selected-context=unconfined_u:unconfined_r:unconfined_t:s0-s0:c0.c1023 exe="/usr/lib/qubes/qrexec-agent" hostname=? addr=? terminal=? res=success'
Sep 11 13:12:32 untrusted audit[2687]: USER_AUTH pid=2687 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:local_login_t:s0-s0:c0.c1023 msg='op=PAM:authentication grantors=pam_rootok acct="root" exe="/usr/lib/qubes/qrexec-agent" hostname=? addr=? terminal=? res=success'
Sep 11 13:12:32 untrusted audit[2687]: CRED_ACQ pid=2687 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:local_login_t:s0-s0:c0.c1023 msg='op=PAM:setcred grantors=pam_rootok acct="root" exe="/usr/lib/qubes/qrexec-agent" hostname=? addr=? terminal=? res=success'
Sep 11 13:12:32 untrusted audit[2687]: SYSCALL arch=c000003e syscall=1 success=yes exit=1 a0=3 a1=7ffcdf2b1680 a2=1 a3=0 items=0 ppid=2685 pid=2687 auid=0 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=10 comm="qrexec-agent" exe="/usr/lib/qubes/qrexec-agent" subj=system_u:system_r:local_login_t:s0-s0:c0.c1023 key=(null)
Sep 11 13:12:32 untrusted audit: PROCTITLE proctitle="/usr/lib/qubes/qrexec-agent"
Sep 11 13:12:32 untrusted audit[2687]: USER_ROLE_CHANGE pid=2687 uid=0 auid=0 ses=10 subj=system_u:system_r:local_login_t:s0-s0:c0.c1023 msg='op=pam_selinux default-context=unconfined_u:unconfined_r:unconfined_t:s0-s0:c0.c1023 selected-context=unconfined_u:unconfined_r:unconfined_t:s0-s0:c0.c1023 exe="/usr/lib/qubes/qrexec-agent" hostname=? addr=? terminal=? res=success'
Sep 11 13:12:32 untrusted systemd[1]: Started session-10.scope - Session 10 of User root.
Sep 11 13:12:32 untrusted systemd[1]: [email protected]: Deactivated successfully.
Sep 11 13:12:32 untrusted systemd[1]: Stopped [email protected] - Qubes network uplink (eth0) setup.
Sep 11 13:12:32 untrusted audit[1]: SERVICE_STOP pid=1 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:init_t:s0 msg='unit=qubes-network-uplink@eth0 comm="systemd" exe="/usr/lib/systemd/systemd" hostname=? addr=? terminal=? res=success'
Sep 11 13:12:32 untrusted kernel: audit: type=1131 audit(1757596352.266:256): pid=1 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:init_t:s0 msg='unit=qubes-network-uplink@eth0 comm="systemd" exe="/usr/lib/systemd/systemd" hostname=? addr=? terminal=? res=success'
Sep 11 13:12:32 untrusted qrexec-agent[2687]: pam_unix(qrexec:session): session opened for user root(uid=0) by root(uid=0)
Sep 11 13:12:32 untrusted audit[2687]: USER_START pid=2687 uid=0 auid=0 ses=10 subj=system_u:system_r:local_login_t:s0-s0:c0.c1023 msg='op=PAM:session_open grantors=pam_selinux,pam_loginuid,pam_selinux,pam_keyinit,pam_limits,pam_systemd,pam_unix,pam_umask,pam_lastlog acct="root" exe="/usr/lib/qubes/qrexec-agent" hostname=? addr=? terminal=? res=success'
Sep 11 13:12:32 untrusted kernel: audit: type=1105 audit(1757596352.271:257): pid=2687 uid=0 auid=0 ses=10 subj=system_u:system_r:local_login_t:s0-s0:c0.c1023 msg='op=PAM:session_open grantors=pam_selinux,pam_loginuid,pam_selinux,pam_keyinit,pam_limits,pam_systemd,pam_unix,pam_umask,pam_lastlog acct="root" exe="/usr/lib/qubes/qrexec-agent" hostname=? addr=? terminal=? res=success'
Sep 11 13:12:32 untrusted systemd[1]: Starting [email protected] - Qubes network uplink (eth0) setup...
Sep 11 13:12:32 untrusted audit: BPF prog-id=68 op=UNLOAD
Sep 11 13:12:32 untrusted kernel: audit: type=1334 audit(1757596352.297:258): prog-id=68 op=UNLOAD
Sep 11 13:12:32 untrusted kernel: audit: type=1334 audit(1757596352.298:259): prog-id=67 op=UNLOAD
Sep 11 13:12:32 untrusted audit: BPF prog-id=67 op=UNLOAD
Sep 11 13:12:32 untrusted audit: BPF prog-id=69 op=LOAD
Sep 11 13:12:32 untrusted audit: BPF prog-id=70 op=LOAD
Sep 11 13:12:32 untrusted audit: BPF prog-id=71 op=LOAD
Sep 11 13:12:32 untrusted systemd[1]: Starting systemd-hostnamed.service - Hostname Service...
Sep 11 13:12:32 untrusted systemd-resolved[475]: eth0: Bus client set DNS server list to: 10.139.1.1, 10.139.1.2
Sep 11 13:12:32 untrusted audit[1]: SERVICE_START pid=1 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:init_t:s0 msg='unit=qubes-network-uplink@eth0 comm="systemd" exe="/usr/lib/systemd/systemd" hostname=? addr=? terminal=? res=success'
Sep 11 13:12:32 untrusted systemd[1]: Finished [email protected] - Qubes network uplink (eth0) setup.
Sep 11 13:12:32 untrusted audit[1]: SERVICE_START pid=1 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:init_t:s0 msg='unit=systemd-hostnamed comm="systemd" exe="/usr/lib/systemd/systemd" hostname=? addr=? terminal=? res=success'
Sep 11 13:12:32 untrusted systemd[1]: Started systemd-hostnamed.service - Hostname Service.
Sep 11 13:12:32 untrusted qubes.WaitForNetworkUplink-dom0[2689]: Failed to read /qubes-gateway6
Sep 11 13:12:32 untrusted qrexec-agent[2687]: pam_unix(qrexec:session): session closed for user root
Sep 11 13:12:32 untrusted audit[2687]: USER_END pid=2687 uid=0 auid=0 ses=10 subj=system_u:system_r:local_login_t:s0-s0:c0.c1023 msg='op=PAM:session_close grantors=pam_selinux,pam_loginuid,pam_selinux,pam_keyinit,pam_limits,pam_systemd,pam_unix,pam_umask,pam_lastlog acct="root" exe="/usr/lib/qubes/qrexec-agent" hostname=? addr=? terminal=? res=success'
Sep 11 13:12:32 untrusted audit[2687]: CRED_DISP pid=2687 uid=0 auid=0 ses=10 subj=system_u:system_r:local_login_t:s0-s0:c0.c1023 msg='op=PAM:setcred grantors=pam_rootok acct="root" exe="/usr/lib/qubes/qrexec-agent" hostname=? addr=? terminal=? res=success'
Sep 11 13:12:32 untrusted systemd[1]: session-10.scope: Deactivated successfully.
Sep 11 13:12:32 untrusted qrexec-agent[2685]: 2025-09-11 13:12:32.485 qrexec-agent[2685]: qrexec-agent-data.c:309:handle_new_process_common: pid 2687 exited with 0
Sep 11 13:12:33 untrusted abrt-dump-journal-oops[551]: abrt-dump-journal-oops: Found oopses: 1
Sep 11 13:12:33 untrusted abrt-dump-journal-oops[551]: abrt-dump-journal-oops: Creating problem directories
Sep 11 13:12:33 untrusted abrt-server[2770]: Can't find kernel package corresponding to '6.17.0-0.rc5.1.qubes.1.fc41.x86_64'
Sep 11 13:12:33 untrusted abrt-server[2770]: 'post-create' on '/var/spool/abrt/oops-2025-09-11-13:12:33-551-0' exited with 1
Sep 11 13:12:33 untrusted abrt-server[2770]: Deleting problem directory '/var/spool/abrt/oops-2025-09-11-13:12:33-551-0'
Sep 11 13:12:34 untrusted abrt-dump-journal-oops[551]: Reported 1 kernel oopses to Abrt

I also get this from journal in tests, see the journal of the client: kernel: vif vif-0: bouncing transmitted data to zeroed pages.

2025-09-11 13:54:30,140 qubes.tests.integ.network.VmNetworking_fedora-42-xfce.test_001_simple_networking_paused[253452]: netvm=something -> netvm=something (purge old)
2025-09-11 13:54:30,142 vm.test-inst-netvm2[253452]: Starting qube test-inst-netvm2
2025-09-11 13:54:31,918 vm.test-inst-netvm2[253452]: Setting Qubes DB info for the qube
2025-09-11 13:54:31,918 vm.test-inst-netvm2[253452]: Starting Qubes DB
2025-09-11 13:54:31,957 vm.test-inst-netvm2[253452]: Activating qube
2025-09-11 13:54:37,453 appmenus[253452]: Removing appmenus for 'test-inst-netvm2' in 'dom0'
2025-09-11 13:54:38,385 vm.test-inst-netvm2[253452]: Removing volume root: qubes_dom0/vm-test-inst-netvm2-root
2025-09-11 13:54:38,386 vm.test-inst-netvm2[253452]: Removing volume private: qubes_dom0/vm-test-inst-netvm2-private
2025-09-11 13:54:38,386 vm.test-inst-netvm2[253452]: Removing volume volatile: qubes_dom0/vm-test-inst-netvm2-volatile
2025-09-11 13:54:38,386 vm.test-inst-netvm2[253452]: Removing volume kernel: 6.17-rc5-1.1.fc41
2025-09-11 13:54:39,460 qubes.tests.integ.network.VmNetworking_fedora-42-xfce.test_001_simple_networking_paused[253452]: Command failed on test-inst-vm1: ping -W 1 -n -c 1 192.168.123.45: stdout: b'': stderr: b'ping: connect: Network is unreachable\n'
2025-09-11 13:54:39,464 qubes.tests.integ.network.VmNetworking_fedora-42-xfce.test_001_simple_networking_paused[253452]: FAIL (AssertionError: AssertionError('2 != 0'))
2025-09-11 13:54:39,548 qubes.tests.integ.network.VmNetworking_fedora-42-xfce.test_001_simple_networking_paused[253452]: test-inst-netvm1: ip a: b'1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN group default qlen 1000\n    link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00\n    inet 127.0.0.1/8 scope host lo\n       valid_lft forever preferred_lft forever\n    inet6 ::1/128 scope host noprefixroute \n       valid_lft forever preferred_lft forever\n2: test0: <BROADCAST,NOARP,UP,LOWER_UP> mtu 1500 qdisc noqueue state UNKNOWN group default qlen 1000\n    link/ether 8e:8c:d3:94:a6:75 brd ff:ff:ff:ff:ff:ff\n    inet 192.168.123.45/24 scope global test0\n       valid_lft forever preferred_lft forever\n    inet6 fe80::8c8c:d3ff:fe94:a675/64 scope link proto kernel_ll \n       valid_lft forever preferred_lft forever\n5: vif311.0: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc mq state UP group 2 qlen 1000\n    link/ether fe:ff:ff:ff:ff:ff brd ff:ff:ff:ff:ff:ff\n    inet 10.137.0.17/32 scope global vif311.0\n       valid_lft forever preferred_lft forever\n    inet6 fe80::fcff:ffff:feff:ffff/64 scope link tentative proto kernel_ll \n       valid_lft forever preferred_lft forever\n'
2025-09-11 13:54:39,613 qubes.tests.integ.network.VmNetworking_fedora-42-xfce.test_001_simple_networking_paused[253452]: test-inst-netvm1: ip r: b'10.137.0.20 dev vif311.0 scope link metric 32441 \n192.168.123.0/24 dev test0 proto kernel scope link src 192.168.123.45 \n'
2025-09-11 13:54:39,686 qubes.tests.integ.network.VmNetworking_fedora-42-xfce.test_001_simple_networking_paused[253452]: test-inst-netvm1: cat ~user/.xsession-errors: b'\n\nX.Org X Server 1.21.1.18\nX Protocol Version 11, Revision 0\nCurrent Operating System: Linux test-inst-netvm1 6.17.0-0.rc5.1.qubes.1.fc41.x86_64 #1 SMP PREEMPT_DYNAMIC Mon Sep  8 10:54:28 UTC 2025 x86_64\nKernel command line: systemd.machine_id=3ed4f296dbf54744b351a721b8d571d3 root=/dev/mapper/dmroot ro nomodeset console=hvc0 rd_NO_PLYMOUTH rd.plymouth.enable=0 plymouth.enable=0 clocksource=tsc xen_scrub_pages=0 swiotlb=2048 selinux=1 security=selinux\nBuild ID: xorg-x11-server 21.1.18-1.fc42 \nCurrent version of pixman: 0.46.2\n\tBefore reporting problems, check http://wiki.x.org\n\tto make sure that you have the latest version.\nMarkers: (--) probed, (**) from config file, (==) default setting,\n\t(++) from command line, (!!) notice, (II) informational,\n\t(WW) warning, (EE) error, (NI) not implemented, (??) unknown.\n(==) Log file: "/home/user/.local/share/xorg/Xorg.0.log", Time: Thu Sep 11 13:54:08 2025\n(++) Using config file: "/etc/X11/xorg-qubes.conf"\n(==) Using system config directory "/usr/share/X11/xorg.conf.d"\nThe XKEYBOARD keymap compiler (xkbcomp) reports:\n> Warning:          Could not resolve keysym XF86RefreshRateToggle\n> Warning:          Could not resolve keysym XF86Accessibility\n> Warning:          Could not resolve keysym XF86DoNotDisturb\nErrors from xkbcomp are not fatal to the X server\nEnvironment variable $XAUTHORITY not set, ignoring.\nFailed to read /guivm-windows-prefix\nNot in GuiVM or dom0. Exiting.\n\n(xfsettingsd:1006): xfsettingsd-WARNING **: 13:54:10.531: Failed to connect to session manager: Failed to connect to the session manager: SESSION_MANAGER environment variable not defined\nFailed to process \'org.freedesktop.problems.applet.desktop\': \'NoneType\' object is not subscriptable\nNot starting \'blueman-applet\', qvm-service \'blueman\' is not enabled\nThe XKEYBOARD keymap compiler (xkbcomp) reports:\n> Warning:          Could not resolve keysym XF86RefreshRateToggle\n> Warning:          Could not resolve keysym XF86Accessibility\n> Warning:          Could not resolve keysym XF86DoNotDisturb\nErrors from xkbcomp are not fatal to the X server\n2025-09-11 13:54:10,778 icon-sender: running: [\'qrexec-client-vm\', \'dom0\', \'qubes.WindowIconUpdater\']\nXlib:  extension "DPMS" missing on display ":0".\nxfsettingsd: No window manager registered on screen 0.\n\n(xfsettingsd:1006): xfsettingsd-WARNING **: 13:54:15.695: Failed to get the _NET_NUMBER_OF_DESKTOPS property.\n'
2025-09-11 13:54:39,747 qubes.tests.integ.network.VmNetworking_fedora-42-xfce.test_001_simple_networking_paused[253452]: test-inst-netvm1: journalctl --no-pager --since '10 seconds ago': b'Sep 11 13:54:36 test-inst-netvm1 root[1318]: /etc/xen/scripts/vif-route-qubes: offline type_if=vif XENBUS_PATH=backend/vif/311/0\nSep 11 13:54:36 test-inst-netvm1 audit[1339]: NETFILTER_CFG table=qubes:26 family=2 entries=2 op=nft_unregister_setelem pid=1339 subj=system_u:system_r:iptables_t:s0 comm="nft"\nSep 11 13:54:36 test-inst-netvm1 audit[1339]: SYSCALL arch=c000003e syscall=46 success=yes exit=188 a0=3 a1=7fffcd5bc7b0 a2=0 a3=0 items=0 ppid=1310 pid=1339 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="nft" exe="/usr/bin/nft" subj=system_u:system_r:iptables_t:s0 key=(null)\nSep 11 13:54:36 test-inst-netvm1 audit: PROCTITLE proctitle=6E66740064656C65746520656C656D656E7420697020717562657320616C6C6F776564207B20227669663331312E3022202E2031302E3133372E302E3230207D0A64656C65746520656C656D656E7420697020717562657320646F776E73747265616D207B2031302E3133372E302E3230207D\nSep 11 13:54:36 test-inst-netvm1 kernel: kauditd_printk_skb: 37 callbacks suppressed\nSep 11 13:54:36 test-inst-netvm1 kernel: audit: type=1325 audit(1757598876.461:224): table=qubes:26 family=2 entries=2 op=nft_unregister_setelem pid=1339 subj=system_u:system_r:iptables_t:s0 comm="nft"\nSep 11 13:54:36 test-inst-netvm1 kernel: audit: type=1300 audit(1757598876.461:224): arch=c000003e syscall=46 success=yes exit=188 a0=3 a1=7fffcd5bc7b0 a2=0 a3=0 items=0 ppid=1310 pid=1339 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="nft" exe="/usr/bin/nft" subj=system_u:system_r:iptables_t:s0 key=(null)\nSep 11 13:54:36 test-inst-netvm1 kernel: audit: type=1327 audit(1757598876.461:224): proctitle=6E66740064656C65746520656C656D656E7420697020717562657320616C6C6F776564207B20227669663331312E3022202E2031302E3133372E302E3230207D0A64656C65746520656C656D656E7420697020717562657320646F776E73747265616D207B2031302E3133372E302E3230207D\nSep 11 13:54:36 test-inst-netvm1 root[1341]: /etc/xen/scripts/vif-route-qubes: Successful vif-route-qubes offline for vif311.0.\nSep 11 13:54:36 test-inst-netvm1 audit[1342]: NETFILTER_CFG table=qubes-firewall:27 family=2 entries=2 op=nft_unregister_rule pid=1342 subj=system_u:system_r:unconfined_service_t:s0 comm="nft"\nSep 11 13:54:36 test-inst-netvm1 audit[1342]: SYSCALL arch=c000003e syscall=46 success=yes exit=152 a0=3 a1=7ffc20ec7e70 a2=0 a3=0 items=0 ppid=492 pid=1342 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="nft" exe="/usr/bin/nft" subj=system_u:system_r:unconfined_service_t:s0 key=(null)\nSep 11 13:54:36 test-inst-netvm1 audit: PROCTITLE proctitle=6E6674002D66002F6465762F737464696E\nSep 11 13:54:36 test-inst-netvm1 kernel: audit: type=1325 audit(1757598876.484:225): table=qubes-firewall:27 family=2 entries=2 op=nft_unregister_rule pid=1342 subj=system_u:system_r:unconfined_service_t:s0 comm="nft"\nSep 11 13:54:36 test-inst-netvm1 kernel: audit: type=1300 audit(1757598876.484:225): arch=c000003e syscall=46 success=yes exit=152 a0=3 a1=7ffc20ec7e70 a2=0 a3=0 items=0 ppid=492 pid=1342 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="nft" exe="/usr/bin/nft" subj=system_u:system_r:unconfined_service_t:s0 key=(null)\nSep 11 13:54:36 test-inst-netvm1 kernel: audit: type=1327 audit(1757598876.484:225): proctitle=6E6674002D66002F6465762F737464696E\nSep 11 13:54:36 test-inst-netvm1 audit[1344]: NETFILTER_CFG table=qubes-firewall:28 family=2 entries=4 op=nft_register_chain pid=1344 subj=system_u:system_r:unconfined_service_t:s0 comm="nft"\nSep 11 13:54:36 test-inst-netvm1 audit[1344]: SYSCALL arch=c000003e syscall=46 success=yes exit=880 a0=3 a1=7ffd692b5210 a2=0 a3=0 items=0 ppid=492 pid=1344 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="nft" exe="/usr/bin/nft" subj=system_u:system_r:unconfined_service_t:s0 key=(null)\nSep 11 13:54:36 test-inst-netvm1 audit: PROCTITLE proctitle=6E6674002D66002F6465762F737464696E\nSep 11 13:54:36 test-inst-netvm1 kernel: audit: type=1325 audit(1757598876.555:226): table=qubes-firewall:28 family=2 entries=4 op=nft_register_chain pid=1344 subj=system_u:system_r:unconfined_service_t:s0 comm="nft"\nSep 11 13:54:36 test-inst-netvm1 kernel: audit: type=1300 audit(1757598876.555:226): arch=c000003e syscall=46 success=yes exit=880 a0=3 a1=7ffd692b5210 a2=0 a3=0 items=0 ppid=492 pid=1344 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="nft" exe="/usr/bin/nft" subj=system_u:system_r:unconfined_service_t:s0 key=(null)\nSep 11 13:54:36 test-inst-netvm1 kernel: audit: type=1327 audit(1757598876.555:226): proctitle=6E6674002D66002F6465762F737464696E\nSep 11 13:54:36 test-inst-netvm1 audit[1346]: NETFILTER_CFG table=qubes-firewall:29 family=2 entries=5 op=nft_register_chain pid=1346 subj=system_u:system_r:unconfined_service_t:s0 comm="nft"\nSep 11 13:54:36 test-inst-netvm1 audit[1346]: SYSCALL arch=c000003e syscall=46 success=yes exit=420 a0=3 a1=7ffce5b5b190 a2=0 a3=0 items=0 ppid=492 pid=1346 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="nft" exe="/usr/bin/nft" subj=system_u:system_r:unconfined_service_t:s0 key=(null)\nSep 11 13:54:36 test-inst-netvm1 audit: PROCTITLE proctitle=6E6674002D66002F6465762F737464696E\nSep 11 13:54:36 test-inst-netvm1 kernel: audit: type=1325 audit(1757598876.577:227): table=qubes-firewall:29 family=2 entries=5 op=nft_register_chain pid=1346 subj=system_u:system_r:unconfined_service_t:s0 comm="nft"\nSep 11 13:54:39 test-inst-netvm1 audit[1348]: NETFILTER_CFG table=qubes-firewall:30 family=2 entries=6 op=nft_register_chain pid=1348 subj=system_u:system_r:unconfined_service_t:s0 comm="nft"\nSep 11 13:54:39 test-inst-netvm1 audit[1348]: SYSCALL arch=c000003e syscall=46 success=yes exit=880 a0=3 a1=7fffb1936040 a2=0 a3=0 items=0 ppid=492 pid=1348 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="nft" exe="/usr/bin/nft" subj=system_u:system_r:unconfined_service_t:s0 key=(null)\nSep 11 13:54:39 test-inst-netvm1 audit: PROCTITLE proctitle=6E6674002D66002F6465762F737464696E\nSep 11 13:54:39 test-inst-netvm1 kernel: vif vif-311-0 vif311.0: Guest Rx ready\nSep 11 13:54:39 test-inst-netvm1 audit[1351]: NETFILTER_CFG table=qubes-firewall:31 family=2 entries=5 op=nft_register_chain pid=1351 subj=system_u:system_r:unconfined_service_t:s0 comm="nft"\nSep 11 13:54:39 test-inst-netvm1 audit[1351]: SYSCALL arch=c000003e syscall=46 success=yes exit=420 a0=3 a1=7fffa6c59640 a2=0 a3=0 items=0 ppid=492 pid=1351 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="nft" exe="/usr/bin/nft" subj=system_u:system_r:unconfined_service_t:s0 key=(null)\nSep 11 13:54:39 test-inst-netvm1 audit: PROCTITLE proctitle=6E6674002D66002F6465762F737464696E\nSep 11 13:54:39 test-inst-netvm1 root[1366]: /etc/xen/scripts/vif-route-qubes: online type_if=vif XENBUS_PATH=backend/vif/311/0\nSep 11 13:54:39 test-inst-netvm1 audit[1384]: NETFILTER_CFG table=qubes-nat-accel:32 family=1 entries=8 op=nft_register_chain pid=1384 subj=system_u:system_r:iptables_t:s0 comm="nft"\nSep 11 13:54:39 test-inst-netvm1 audit[1384]: NETFILTER_CFG table=qubes-nat-accel:32 family=1 entries=5 op=nft_unregister_table pid=1384 subj=system_u:system_r:iptables_t:s0 comm="nft"\nSep 11 13:54:39 test-inst-netvm1 audit[1384]: SYSCALL arch=c000003e syscall=46 success=yes exit=1044 a0=3 a1=7fff8906b7c0 a2=0 a3=0 items=0 ppid=1356 pid=1384 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="nft" exe="/usr/bin/nft" subj=system_u:system_r:iptables_t:s0 key=(null)\nSep 11 13:54:39 test-inst-netvm1 audit: PROCTITLE proctitle=6E6674000A616464207461626C6520696E65742071756265732D6E61742D616363656C0A64656C657465207461626C6520696E65742071756265732D6E61742D616363656C0A7461626C6520696E65742071756265732D6E61742D616363656C207B0A202020666C6F777461626C652071756265732D616363656C207B0A2020\nSep 11 13:54:39 test-inst-netvm1 audit[1391]: NETFILTER_CFG table=qubes:33 family=2 entries=2 op=nft_register_setelem pid=1391 subj=system_u:system_r:iptables_t:s0 comm="nft"\nSep 11 13:54:39 test-inst-netvm1 audit[1391]: SYSCALL arch=c000003e syscall=46 success=yes exit=204 a0=3 a1=7ffc11a4d5a0 a2=0 a3=0 items=0 ppid=1356 pid=1391 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="nft" exe="/usr/bin/nft" subj=system_u:system_r:iptables_t:s0 key=(null)\nSep 11 13:54:39 test-inst-netvm1 audit: PROCTITLE proctitle=6E66740061646420656C656D656E7420697020717562657320616C6C6F776564207B20227669663331312E3022202E2031302E3133372E302E3230207D0A61646420656C656D656E7420697020717562657320646F776E73747265616D207B2031302E3133372E302E3230207D\nSep 11 13:54:39 test-inst-netvm1 root[1396]: /etc/xen/scripts/vif-route-qubes: Successful vif-route-qubes online for vif311.0.\nSep 11 13:54:39 test-inst-netvm1 root[1397]: /etc/xen/scripts/vif-route-qubes: Writing backend/vif/311/0/hotplug-status connected to xenstore.\nSep 11 13:54:39 test-inst-netvm1 qrexec-agent[1399]: 2025-09-11 13:54:39.470 qrexec-agent[1399]: qrexec-agent-data.c:274:handle_new_process_common: executed: root:ip a (pid 1401)\nSep 11 13:54:39 test-inst-netvm1 audit[1401]: USER_AUTH pid=1401 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:local_login_t:s0-s0:c0.c1023 msg=\'op=PAM:authentication grantors=pam_rootok acct="root" exe="/usr/lib/qubes/qrexec-agent" hostname=? addr=? terminal=? res=success\'\nSep 11 13:54:39 test-inst-netvm1 audit[1401]: CRED_ACQ pid=1401 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:local_login_t:s0-s0:c0.c1023 msg=\'op=PAM:setcred grantors=pam_rootok acct="root" exe="/usr/lib/qubes/qrexec-agent" hostname=? addr=? terminal=? res=success\'\nSep 11 13:54:39 test-inst-netvm1 audit[1401]: SYSCALL arch=c000003e syscall=1 success=yes exit=1 a0=3 a1=7ffcbb153710 a2=1 a3=0 items=0 ppid=1399 pid=1401 auid=0 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=15 comm="qrexec-agent" exe="/usr/lib/qubes/qrexec-agent" subj=system_u:system_r:local_login_t:s0-s0:c0.c1023 key=(null)\nSep 11 13:54:39 test-inst-netvm1 audit: PROCTITLE proctitle="/usr/lib/qubes/qrexec-agent"\nSep 11 13:54:39 test-inst-netvm1 audit[1401]: USER_ROLE_CHANGE pid=1401 uid=0 auid=0 ses=15 subj=system_u:system_r:local_login_t:s0-s0:c0.c1023 msg=\'op=pam_selinux default-context=unconfined_u:unconfined_r:unconfined_t:s0-s0:c0.c1023 selected-context=unconfined_u:unconfined_r:unconfined_t:s0-s0:c0.c1023 exe="/usr/lib/qubes/qrexec-agent" hostname=? addr=? terminal=? res=success\'\nSep 11 13:54:39 test-inst-netvm1 systemd[1]: Started session-15.scope - Session 15 of User root.\nSep 11 13:54:39 test-inst-netvm1 qrexec-agent[1401]: pam_unix(qrexec:session): session opened for user root(uid=0) by root(uid=0)\nSep 11 13:54:39 test-inst-netvm1 audit[1401]: USER_START pid=1401 uid=0 auid=0 ses=15 subj=system_u:system_r:local_login_t:s0-s0:c0.c1023 msg=\'op=PAM:session_open grantors=pam_selinux,pam_loginuid,pam_selinux,pam_keyinit,pam_limits,pam_systemd,pam_unix,pam_umask,pam_lastlog acct="root" exe="/usr/lib/qubes/qrexec-agent" hostname=? addr=? terminal=? res=success\'\nSep 11 13:54:39 test-inst-netvm1 qrexec-agent[1401]: pam_unix(qrexec:session): session closed for user root\nSep 11 13:54:39 test-inst-netvm1 audit[1401]: USER_END pid=1401 uid=0 auid=0 ses=15 subj=system_u:system_r:local_login_t:s0-s0:c0.c1023 msg=\'op=PAM:session_close grantors=pam_selinux,pam_loginuid,pam_selinux,pam_keyinit,pam_limits,pam_systemd,pam_unix,pam_umask,pam_lastlog acct="root" exe="/usr/lib/qubes/qrexec-agent" hostname=? addr=? terminal=? res=success\'\nSep 11 13:54:39 test-inst-netvm1 audit[1401]: CRED_DISP pid=1401 uid=0 auid=0 ses=15 subj=system_u:system_r:local_login_t:s0-s0:c0.c1023 msg=\'op=PAM:setcred grantors=pam_rootok acct="root" exe="/usr/lib/qubes/qrexec-agent" hostname=? addr=? terminal=? res=success\'\nSep 11 13:54:39 test-inst-netvm1 systemd[1]: session-15.scope: Deactivated successfully.\nSep 11 13:54:39 test-inst-netvm1 qrexec-agent[1399]: 2025-09-11 13:54:39.539 qrexec-agent[1399]: qrexec-agent-data.c:309:handle_new_process_common: pid 1401 exited with 0\nSep 11 13:54:39 test-inst-netvm1 qrexec-agent[1429]: 2025-09-11 13:54:39.553 qrexec-agent[1429]: qrexec-agent-data.c:274:handle_new_process_common: executed: root:ip r (pid 1431)\nSep 11 13:54:39 test-inst-netvm1 audit[1431]: USER_AUTH pid=1431 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:local_login_t:s0-s0:c0.c1023 msg=\'op=PAM:authentication grantors=pam_rootok acct="root" exe="/usr/lib/qubes/qrexec-agent" hostname=? addr=? terminal=? res=success\'\nSep 11 13:54:39 test-inst-netvm1 audit[1431]: CRED_ACQ pid=1431 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:local_login_t:s0-s0:c0.c1023 msg=\'op=PAM:setcred grantors=pam_rootok acct="root" exe="/usr/lib/qubes/qrexec-agent" hostname=? addr=? terminal=? res=success\'\nSep 11 13:54:39 test-inst-netvm1 audit[1431]: SYSCALL arch=c000003e syscall=1 success=yes exit=1 a0=3 a1=7ffcbb153710 a2=1 a3=0 items=0 ppid=1429 pid=1431 auid=0 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=16 comm="qrexec-agent" exe="/usr/lib/qubes/qrexec-agent" subj=system_u:system_r:local_login_t:s0-s0:c0.c1023 key=(null)\nSep 11 13:54:39 test-inst-netvm1 audit: PROCTITLE proctitle="/usr/lib/qubes/qrexec-agent"\nSep 11 13:54:39 test-inst-netvm1 audit[1431]: USER_ROLE_CHANGE pid=1431 uid=0 auid=0 ses=16 subj=system_u:system_r:local_login_t:s0-s0:c0.c1023 msg=\'op=pam_selinux default-context=unconfined_u:unconfined_r:unconfined_t:s0-s0:c0.c1023 selected-context=unconfined_u:unconfined_r:unconfined_t:s0-s0:c0.c1023 exe="/usr/lib/qubes/qrexec-agent" hostname=? addr=? terminal=? res=success\'\nSep 11 13:54:39 test-inst-netvm1 systemd[1]: Started session-16.scope - Session 16 of User root.\nSep 11 13:54:39 test-inst-netvm1 audit[1431]: USER_START pid=1431 uid=0 auid=0 ses=16 subj=system_u:system_r:local_login_t:s0-s0:c0.c1023 msg=\'op=PAM:session_open grantors=pam_selinux,pam_loginuid,pam_selinux,pam_keyinit,pam_limits,pam_systemd,pam_unix,pam_umask,pam_lastlog acct="root" exe="/usr/lib/qubes/qrexec-agent" hostname=? addr=? terminal=? res=success\'\nSep 11 13:54:39 test-inst-netvm1 qrexec-agent[1431]: pam_unix(qrexec:session): session opened for user root(uid=0) by root(uid=0)\nSep 11 13:54:39 test-inst-netvm1 audit[1431]: USER_END pid=1431 uid=0 auid=0 ses=16 subj=system_u:system_r:local_login_t:s0-s0:c0.c1023 msg=\'op=PAM:session_close grantors=pam_selinux,pam_loginuid,pam_selinux,pam_keyinit,pam_limits,pam_systemd,pam_unix,pam_umask,pam_lastlog acct="root" exe="/usr/lib/qubes/qrexec-agent" hostname=? addr=? terminal=? res=success\'\nSep 11 13:54:39 test-inst-netvm1 qrexec-agent[1431]: pam_unix(qrexec:session): session closed for user root\nSep 11 13:54:39 test-inst-netvm1 audit[1431]: CRED_DISP pid=1431 uid=0 auid=0 ses=16 subj=system_u:system_r:local_login_t:s0-s0:c0.c1023 msg=\'op=PAM:setcred grantors=pam_rootok acct="root" exe="/usr/lib/qubes/qrexec-agent" hostname=? addr=? terminal=? res=success\'\nSep 11 13:54:39 test-inst-netvm1 systemd[1]: session-16.scope: Deactivated successfully.\nSep 11 13:54:39 test-inst-netvm1 qrexec-agent[1429]: 2025-09-11 13:54:39.605 qrexec-agent[1429]: qrexec-agent-data.c:309:handle_new_process_common: pid 1431 exited with 0\nSep 11 13:54:39 test-inst-netvm1 qrexec-agent[1459]: 2025-09-11 13:54:39.620 qrexec-agent[1459]: qrexec-agent-data.c:274:handle_new_process_common: executed: root:cat ~user/.xsession-errors (pid 1461)\nSep 11 13:54:39 test-inst-netvm1 audit[1461]: USER_AUTH pid=1461 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:local_login_t:s0-s0:c0.c1023 msg=\'op=PAM:authentication grantors=pam_rootok acct="root" exe="/usr/lib/qubes/qrexec-agent" hostname=? addr=? terminal=? res=success\'\nSep 11 13:54:39 test-inst-netvm1 audit[1461]: CRED_ACQ pid=1461 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:local_login_t:s0-s0:c0.c1023 msg=\'op=PAM:setcred grantors=pam_rootok acct="root" exe="/usr/lib/qubes/qrexec-agent" hostname=? addr=? terminal=? res=success\'\nSep 11 13:54:39 test-inst-netvm1 audit[1461]: SYSCALL arch=c000003e syscall=1 success=yes exit=1 a0=3 a1=7ffcbb153710 a2=1 a3=0 items=0 ppid=1459 pid=1461 auid=0 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=17 comm="qrexec-agent" exe="/usr/lib/qubes/qrexec-agent" subj=system_u:system_r:local_login_t:s0-s0:c0.c1023 key=(null)\nSep 11 13:54:39 test-inst-netvm1 audit: PROCTITLE proctitle="/usr/lib/qubes/qrexec-agent"\nSep 11 13:54:39 test-inst-netvm1 audit[1461]: USER_ROLE_CHANGE pid=1461 uid=0 auid=0 ses=17 subj=system_u:system_r:local_login_t:s0-s0:c0.c1023 msg=\'op=pam_selinux default-context=unconfined_u:unconfined_r:unconfined_t:s0-s0:c0.c1023 selected-context=unconfined_u:unconfined_r:unconfined_t:s0-s0:c0.c1023 exe="/usr/lib/qubes/qrexec-agent" hostname=? addr=? terminal=? res=success\'\nSep 11 13:54:39 test-inst-netvm1 systemd[1]: Started session-17.scope - Session 17 of User root.\nSep 11 13:54:39 test-inst-netvm1 qrexec-agent[1461]: pam_unix(qrexec:session): session opened for user root(uid=0) by root(uid=0)\nSep 11 13:54:39 test-inst-netvm1 audit[1461]: USER_START pid=1461 uid=0 auid=0 ses=17 subj=system_u:system_r:local_login_t:s0-s0:c0.c1023 msg=\'op=PAM:session_open grantors=pam_selinux,pam_loginuid,pam_selinux,pam_keyinit,pam_limits,pam_systemd,pam_unix,pam_umask,pam_lastlog acct="root" exe="/usr/lib/qubes/qrexec-agent" hostname=? addr=? terminal=? res=success\'\nSep 11 13:54:39 test-inst-netvm1 qrexec-agent[1461]: pam_unix(qrexec:session): session closed for user root\nSep 11 13:54:39 test-inst-netvm1 audit[1461]: USER_END pid=1461 uid=0 auid=0 ses=17 subj=system_u:system_r:local_login_t:s0-s0:c0.c1023 msg=\'op=PAM:session_close grantors=pam_selinux,pam_loginuid,pam_selinux,pam_keyinit,pam_limits,pam_systemd,pam_unix,pam_umask,pam_lastlog acct="root" exe="/usr/lib/qubes/qrexec-agent" hostname=? addr=? terminal=? res=success\'\nSep 11 13:54:39 test-inst-netvm1 audit[1461]: CRED_DISP pid=1461 uid=0 auid=0 ses=17 subj=system_u:system_r:local_login_t:s0-s0:c0.c1023 msg=\'op=PAM:setcred grantors=pam_rootok acct="root" exe="/usr/lib/qubes/qrexec-agent" hostname=? addr=? terminal=? res=success\'\nSep 11 13:54:39 test-inst-netvm1 qrexec-agent[1459]: 2025-09-11 13:54:39.676 qrexec-agent[1459]: qrexec-agent-data.c:309:handle_new_process_common: pid 1461 exited with 0\nSep 11 13:54:39 test-inst-netvm1 systemd[1]: session-17.scope: Deactivated successfully.\nSep 11 13:54:39 test-inst-netvm1 qrexec-agent[1489]: 2025-09-11 13:54:39.687 qrexec-agent[1489]: qrexec-agent-data.c:274:handle_new_process_common: executed: root:journalctl --no-pager --since \'10 seconds ago\' (pid 1491)\nSep 11 13:54:39 test-inst-netvm1 audit[1491]: USER_AUTH pid=1491 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:local_login_t:s0-s0:c0.c1023 msg=\'op=PAM:authentication grantors=pam_rootok acct="root" exe="/usr/lib/qubes/qrexec-agent" hostname=? addr=? terminal=? res=success\'\nSep 11 13:54:39 test-inst-netvm1 audit[1491]: CRED_ACQ pid=1491 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:local_login_t:s0-s0:c0.c1023 msg=\'op=PAM:setcred grantors=pam_rootok acct="root" exe="/usr/lib/qubes/qrexec-agent" hostname=? addr=? terminal=? res=success\'\nSep 11 13:54:39 test-inst-netvm1 audit[1491]: SYSCALL arch=c000003e syscall=1 success=yes exit=1 a0=3 a1=7ffcbb153710 a2=1 a3=0 items=0 ppid=1489 pid=1491 auid=0 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=18 comm="qrexec-agent" exe="/usr/lib/qubes/qrexec-agent" subj=system_u:system_r:local_login_t:s0-s0:c0.c1023 key=(null)\nSep 11 13:54:39 test-inst-netvm1 audit: PROCTITLE proctitle="/usr/lib/qubes/qrexec-agent"\nSep 11 13:54:39 test-inst-netvm1 audit[1491]: USER_ROLE_CHANGE pid=1491 uid=0 auid=0 ses=18 subj=system_u:system_r:local_login_t:s0-s0:c0.c1023 msg=\'op=pam_selinux default-context=unconfined_u:unconfined_r:unconfined_t:s0-s0:c0.c1023 selected-context=unconfined_u:unconfined_r:unconfined_t:s0-s0:c0.c1023 exe="/usr/lib/qubes/qrexec-agent" hostname=? addr=? terminal=? res=success\'\nSep 11 13:54:39 test-inst-netvm1 systemd[1]: Started session-18.scope - Session 18 of User root.\nSep 11 13:54:39 test-inst-netvm1 qrexec-agent[1491]: pam_unix(qrexec:session): session opened for user root(uid=0) by root(uid=0)\nSep 11 13:54:39 test-inst-netvm1 audit[1491]: USER_START pid=1491 uid=0 auid=0 ses=18 subj=system_u:system_r:local_login_t:s0-s0:c0.c1023 msg=\'op=PAM:session_open grantors=pam_selinux,pam_loginuid,pam_selinux,pam_keyinit,pam_limits,pam_systemd,pam_unix,pam_umask,pam_lastlog acct="root" exe="/usr/lib/qubes/qrexec-agent" hostname=? addr=? terminal=? res=success\'\n'
2025-09-11 13:54:39,812 qubes.tests.integ.network.VmNetworking_fedora-42-xfce.test_001_simple_networking_paused[253452]: test-inst-netvm1: iptables -vnL: b'Chain INPUT (policy ACCEPT 0 packets, 0 bytes)\n pkts bytes target     prot opt in     out     source               destination         \n\nChain FORWARD (policy ACCEPT 0 packets, 0 bytes)\n pkts bytes target     prot opt in     out     source               destination         \n\nChain OUTPUT (policy ACCEPT 0 packets, 0 bytes)\n pkts bytes target     prot opt in     out     source               destination         \n'
2025-09-11 13:54:39,917 qubes.tests.integ.network.VmNetworking_fedora-42-xfce.test_001_simple_networking_paused[253452]: test-inst-netvm1: iptables -vnL -t nat: b'Chain PREROUTING (policy ACCEPT 0 packets, 0 bytes)\n pkts bytes target     prot opt in     out     source               destination         \n\nChain INPUT (policy ACCEPT 0 packets, 0 bytes)\n pkts bytes target     prot opt in     out     source               destination         \n\nChain OUTPUT (policy ACCEPT 0 packets, 0 bytes)\n pkts bytes target     prot opt in     out     source               destination         \n\nChain POSTROUTING (policy ACCEPT 0 packets, 0 bytes)\n pkts bytes target     prot opt in     out     source               destination         \n'
2025-09-11 13:54:40,008 qubes.tests.integ.network.VmNetworking_fedora-42-xfce.test_001_simple_networking_paused[253452]: test-inst-netvm1: nft list table qubes-firewall: b'table ip qubes-firewall {\n\tchain qubes-forward {\n\t\tip saddr 10.137.0.20 jump qbs-10-137-0-20\n\t}\n\n\tchain forward {\n\t\ttype filter hook forward priority filter; policy drop;\n\t\tct state established,related accept\n\t\tiifname != "vif*" accept\n\t\tjump qubes-forward\n\t}\n\n\tchain prerouting {\n\t\ttype filter hook prerouting priority raw; policy accept;\n\t\tiifname != "vif*" ip saddr 10.137.0.20 drop\n\t}\n\n\tchain postrouting {\n\t\ttype filter hook postrouting priority raw; policy accept;\n\t\toifname != "vif*" ip daddr 10.137.0.20 drop\n\t}\n\n\tchain qbs-10-137-0-20 {\n\t\taccept\n\t\treject with icmp admin-prohibited\n\t}\n}\n'
2025-09-11 13:54:40,118 qubes.tests.integ.network.VmNetworking_fedora-42-xfce.test_001_simple_networking_paused[253452]: test-inst-netvm1: nft list ruleset: b'table ip qubes {\n\tset downstream {\n\t\ttype ipv4_addr\n\t\telements = { 10.137.0.20 }\n\t}\n\n\tset allowed {\n\t\ttype ifname . ipv4_addr\n\t\telements = { "vif311.0" . 10.137.0.20 }\n\t}\n\n\tchain prerouting {\n\t\ttype filter hook prerouting priority raw; policy accept;\n\t\tiifgroup 2 goto antispoof\n\t\tip saddr @downstream counter packets 0 bytes 0 drop\n\t}\n\n\tchain antispoof {\n\t\tiifname . ip saddr @allowed accept\n\t\tcounter packets 0 bytes 0 drop\n\t}\n\n\tchain postrouting {\n\t\ttype nat hook postrouting priority srcnat; policy accept;\n\t\toifgroup 2 accept\n\t\toif "lo" accept\n\t\tmasquerade\n\t}\n\n\tchain input {\n\t\ttype filter hook input priority filter; policy drop;\n\t\tjump custom-input\n\t\tct state invalid counter packets 0 bytes 0 drop\n\t\tiifgroup 2 udp dport 68 counter packets 0 bytes 0 drop\n\t\tct state established,related accept\n\t\tiifgroup 2 meta l4proto icmp accept\n\t\tiif "lo" accept\n\t\tiifgroup 2 counter packets 0 bytes 0 reject with icmp host-prohibited\n\t\tcounter packets 0 bytes 0\n\t}\n\n\tchain forward {\n\t\ttype filter hook forward priority filter; policy accept;\n\t\tjump custom-forward\n\t\tct state invalid counter packets 0 bytes 0 drop\n\t\tct state established,related accept\n\t\toifgroup 2 counter packets 0 bytes 0 drop\n\t}\n\n\tchain custom-input {\n\t\tip daddr 192.168.123.45 accept\n\t}\n\n\tchain custom-forward {\n\t}\n\n\tchain dnat-dns {\n\t\ttype nat hook prerouting priority dstnat; policy accept;\n\t\tip daddr 10.139.1.1 udp dport 53 dnat to 192.168.123.45\n\t\tip daddr 10.139.1.1 tcp dport 53 dnat to 192.168.123.45\n\t\tip daddr 10.139.1.2 udp dport 53 dnat to 192.168.123.45\n\t\tip daddr 10.139.1.2 tcp dport 53 dnat to 192.168.123.45\n\t}\n}\ntable ip6 qubes {\n\tset downstream {\n\t\ttype ipv6_addr\n\t}\n\n\tset allowed {\n\t\ttype ifname . ipv6_addr\n\t}\n\n\tchain antispoof {\n\t\tiifname . ip6 saddr @allowed accept\n\t\tcounter packets 17 bytes 1240 drop\n\t}\n\n\tchain prerouting {\n\t\ttype filter hook prerouting priority raw; policy accept;\n\t\tiifgroup 2 goto antispoof\n\t\tip6 saddr @downstream counter packets 0 bytes 0 drop\n\t}\n\n\tchain postrouting {\n\t\ttype nat hook postrouting priority srcnat; policy accept;\n\t\toifgroup 2 accept\n\t\toif "lo" accept\n\t\tmasquerade\n\t}\n\n\tchain _icmpv6 {\n\t\tmeta l4proto != ipv6-icmp counter packets 0 bytes 0 reject with icmpv6 admin-prohibited\n\t\ticmpv6 type { nd-router-advert, nd-redirect } counter packets 0 bytes 0 drop\n\t\taccept\n\t}\n\n\tchain input {\n\t\ttype filter hook input priority filter; policy drop;\n\t\tjump custom-input\n\t\tct state invalid counter packets 0 bytes 0 drop\n\t\tct state established,related accept\n\t\tiifgroup 2 goto _icmpv6\n\t\tiif "lo" accept\n\t\tip6 saddr fe80::/64 ip6 daddr fe80::/64 udp dport 546 accept\n\t\tmeta l4proto ipv6-icmp accept\n\t\tcounter packets 0 bytes 0\n\t}\n\n\tchain forward {\n\t\ttype filter hook forward priority filter; policy accept;\n\t\tjump custom-forward\n\t\tct state invalid counter packets 0 bytes 0 drop\n\t\tct state established,related accept\n\t\toifgroup 2 counter packets 0 bytes 0 drop\n\t}\n\n\tchain custom-input {\n\t}\n\n\tchain custom-forward {\n\t}\n}\ntable ip qubes-firewall {\n\tchain qubes-forward {\n\t\tip saddr 10.137.0.20 jump qbs-10-137-0-20\n\t}\n\n\tchain forward {\n\t\ttype filter hook forward priority filter; policy drop;\n\t\tct state established,related accept\n\t\tiifname != "vif*" accept\n\t\tjump qubes-forward\n\t}\n\n\tchain prerouting {\n\t\ttype filter hook prerouting priority raw; policy accept;\n\t\tiifname != "vif*" ip saddr 10.137.0.20 drop\n\t}\n\n\tchain postrouting {\n\t\ttype filter hook postrouting priority raw; policy accept;\n\t\toifname != "vif*" ip daddr 10.137.0.20 drop\n\t}\n\n\tchain qbs-10-137-0-20 {\n\t\taccept\n\t\treject with icmp admin-prohibited\n\t}\n}\ntable ip6 qubes-firewall {\n\tchain qubes-forward {\n\t}\n\n\tchain forward {\n\t\ttype filter hook forward priority filter; policy drop;\n\t\tct state established,related accept\n\t\tiifname != "vif*" accept\n\t\tjump qubes-forward\n\t}\n\n\tchain prerouting {\n\t\ttype filter hook prerouting priority raw; policy accept;\n\t}\n\n\tchain postrouting {\n\t\ttype filter hook postrouting priority raw; policy accept;\n\t}\n}\ntable inet qubes-nat-accel {\n\tflowtable qubes-accel {\n\t\thook ingress priority filter\n\t\tdevices = { lo, test0, vif311.0 }\n\t}\n\n\tchain qubes-accel {\n\t\ttype filter hook forward priority filter + 5; policy accept;\n\t\tmeta l4proto { tcp, udp } iifgroup 2 oifgroup 1 flow add @qubes-accel\n\t\tcounter packets 0 bytes 0\n\t}\n}\n'
2025-09-11 13:54:40,252 qubes.tests.integ.network.VmNetworking_fedora-42-xfce.test_001_simple_networking_paused[253452]: test-inst-netvm1: systemctl --no-pager status qubes-firewall: b'\xe2\x97\x8f qubes-firewall.service - Qubes firewall updater\n     Loaded: loaded (/usr/lib/systemd/system/qubes-firewall.service; enabled; preset: enabled)\n    Drop-In: /usr/lib/systemd/system/service.d\n             \xe2\x94\x94\xe2\x94\x8010-timeout-abort.conf\n     Active: active (running) since Thu 2025-09-11 13:54:08 UTC; 32s ago\n Invocation: 908fef3af73b436c81313f3a6209adfb\n   Main PID: 492 (qubes-firewall)\n      Tasks: 1 (limit: 7680)\n     Memory: 11.7M (peak: 18M)\n        CPU: 225ms\n     CGroup: /system.slice/qubes-firewall.service\n             \xe2\x94\x94\xe2\x94\x80492 /usr/bin/python3 /usr/bin/qubes-firewall\n\nSep 11 13:54:07 test-inst-netvm1 systemd[1]: Starting qubes-firewall.service - Qubes firewall updater...\nSep 11 13:54:08 test-inst-netvm1 systemd[1]: Started qubes-firewall.service - Qubes firewall updater.\n'
2025-09-11 13:54:40,344 qubes.tests.integ.network.VmNetworking_fedora-42-xfce.test_001_simple_networking_paused[253452]: test-inst-netvm1: systemctl --no-pager status qubes-iptables: b'\xe2\x97\x8f qubes-iptables.service - Qubes base firewall settings\n     Loaded: loaded (/usr/lib/systemd/system/qubes-iptables.service; enabled; preset: enabled)\n    Drop-In: /usr/lib/systemd/system/service.d\n             \xe2\x94\x94\xe2\x94\x8010-timeout-abort.conf\n     Active: active (exited) since Thu 2025-09-11 13:54:07 UTC; 32s ago\n Invocation: f754cdfc08294e81820b905eeb8fb030\n    Process: 438 ExecStart=/usr/lib/qubes/init/qubes-iptables start (code=exited, status=0/SUCCESS)\n   Main PID: 438 (code=exited, status=0/SUCCESS)\n   Mem peak: 3M\n        CPU: 33ms\n\nSep 11 13:54:07 test-inst-netvm1 systemd[1]: Starting qubes-iptables.service - Qubes base firewall settings...\nSep 11 13:54:07 test-inst-netvm1 qubes-iptables[438]: nft: Applying firewall rules: OK\nSep 11 13:54:07 test-inst-netvm1 qubes-iptables[438]: nft: Applying firewall rules: OK\nSep 11 13:54:07 test-inst-netvm1 systemd[1]: Finished qubes-iptables.service - Qubes base firewall settings.\n'
2025-09-11 13:54:40,417 qubes.tests.integ.network.VmNetworking_fedora-42-xfce.test_001_simple_networking_paused[253452]: test-inst-netvm1: systemctl --no-pager status xendriverdomain: b'\xe2\x97\x8f xendriverdomain.service - Xen driver domain device daemon\n     Loaded: loaded (/etc/systemd/system/xendriverdomain.service; enabled; preset: enabled)\n    Drop-In: /usr/lib/systemd/system/service.d\n             \xe2\x94\x94\xe2\x94\x8010-timeout-abort.conf\n     Active: active (running) since Thu 2025-09-11 13:54:07 UTC; 32s ago\n Invocation: 6cd66cef48c64fd8aa7c6cc4e6ebac2f\n    Process: 418 ExecStart=/usr/sbin/xl devd (code=exited, status=0/SUCCESS)\n   Main PID: 434 (xl)\n      Tasks: 2 (limit: 7680)\n     Memory: 3.8M (peak: 8.8M)\n        CPU: 331ms\n     CGroup: /system.slice/xendriverdomain.service\n             \xe2\x94\x94\xe2\x94\x80434 /usr/sbin/xl devd\n\nSep 11 13:54:26 test-inst-netvm1 root[1180]: /etc/xen/scripts/vif-route-qubes: online type_if=vif XENBUS_PATH=backend/vif/311/0\nSep 11 13:54:26 test-inst-netvm1 root[1216]: /etc/xen/scripts/vif-route-qubes: Successful vif-route-qubes online for vif311.0.\nSep 11 13:54:27 test-inst-netvm1 root[1229]: /etc/xen/scripts/vif-route-qubes: offline type_if=vif XENBUS_PATH=backend/vif/311/0\nSep 11 13:54:27 test-inst-netvm1 root[1252]: /etc/xen/scripts/vif-route-qubes: Successful vif-route-qubes offline for vif311.0.\nSep 11 13:54:29 test-inst-netvm1 root[1274]: /etc/xen/scripts/vif-route-qubes: online type_if=vif XENBUS_PATH=backend/vif/311/0\nSep 11 13:54:29 test-inst-netvm1 root[1305]: /etc/xen/scripts/vif-route-qubes: Writing backend/vif/311/0/hotplug-status connected to xenstore.\nSep 11 13:54:36 test-inst-netvm1 root[1318]: /etc/xen/scripts/vif-route-qubes: offline type_if=vif XENBUS_PATH=backend/vif/311/0\nSep 11 13:54:36 test-inst-netvm1 root[1341]: /etc/xen/scripts/vif-route-qubes: Successful vif-route-qubes offline for vif311.0.\nSep 11 13:54:39 test-inst-netvm1 root[1366]: /etc/xen/scripts/vif-route-qubes: online type_if=vif XENBUS_PATH=backend/vif/311/0\nSep 11 13:54:39 test-inst-netvm1 root[1397]: /etc/xen/scripts/vif-route-qubes: Writing backend/vif/311/0/hotplug-status connected to xenstore.\n'
2025-09-11 13:54:40,507 qubes.tests.integ.network.VmNetworking_fedora-42-xfce.test_001_simple_networking_paused[253452]: test-inst-netvm1: cat /var/log/xen/xen-hotplug.log: b'Failed to read /qubes-netvm-gateway6\nFailed to read /qubes-netvm-gateway6\nFailed to read /qubes-netvm-gateway6\nFailed to read /qubes-netvm-gateway6\nFailed to read /qubes-netvm-gateway6\n'
2025-09-11 13:54:40,585 qubes.tests.integ.network.VmNetworking_fedora-42-xfce.test_001_simple_networking_paused[253452]: test-inst-vm1: ip a: b'1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN group default qlen 1000\n    link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00\n    inet 127.0.0.1/8 scope host lo\n       valid_lft forever preferred_lft forever\n    inet6 ::1/128 scope host noprefixroute \n       valid_lft forever preferred_lft forever\n6: eth0: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc mq state UP group 1 qlen 1000\n    link/ether 00:16:3e:5e:6c:00 brd ff:ff:ff:ff:ff:ff\n    inet 10.137.0.20/32 scope global eth0\n       valid_lft forever preferred_lft forever\n    inet6 fe80::216:3eff:fe5e:6c00/64 scope link tentative proto kernel_ll \n       valid_lft forever preferred_lft forever\n'
2025-09-11 13:54:40,640 qubes.tests.integ.network.VmNetworking_fedora-42-xfce.test_001_simple_networking_paused[253452]: test-inst-vm1: ip r: b'default via 10.137.0.17 dev eth0 onlink \n10.137.0.17 dev eth0 scope link \n'
2025-09-11 13:54:40,696 qubes.tests.integ.network.VmNetworking_fedora-42-xfce.test_001_simple_networking_paused[253452]: test-inst-vm1: cat ~user/.xsession-errors: b'\n\nX.Org X Server 1.21.1.18\nX Protocol Version 11, Revision 0\nCurrent Operating System: Linux test-inst-vm1 6.17.0-0.rc5.1.qubes.1.fc41.x86_64 #1 SMP PREEMPT_DYNAMIC Mon Sep  8 10:54:28 UTC 2025 x86_64\nKernel command line: systemd.machine_id=734f1ba20e6a4c5d8df840a0f3ed2ed1 root=/dev/mapper/dmroot ro nomodeset console=hvc0 rd_NO_PLYMOUTH rd.plymouth.enable=0 plymouth.enable=0 clocksource=tsc xen_scrub_pages=0 swiotlb=2048 selinux=1 security=selinux\nBuild ID: xorg-x11-server 21.1.18-1.fc42 \nCurrent version of pixman: 0.46.2\n\tBefore reporting problems, check http://wiki.x.org\n\tto make sure that you have the latest version.\nMarkers: (--) probed, (**) from config file, (==) default setting,\n\t(++) from command line, (!!) notice, (II) informational,\n\t(WW) warning, (EE) error, (NI) not implemented, (??) unknown.\n(==) Log file: "/home/user/.local/share/xorg/Xorg.0.log", Time: Thu Sep 11 13:54:24 2025\n(++) Using config file: "/etc/X11/xorg-qubes.conf"\n(==) Using system config directory "/usr/share/X11/xorg.conf.d"\nThe XKEYBOARD keymap compiler (xkbcomp) reports:\n> Warning:          Could not resolve keysym XF86RefreshRateToggle\n> Warning:          Could not resolve keysym XF86Accessibility\n> Warning:          Could not resolve keysym XF86DoNotDisturb\nErrors from xkbcomp are not fatal to the X server\nEnvironment variable $XAUTHORITY not set, ignoring.\nFailed to read /guivm-windows-prefix\n\n(xfsettingsd:719): xfsettingsd-WARNING **: 13:54:26.015: Failed to connect to session manager: Failed to connect to the session manager: SESSION_MANAGER environment variable not defined\nNot in GuiVM or dom0. Exiting.\n** Message: 13:54:26.073: couldn\'t access control socket: /run/user/1000/keyring/control: No such file or directory\ndiscover_other_daemon: 0** Message: 13:54:26.074: couldn\'t access control socket: /run/user/1000/keyring/control: No such file or directory\ndiscover_other_daemon: 0discover_other_daemon: 1SSH_AUTH_SOCK=/run/user/1000/keyring/ssh\nFailed to process \'org.freedesktop.problems.applet.desktop\': \'NoneType\' object is not subscriptable\nNot starting \'blueman-applet\', qvm-service \'blueman\' is not enabled\nThe XKEYBOARD keymap compiler (xkbcomp) reports:\n> Warning:          Could not resolve keysym XF86RefreshRateToggle\n> Warning:          Could not resolve keysym XF86Accessibility\n> Warning:          Could not resolve keysym XF86DoNotDisturb\nErrors from xkbcomp are not fatal to the X server\n2025-09-11 13:54:26,458 icon-sender: running: [\'qrexec-client-vm\', \'dom0\', \'qubes.WindowIconUpdater\']\n/keyboard-layout\nThe XKEYBOARD keymap compiler (xkbcomp) reports:\n> Warning:          Could not resolve keysym XF86RefreshRateToggle\n> Warning:          Could not resolve keysym XF86Accessibility\n> Warning:          Could not resolve keysym XF86DoNotDisturb\nErrors from xkbcomp are not fatal to the X server\nXlib:  extension "DPMS" missing on display ":0".\n/keyboard-layout\nThe XKEYBOARD keymap compiler (xkbcomp) reports:\n> Warning:          Could not resolve keysym XF86RefreshRateToggle\n> Warning:          Could not resolve keysym XF86Accessibility\n> Warning:          Could not resolve keysym XF86DoNotDisturb\nErrors from xkbcomp are not fatal to the X server\nxfsettingsd: No window manager registered on screen 0.\n\n(xfsettingsd:719): xfsettingsd-WARNING **: 13:54:33.239: Failed to get the _NET_NUMBER_OF_DESKTOPS property.\n/keyboard-layout\nThe XKEYBOARD keymap compiler (xkbcomp) reports:\n> Warning:          Could not resolve keysym XF86RefreshRateToggle\n> Warning:          Could not resolve keysym XF86Accessibility\n> Warning:          Could not resolve keysym XF86DoNotDisturb\nErrors from xkbcomp are not fatal to the X server\n'
2025-09-11 13:54:40,746 qubes.tests.integ.network.VmNetworking_fedora-42-xfce.test_001_simple_networking_paused[253452]: test-inst-vm1: journalctl --no-pager --since '10 seconds ago': b'Sep 11 13:54:38 test-inst-vm1 kernel: xen_netfront: backend supports XDP headroom\nSep 11 13:54:38 test-inst-vm1 kernel: vif vif-0: bouncing transmitted data to zeroed pages\nSep 11 13:54:38 test-inst-vm1 systemd[1]: Starting qubes-sync-time.service - Update time from ClockVM...\nSep 11 13:54:39 test-inst-vm1 systemd[1]: Stopping [email protected] - Qubes network uplink (eth0) setup...\nSep 11 13:54:39 test-inst-vm1 kernel: xen_netfront: backend supports XDP headroom\nSep 11 13:54:39 test-inst-vm1 kernel: vif vif-0: bouncing transmitted data to zeroed pages\nSep 11 13:54:39 test-inst-vm1 kernel: kauditd_printk_skb: 183 callbacks suppressed\nSep 11 13:54:39 test-inst-vm1 kernel: audit: type=1131 audit(1757598879.024:199): pid=1 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:init_t:s0 msg=\'unit=qubes-network-uplink@eth0 comm="systemd" exe="/usr/lib/systemd/systemd" hostname=? addr=? terminal=? res=success\'\nSep 11 13:54:39 test-inst-vm1 audit[1]: SERVICE_STOP pid=1 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:init_t:s0 msg=\'unit=qubes-network-uplink@eth0 comm="systemd" exe="/usr/lib/systemd/systemd" hostname=? addr=? terminal=? res=success\'\nSep 11 13:54:39 test-inst-vm1 systemd[1]: [email protected]: Deactivated successfully.\nSep 11 13:54:39 test-inst-vm1 systemd[1]: Stopped [email protected] - Qubes network uplink (eth0) setup.\nSep 11 13:54:39 test-inst-vm1 systemd[1]: Starting [email protected] - Qubes network uplink (eth0) setup...\nSep 11 13:54:39 test-inst-vm1 qrexec-agent[1316]: 2025-09-11 13:54:39.036 qrexec-agent[1316]: qrexec-agent-data.c:274:handle_new_process_common: executed: root:QUBESRPC qubes.WaitForNetworkUplink dom0 (pid 1321)\nSep 11 13:54:39 test-inst-vm1 kernel: audit: type=1100 audit(1757598879.047:200): pid=1321 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:local_login_t:s0-s0:c0.c1023 msg=\'op=PAM:authentication grantors=pam_rootok acct="root" exe="/usr/lib/qubes/qrexec-agent" hostname=? addr=? terminal=? res=success\'\nSep 11 13:54:39 test-inst-vm1 kernel: audit: type=1103 audit(1757598879.047:201): pid=1321 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:local_login_t:s0-s0:c0.c1023 msg=\'op=PAM:setcred grantors=pam_rootok acct="root" exe="/usr/lib/qubes/qrexec-agent" hostname=? addr=? terminal=? res=success\'\nSep 11 13:54:39 test-inst-vm1 kernel: audit: type=1006 audit(1757598879.048:202): pid=1321 uid=0 subj=system_u:system_r:local_login_t:s0-s0:c0.c1023 old-auid=4294967295 auid=0 tty=(none) old-ses=4294967295 ses=15 res=1\nSep 11 13:54:39 test-inst-vm1 kernel: audit: type=1300 audit(1757598879.048:202): arch=c000003e syscall=1 success=yes exit=1 a0=3 a1=7ffdd0b76670 a2=1 a3=0 items=0 ppid=1316 pid=1321 auid=0 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=15 comm="qrexec-agent" exe="/usr/lib/qubes/qrexec-agent" subj=system_u:system_r:local_login_t:s0-s0:c0.c1023 key=(null)\nSep 11 13:54:39 test-inst-vm1 kernel: audit: type=1327 audit(1757598879.048:202): proctitle="/usr/lib/qubes/qrexec-agent"\nSep 11 13:54:39 test-inst-vm1 kernel: audit: type=2300 audit(1757598879.048:203): pid=1321 uid=0 auid=0 ses=15 subj=system_u:system_r:local_login_t:s0-s0:c0.c1023 msg=\'op=pam_selinux default-context=unconfined_u:unconfined_r:unconfined_t:s0-s0:c0.c1023 selected-context=unconfined_u:unconfined_r:unconfined_t:s0-s0:c0.c1023 exe="/usr/lib/qubes/qrexec-agent" hostname=? addr=? terminal=? res=success\'\nSep 11 13:54:39 test-inst-vm1 audit[1321]: USER_AUTH pid=1321 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:local_login_t:s0-s0:c0.c1023 msg=\'op=PAM:authentication grantors=pam_rootok acct="root" exe="/usr/lib/qubes/qrexec-agent" hostname=? addr=? terminal=? res=success\'\nSep 11 13:54:39 test-inst-vm1 audit[1321]: CRED_ACQ pid=1321 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:local_login_t:s0-s0:c0.c1023 msg=\'op=PAM:setcred grantors=pam_rootok acct="root" exe="/usr/lib/qubes/qrexec-agent" hostname=? addr=? terminal=? res=success\'\nSep 11 13:54:39 test-inst-vm1 audit[1321]: SYSCALL arch=c000003e syscall=1 success=yes exit=1 a0=3 a1=7ffdd0b76670 a2=1 a3=0 items=0 ppid=1316 pid=1321 auid=0 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=15 comm="qrexec-agent" exe="/usr/lib/qubes/qrexec-agent" subj=system_u:system_r:local_login_t:s0-s0:c0.c1023 key=(null)\nSep 11 13:54:39 test-inst-vm1 audit: PROCTITLE proctitle="/usr/lib/qubes/qrexec-agent"\nSep 11 13:54:39 test-inst-vm1 audit[1321]: USER_ROLE_CHANGE pid=1321 uid=0 auid=0 ses=15 subj=system_u:system_r:local_login_t:s0-s0:c0.c1023 msg=\'op=pam_selinux default-context=unconfined_u:unconfined_r:unconfined_t:s0-s0:c0.c1023 selected-context=unconfined_u:unconfined_r:unconfined_t:s0-s0:c0.c1023 exe="/usr/lib/qubes/qrexec-agent" hostname=? addr=? terminal=? res=success\'\nSep 11 13:54:39 test-inst-vm1 systemd[1]: Started session-15.scope - Session 15 of User root.\nSep 11 13:54:39 test-inst-vm1 audit[1321]: USER_START pid=1321 uid=0 auid=0 ses=15 subj=system_u:system_r:local_login_t:s0-s0:c0.c1023 msg=\'op=PAM:session_open grantors=pam_selinux,pam_loginuid,pam_selinux,pam_keyinit,pam_limits,pam_systemd,pam_unix,pam_umask,pam_lastlog acct="root" exe="/usr/lib/qubes/qrexec-agent" hostname=? addr=? terminal=? res=success\'\nSep 11 13:54:39 test-inst-vm1 qrexec-agent[1321]: pam_unix(qrexec:session): session opened for user root(uid=0) by root(uid=0)\nSep 11 13:54:39 test-inst-vm1 kernel: audit: type=1105 audit(1757598879.067:204): pid=1321 uid=0 auid=0 ses=15 subj=system_u:system_r:local_login_t:s0-s0:c0.c1023 msg=\'op=PAM:session_open grantors=pam_selinux,pam_loginuid,pam_selinux,pam_keyinit,pam_limits,pam_systemd,pam_unix,pam_umask,pam_lastlog acct="root" exe="/usr/lib/qubes/qrexec-agent" hostname=? addr=? terminal=? res=success\'\nSep 11 13:54:39 test-inst-vm1 systemd-resolved[406]: eth0: Bus client set DNS server list to: 10.139.1.1, 10.139.1.2\nSep 11 13:54:39 test-inst-vm1 audit[1]: SERVICE_START pid=1 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:init_t:s0 msg=\'unit=qubes-network-uplink@eth0 comm="systemd" exe="/usr/lib/systemd/systemd" hostname=? addr=? terminal=? res=success\'\nSep 11 13:54:39 test-inst-vm1 kernel: audit: type=1130 audit(1757598879.141:205): pid=1 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:init_t:s0 msg=\'unit=qubes-network-uplink@eth0 comm="systemd" exe="/usr/lib/systemd/systemd" hostname=? addr=? terminal=? res=success\'\nSep 11 13:54:39 test-inst-vm1 systemd[1]: Finished [email protected] - Qubes network uplink (eth0) setup.\nSep 11 13:54:39 test-inst-vm1 kernel: audit: type=1106 audit(1757598879.165:206): pid=1321 uid=0 auid=0 ses=15 subj=system_u:system_r:local_login_t:s0-s0:c0.c1023 msg=\'op=PAM:session_close grantors=pam_selinux,pam_loginuid,pam_selinux,pam_keyinit,pam_limits,pam_systemd,pam_unix,pam_umask,pam_lastlog acct="root" exe="/usr/lib/qubes/qrexec-agent" hostname=? addr=? terminal=? res=success\'\nSep 11 13:54:39 test-inst-vm1 audit[1321]: USER_END pid=1321 uid=0 auid=0 ses=15 subj=system_u:system_r:local_login_t:s0-s0:c0.c1023 msg=\'op=PAM:session_close grantors=pam_selinux,pam_loginuid,pam_selinux,pam_keyinit,pam_limits,pam_systemd,pam_unix,pam_umask,pam_lastlog acct="root" exe="/usr/lib/qubes/qrexec-agent" hostname=? addr=? terminal=? res=success\'\nSep 11 13:54:39 test-inst-vm1 audit[1321]: CRED_DISP pid=1321 uid=0 auid=0 ses=15 subj=system_u:system_r:local_login_t:s0-s0:c0.c1023 msg=\'op=PAM:setcred grantors=pam_rootok acct="root" exe="/usr/lib/qubes/qrexec-agent" hostname=? addr=? terminal=? res=success\'\nSep 11 13:54:39 test-inst-vm1 qrexec-agent[1321]: pam_unix(qrexec:session): session closed for user root\nSep 11 13:54:39 test-inst-vm1 qrexec-agent[1316]: 2025-09-11 13:54:39.169 qrexec-agent[1316]: qrexec-agent-data.c:309:handle_new_process_common: pid 1321 exited with 0\nSep 11 13:54:39 test-inst-vm1 systemd[1]: session-15.scope: Deactivated successfully.\nSep 11 13:54:39 test-inst-vm1 systemd[1]: Stopping [email protected] - Qubes network uplink (eth0) setup...\nSep 11 13:54:39 test-inst-vm1 qrexec-agent[1390]: 2025-09-11 13:54:39.179 qrexec-agent[1390]: qrexec-agent-data.c:274:handle_new_process_common: executed: root:ping -W 1 -n -c 1 192.168.123.45 (pid 1392)\nSep 11 13:54:39 test-inst-vm1 systemd-resolved[406]: Clock change detected. Flushing caches.\nSep 11 13:54:39 test-inst-vm1 audit[1392]: USER_AUTH pid=1392 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:local_login_t:s0-s0:c0.c1023 msg=\'op=PAM:authentication grantors=pam_rootok acct="root" exe="/usr/lib/qubes/qrexec-agent" hostname=? addr=? terminal=? res=success\'\nSep 11 13:54:39 test-inst-vm1 audit[1392]: CRED_ACQ pid=1392 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:local_login_t:s0-s0:c0.c1023 msg=\'op=PAM:setcred grantors=pam_rootok acct="root" exe="/usr/lib/qubes/qrexec-agent" hostname=? addr=? terminal=? res=success\'\nSep 11 13:54:39 test-inst-vm1 audit[1392]: SYSCALL arch=c000003e syscall=1 success=yes exit=1 a0=3 a1=7ffdd0b76670 a2=1 a3=0 items=0 ppid=1390 pid=1392 auid=0 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=16 comm="qrexec-agent" exe="/usr/lib/qubes/qrexec-agent" subj=system_u:system_r:local_login_t:s0-s0:c0.c1023 key=(null)\nSep 11 13:54:39 test-inst-vm1 audit: PROCTITLE proctitle="/usr/lib/qubes/qrexec-agent"\nSep 11 13:54:39 test-inst-vm1 audit[1392]: USER_ROLE_CHANGE pid=1392 uid=0 auid=0 ses=16 subj=system_u:system_r:local_login_t:s0-s0:c0.c1023 msg=\'op=pam_selinux default-context=unconfined_u:unconfined_r:unconfined_t:s0-s0:c0.c1023 selected-context=unconfined_u:unconfined_r:unconfined_t:s0-s0:c0.c1023 exe="/usr/lib/qubes/qrexec-agent" hostname=? addr=? terminal=? res=success\'\nSep 11 13:54:39 test-inst-vm1 systemd[1]: [email protected]: Deactivated successfully.\nSep 11 13:54:39 test-inst-vm1 systemd[1]: Stopped [email protected] - Qubes network uplink (eth0) setup.\nSep 11 13:54:39 test-inst-vm1 audit[1]: SERVICE_STOP pid=1 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:init_t:s0 msg=\'unit=qubes-network-uplink@eth0 comm="systemd" exe="/usr/lib/systemd/systemd" hostname=? addr=? terminal=? res=success\'\nSep 11 13:54:39 test-inst-vm1 systemd[1]: Started session-16.scope - Session 16 of User root.\nSep 11 13:54:39 test-inst-vm1 audit[1392]: USER_START pid=1392 uid=0 auid=0 ses=16 subj=system_u:system_r:local_login_t:s0-s0:c0.c1023 msg=\'op=PAM:session_open grantors=pam_selinux,pam_loginuid,pam_selinux,pam_keyinit,pam_limits,pam_systemd,pam_unix,pam_umask,pam_lastlog acct="root" exe="/usr/lib/qubes/qrexec-agent" hostname=? addr=? terminal=? res=success\'\nSep 11 13:54:39 test-inst-vm1 audit[1]: SERVICE_START pid=1 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:init_t:s0 msg=\'unit=qubes-sync-time comm="systemd" exe="/usr/lib/systemd/systemd" hostname=? addr=? terminal=? res=success\'\nSep 11 13:54:39 test-inst-vm1 audit[1]: SERVICE_STOP pid=1 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:init_t:s0 msg=\'unit=qubes-sync-time comm="systemd" exe="/usr/lib/systemd/systemd" hostname=? addr=? terminal=? res=success\'\nSep 11 13:54:39 test-inst-vm1 qrexec-agent[1392]: pam_unix(qrexec:session): session opened for user root(uid=0) by root(uid=0)\nSep 11 13:54:39 test-inst-vm1 systemd[1]: Starting [email protected] - Qubes network uplink (eth0) setup...\nSep 11 13:54:39 test-inst-vm1 systemd[1]: qubes-sync-time.service: Deactivated successfully.\nSep 11 13:54:39 test-inst-vm1 systemd[1]: Finished qubes-sync-time.service - Update time from ClockVM.\nSep 11 13:54:39 test-inst-vm1 qrexec-agent[1392]: pam_unix(qrexec:session): session closed for user root\nSep 11 13:54:39 test-inst-vm1 audit[1392]: USER_END pid=1392 uid=0 auid=0 ses=16 subj=system_u:system_r:local_login_t:s0-s0:c0.c1023 msg=\'op=PAM:session_close grantors=pam_selinux,pam_loginuid,pam_selinux,pam_keyinit,pam_limits,pam_systemd,pam_unix,pam_umask,pam_lastlog acct="root" exe="/usr/lib/qubes/qrexec-agent" hostname=? addr=? terminal=? res=success\'\nSep 11 13:54:39 test-inst-vm1 audit[1392]: CRED_DISP pid=1392 uid=0 auid=0 ses=16 subj=system_u:system_r:local_login_t:s0-s0:c0.c1023 msg=\'op=PAM:setcred grantors=pam_rootok acct="root" exe="/usr/lib/qubes/qrexec-agent" hostname=? addr=? terminal=? res=success\'\nSep 11 13:54:39 test-inst-vm1 qrexec-agent[1390]: 2025-09-11 13:54:39.450 qrexec-agent[1390]: qrexec-agent-data.c:309:handle_new_process_common: pid 1392 exited with 2\nSep 11 13:54:39 test-inst-vm1 systemd[1]: session-16.scope: Deactivated successfully.\nSep 11 13:54:39 test-inst-vm1 audit[1]: SERVICE_START pid=1 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:init_t:s0 msg=\'unit=qubes-network-uplink@eth0 comm="systemd" exe="/usr/lib/systemd/systemd" hostname=? addr=? terminal=? res=success\'\nSep 11 13:54:39 test-inst-vm1 systemd[1]: Finished [email protected] - Qubes network uplink (eth0) setup.\nSep 11 13:54:40 test-inst-vm1 qrexec-agent[1452]: 2025-09-11 13:54:40.511 qrexec-agent[1452]: qrexec-agent-data.c:274:handle_new_process_common: executed: root:ip a (pid 1454)\nSep 11 13:54:40 test-inst-vm1 audit[1454]: USER_AUTH pid=1454 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:local_login_t:s0-s0:c0.c1023 msg=\'op=PAM:authentication grantors=pam_rootok acct="root" exe="/usr/lib/qubes/qrexec-agent" hostname=? addr=? terminal=? res=success\'\nSep 11 13:54:40 test-inst-vm1 audit[1454]: CRED_ACQ pid=1454 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:local_login_t:s0-s0:c0.c1023 msg=\'op=PAM:setcred grantors=pam_rootok acct="root" exe="/usr/lib/qubes/qrexec-agent" hostname=? addr=? terminal=? res=success\'\nSep 11 13:54:40 test-inst-vm1 audit[1454]: SYSCALL arch=c000003e syscall=1 success=yes exit=1 a0=3 a1=7ffdd0b76670 a2=1 a3=0 items=0 ppid=1452 pid=1454 auid=0 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=17 comm="qrexec-agent" exe="/usr/lib/qubes/qrexec-agent" subj=system_u:system_r:local_login_t:s0-s0:c0.c1023 key=(null)\nSep 11 13:54:40 test-inst-vm1 audit: PROCTITLE proctitle="/usr/lib/qubes/qrexec-agent"\nSep 11 13:54:40 test-inst-vm1 audit[1454]: USER_ROLE_CHANGE pid=1454 uid=0 auid=0 ses=17 subj=system_u:system_r:local_login_t:s0-s0:c0.c1023 msg=\'op=pam_selinux default-context=unconfined_u:unconfined_r:unconfined_t:s0-s0:c0.c1023 selected-context=unconfined_u:unconfined_r:unconfined_t:s0-s0:c0.c1023 exe="/usr/lib/qubes/qrexec-agent" hostname=? addr=? terminal=? res=success\'\nSep 11 13:54:40 test-inst-vm1 systemd[1]: Started session-17.scope - Session 17 of User root.\nSep 11 13:54:40 test-inst-vm1 qrexec-agent[1454]: pam_unix(qrexec:session): session opened for user root(uid=0) by root(uid=0)\nSep 11 13:54:40 test-inst-vm1 audit[1454]: USER_START pid=1454 uid=0 auid=0 ses=17 subj=system_u:system_r:local_login_t:s0-s0:c0.c1023 msg=\'op=PAM:session_open grantors=pam_selinux,pam_loginuid,pam_selinux,pam_keyinit,pam_limits,pam_systemd,pam_unix,pam_umask,pam_lastlog acct="root" exe="/usr/lib/qubes/qrexec-agent" hostname=? addr=? terminal=? res=success\'\nSep 11 13:54:40 test-inst-vm1 qrexec-agent[1454]: pam_unix(qrexec:session): session closed for user root\nSep 11 13:54:40 test-inst-vm1 audit[1454]: USER_END pid=1454 uid=0 auid=0 ses=17 subj=system_u:system_r:local_login_t:s0-s0:c0.c1023 msg=\'op=PAM:session_close grantors=pam_selinux,pam_loginuid,pam_selinux,pam_keyinit,pam_limits,pam_systemd,pam_unix,pam_umask,pam_lastlog acct="root" exe="/usr/lib/qubes/qrexec-agent" hostname=? addr=? terminal=? res=success\'\nSep 11 13:54:40 test-inst-vm1 audit[1454]: CRED_DISP pid=1454 uid=0 auid=0 ses=17 subj=system_u:system_r:local_login_t:s0-s0:c0.c1023 msg=\'op=PAM:setcred grantors=pam_rootok acct="root" exe="/usr/lib/qubes/qrexec-agent" hostname=? addr=? terminal=? res=success\'\nSep 11 13:54:40 test-inst-vm1 qrexec-agent[1452]: 2025-09-11 13:54:40.575 qrexec-agent[1452]: qrexec-agent-data.c:309:handle_new_process_common: pid 1454 exited with 0\nSep 11 13:54:40 test-inst-vm1 systemd[1]: session-17.scope: Deactivated successfully.\nSep 11 13:54:40 test-inst-vm1 qrexec-agent[1482]: 2025-09-11 13:54:40.587 qrexec-agent[1482]: qrexec-agent-data.c:274:handle_new_process_common: executed: root:ip r (pid 1484)\nSep 11 13:54:40 test-inst-vm1 audit[1484]: USER_AUTH pid=1484 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:local_login_t:s0-s0:c0.c1023 msg=\'op=PAM:authentication grantors=pam_rootok acct="root" exe="/usr/lib/qubes/qrexec-agent" hostname=? addr=? terminal=? res=success\'\nSep 11 13:54:40 test-inst-vm1 audit[1484]: CRED_ACQ pid=1484 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:local_login_t:s0-s0:c0.c1023 msg=\'op=PAM:setcred grantors=pam_rootok acct="root" exe="/usr/lib/qubes/qrexec-agent" hostname=? addr=? terminal=? res=success\'\nSep 11 13:54:40 test-inst-vm1 audit[1484]: SYSCALL arch=c000003e syscall=1 success=yes exit=1 a0=3 a1=7ffdd0b76670 a2=1 a3=0 items=0 ppid=1482 pid=1484 auid=0 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=18 comm="qrexec-agent" exe="/usr/lib/qubes/qrexec-agent" subj=system_u:system_r:local_login_t:s0-s0:c0.c1023 key=(null)\nSep 11 13:54:40 test-inst-vm1 audit: PROCTITLE proctitle="/usr/lib/qubes/qrexec-agent"\nSep 11 13:54:40 test-inst-vm1 audit[1484]: USER_ROLE_CHANGE pid=1484 uid=0 auid=0 ses=18 subj=system_u:system_r:local_login_t:s0-s0:c0.c1023 msg=\'op=pam_selinux default-context=unconfined_u:unconfined_r:unconfined_t:s0-s0:c0.c1023 selected-context=unconfined_u:unconfined_r:unconfined_t:s0-s0:c0.c1023 exe="/usr/lib/qubes/qrexec-agent" hostname=? addr=? terminal=? res=success\'\nSep 11 13:54:40 test-inst-vm1 systemd[1]: Started session-18.scope - Session 18 of User root.\nSep 11 13:54:40 test-inst-vm1 qrexec-agent[1484]: pam_unix(qrexec:session): session opened for user root(uid=0) by root(uid=0)\nSep 11 13:54:40 test-inst-vm1 audit[1484]: USER_START pid=1484 uid=0 auid=0 ses=18 subj=system_u:system_r:local_login_t:s0-s0:c0.c1023 msg=\'op=PAM:session_open grantors=pam_selinux,pam_loginuid,pam_selinux,pam_keyinit,pam_limits,pam_systemd,pam_unix,pam_umask,pam_lastlog acct="root" exe="/usr/lib/qubes/qrexec-agent" hostname=? addr=? terminal=? res=success\'\nSep 11 13:54:40 test-inst-vm1 qrexec-agent[1484]: pam_unix(qrexec:session): session closed for user root\nSep 11 13:54:40 test-inst-vm1 audit[1484]: USER_END pid=1484 uid=0 auid=0 ses=18 subj=system_u:system_r:local_login_t:s0-s0:c0.c1023 msg=\'op=PAM:session_close grantors=pam_selinux,pam_loginuid,pam_selinux,pam_keyinit,pam_limits,pam_systemd,pam_unix,pam_umask,pam_lastlog acct="root" exe="/usr/lib/qubes/qrexec-agent" hostname=? addr=? terminal=? res=success\'\nSep 11 13:54:40 test-inst-vm1 audit[1484]: CRED_DISP pid=1484 uid=0 auid=0 ses=18 subj=system_u:system_r:local_login_t:s0-s0:c0.c1023 msg=\'op=PAM:setcred grantors=pam_rootok acct="root" exe="/usr/lib/qubes/qrexec-agent" hostname=? addr=? terminal=? res=success\'\nSep 11 13:54:40 test-inst-vm1 systemd[1]: session-18.scope: Deactivated successfully.\nSep 11 13:54:40 test-inst-vm1 qrexec-agent[1482]: 2025-09-11 13:54:40.629 qrexec-agent[1482]: qrexec-agent-data.c:309:handle_new_process_common: pid 1484 exited with 0\nSep 11 13:54:40 test-inst-vm1 qrexec-agent[1512]: 2025-09-11 13:54:40.642 qrexec-agent[1512]: qrexec-agent-data.c:274:handle_new_process_common: executed: root:cat ~user/.xsession-errors (pid 1514)\nSep 11 13:54:40 test-inst-vm1 audit[1514]: USER_AUTH pid=1514 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:local_login_t:s0-s0:c0.c1023 msg=\'op=PAM:authentication grantors=pam_rootok acct="root" exe="/usr/lib/qubes/qrexec-agent" hostname=? addr=? terminal=? res=success\'\nSep 11 13:54:40 test-inst-vm1 audit[1514]: CRED_ACQ pid=1514 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:local_login_t:s0-s0:c0.c1023 msg=\'op=PAM:setcred grantors=pam_rootok acct="root" exe="/usr/lib/qubes/qrexec-agent" hostname=? addr=? terminal=? res=success\'\nSep 11 13:54:40 test-inst-vm1 audit[1514]: SYSCALL arch=c000003e syscall=1 success=yes exit=1 a0=3 a1=7ffdd0b76670 a2=1 a3=0 items=0 ppid=1512 pid=1514 auid=0 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=19 comm="qrexec-agent" exe="/usr/lib/qubes/qrexec-agent" subj=system_u:system_r:local_login_t:s0-s0:c0.c1023 key=(null)\nSep 11 13:54:40 test-inst-vm1 audit: PROCTITLE proctitle="/usr/lib/qubes/qrexec-agent"\nSep 11 13:54:40 test-inst-vm1 audit[1514]: USER_ROLE_CHANGE pid=1514 uid=0 auid=0 ses=19 subj=system_u:system_r:local_login_t:s0-s0:c0.c1023 msg=\'op=pam_selinux default-context=unconfined_u:unconfined_r:unconfined_t:s0-s0:c0.c1023 selected-context=unconfined_u:unconfined_r:unconfined_t:s0-s0:c0.c1023 exe="/usr/lib/qubes/qrexec-agent" hostname=? addr=? terminal=? res=success\'\nSep 11 13:54:40 test-inst-vm1 systemd[1]: Started session-19.scope - Session 19 of User root.\nSep 11 13:54:40 test-inst-vm1 qrexec-agent[1514]: pam_unix(qrexec:session): session opened for user root(uid=0) by root(uid=0)\nSep 11 13:54:40 test-inst-vm1 audit[1514]: USER_START pid=1514 uid=0 auid=0 ses=19 subj=system_u:system_r:local_login_t:s0-s0:c0.c1023 msg=\'op=PAM:session_open grantors=pam_selinux,pam_loginuid,pam_selinux,pam_keyinit,pam_limits,pam_systemd,pam_unix,pam_umask,pam_lastlog acct="root" exe="/usr/lib/qubes/qrexec-agent" hostname=? addr=? terminal=? res=success\'\nSep 11 13:54:40 test-inst-vm1 qrexec-agent[1514]: pam_unix(qrexec:session): session closed for user root\nSep 11 13:54:40 test-inst-vm1 audit[1514]: USER_END pid=1514 uid=0 auid=0 ses=19 subj=system_u:system_r:local_login_t:s0-s0:c0.c1023 msg=\'op=PAM:session_close grantors=pam_selinux,pam_loginuid,pam_selinux,pam_keyinit,pam_limits,pam_systemd,pam_unix,pam_umask,pam_lastlog acct="root" exe="/usr/lib/qubes/qrexec-agent" hostname=? addr=? terminal=? res=success\'\nSep 11 13:54:40 test-inst-vm1 audit[1514]: CRED_DISP pid=1514 uid=0 auid=0 ses=19 subj=system_u:system_r:local_login_t:s0-s0:c0.c1023 msg=\'op=PAM:setcred grantors=pam_rootok acct="root" exe="/usr/lib/qubes/qrexec-agent" hostname=? addr=? terminal=? res=success\'\nSep 11 13:54:40 test-inst-vm1 qrexec-agent[1512]: 2025-09-11 13:54:40.686 qrexec-agent[1512]: qrexec-agent-data.c:309:handle_new_process_common: pid 1514 exited with 0\nSep 11 13:54:40 test-inst-vm1 systemd[1]: session-19.scope: Deactivated successfully.\nSep 11 13:54:40 test-inst-vm1 qrexec-agent[1542]: 2025-09-11 13:54:40.697 qrexec-agent[1542]: qrexec-agent-data.c:274:handle_new_process_common: executed: root:journalctl --no-pager --since \'10 seconds ago\' (pid 1544)\nSep 11 13:54:40 test-inst-vm1 audit[1544]: USER_AUTH pid=1544 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:local_login_t:s0-s0:c0.c1023 msg=\'op=PAM:authentication grantors=pam_rootok acct="root" exe="/usr/lib/qubes/qrexec-agent" hostname=? addr=? terminal=? res=success\'\nSep 11 13:54:40 test-inst-vm1 audit[1544]: CRED_ACQ pid=1544 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:local_login_t:s0-s0:c0.c1023 msg=\'op=PAM:setcred grantors=pam_rootok acct="root" exe="/usr/lib/qubes/qrexec-agent" hostname=? addr=? terminal=? res=success\'\nSep 11 13:54:40 test-inst-vm1 audit[1544]: SYSCALL arch=c000003e syscall=1 success=yes exit=1 a0=3 a1=7ffdd0b76670 a2=1 a3=0 items=0 ppid=1542 pid=1544 auid=0 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=20 comm="qrexec-agent" exe="/usr/lib/qubes/qrexec-agent" subj=system_u:system_r:local_login_t:s0-s0:c0.c1023 key=(null)\nSep 11 13:54:40 test-inst-vm1 audit: PROCTITLE proctitle="/usr/lib/qubes/qrexec-agent"\nSep 11 13:54:40 test-inst-vm1 audit[1544]: USER_ROLE_CHANGE pid=1544 uid=0 auid=0 ses=20 subj=system_u:system_r:local_login_t:s0-s0:c0.c1023 msg=\'op=pam_selinux default-context=unconfined_u:unconfined_r:unconfined_t:s0-s0:c0.c1023 selected-context=unconfined_u:unconfined_r:unconfined_t:s0-s0:c0.c1023 exe="/usr/lib/qubes/qrexec-agent" hostname=? addr=? terminal=? res=success\'\nSep 11 13:54:40 test-inst-vm1 systemd[1]: Started session-20.scope - Session 20 of User root.\nSep 11 13:54:40 test-inst-vm1 qrexec-agent[1544]: pam_unix(qrexec:session): session opened for user root(uid=0) by root(uid=0)\nSep 11 13:54:40 test-inst-vm1 audit[1544]: USER_START pid=1544 uid=0 auid=0 ses=20 subj=system_u:system_r:local_login_t:s0-s0:c0.c1023 msg=\'op=PAM:session_open grantors=pam_selinux,pam_loginuid,pam_selinux,pam_keyinit,pam_limits,pam_systemd,pam_unix,pam_umask,pam_lastlog acct="root" exe="/usr/lib/qubes/qrexec-agent" hostname=? addr=? terminal=? res=success\'\n'
2025-09-11 13:54:40,807 qubes.tests.integ.network.VmNetworking_fedora-42-xfce.test_001_simple_networking_paused[253452]: test-inst-vm1: iptables -vnL: b'Chain INPUT (policy ACCEPT 0 packets, 0 bytes)\n pkts bytes target     prot opt in     out     source               destination         \n\nChain FORWARD (policy ACCEPT 0 packets, 0 bytes)\n pkts bytes target     prot opt in     out     source               destination         \n\nChain OUTPUT (policy ACCEPT 0 packets, 0 bytes)\n pkts bytes target     prot opt in     out     source               destination         \n'
2025-09-11 13:54:40,860 qubes.tests.integ.network.VmNetworking_fedora-42-xfce.test_001_simple_networking_paused[253452]: test-inst-vm1: iptables -vnL -t nat: b'Chain PREROUTING (policy ACCEPT 0 packets, 0 bytes)\n pkts bytes target     prot opt in     out     source               destination         \n\nChain INPUT (policy ACCEPT 0 packets, 0 bytes)\n pkts bytes target     prot opt in     out     source               destination         \n\nChain OUTPUT (policy ACCEPT 0 packets, 0 bytes)\n pkts bytes target     prot opt in     out     source               destination         \n\nChain POSTROUTING (policy ACCEPT 0 packets, 0 bytes)\n pkts bytes target     prot opt in     out     source               destination         \n'
2025-09-11 13:54:40,999 qubes.tests.integ.network.VmNetworking_fedora-42-xfce.test_001_simple_networking_paused[253452]: test-inst-vm1: nft list ruleset: b'table ip qubes {\n\tset downstream {\n\t\ttype ipv4_addr\n\t}\n\n\tset allowed {\n\t\ttype ifname . ipv4_addr\n\t}\n\n\tchain prerouting {\n\t\ttype filter hook prerouting priority raw; policy accept;\n\t\tiifgroup 2 goto antispoof\n\t\tip saddr @downstream counter packets 0 bytes 0 drop\n\t}\n\n\tchain antispoof {\n\t\tiifname . ip saddr @allowed accept\n\t\tcounter packets 0 bytes 0 drop\n\t}\n\n\tchain postrouting {\n\t\ttype nat hook postrouting priority srcnat; policy accept;\n\t\toifgroup 2 accept\n\t\toif "lo" accept\n\t\tmasquerade\n\t}\n\n\tchain input {\n\t\ttype filter hook input priority filter; policy drop;\n\t\tjump custom-input\n\t\tct state invalid counter packets 0 bytes 0 drop\n\t\tiifgroup 2 udp dport 68 counter packets 0 bytes 0 drop\n\t\tct state established,related accept\n\t\tiifgroup 2 meta l4proto icmp accept\n\t\tiif "lo" accept\n\t\tiifgroup 2 counter packets 0 bytes 0 reject with icmp host-prohibited\n\t\tcounter packets 0 bytes 0\n\t}\n\n\tchain forward {\n\t\ttype filter hook forward priority filter; policy accept;\n\t\tjump custom-forward\n\t\tct state invalid counter packets 0 bytes 0 drop\n\t\tct state established,related accept\n\t\toifgroup 2 counter packets 0 bytes 0 drop\n\t}\n\n\tchain custom-input {\n\t}\n\n\tchain custom-forward {\n\t}\n}\ntable ip6 qubes {\n\tset downstream {\n\t\ttype ipv6_addr\n\t}\n\n\tset allowed {\n\t\ttype ifname . ipv6_addr\n\t}\n\n\tchain antispoof {\n\t\tiifname . ip6 saddr @allowed accept\n\t\tcounter packets 0 bytes 0 drop\n\t}\n\n\tchain prerouting {\n\t\ttype filter hook prerouting priority raw; policy accept;\n\t\tiifgroup 2 goto antispoof\n\t\tip6 saddr @downstream counter packets 0 bytes 0 drop\n\t}\n\n\tchain postrouting {\n\t\ttype nat hook postrouting priority srcnat; policy accept;\n\t\toifgroup 2 accept\n\t\toif "lo" accept\n\t\tmasquerade\n\t}\n\n\tchain _icmpv6 {\n\t\tmeta l4proto != ipv6-icmp counter packets 0 bytes 0 reject with icmpv6 admin-prohibited\n\t\ticmpv6 type { nd-router-advert, nd-redirect } counter packets 0 bytes 0 drop\n\t\taccept\n\t}\n\n\tchain input {\n\t\ttype filter hook input priority filter; policy drop;\n\t\tjump custom-input\n\t\tct state invalid counter packets 0 bytes 0 drop\n\t\tct state established,related accept\n\t\tiifgroup 2 goto _icmpv6\n\t\tiif "lo" accept\n\t\tip6 saddr fe80::/64 ip6 daddr fe80::/64 udp dport 546 accept\n\t\tmeta l4proto ipv6-icmp accept\n\t\tcounter packets 0 bytes 0\n\t}\n\n\tchain forward {\n\t\ttype filter hook forward priority filter; policy accept;\n\t\tjump custom-forward\n\t\tct state invalid counter packets 0 bytes 0 drop\n\t\tct state established,related accept\n\t\toifgroup 2 counter packets 0 bytes 0 drop\n\t}\n\n\tchain custom-input {\n\t}\n\n\tchain custom-forward {\n\t}\n}\n'
2025-09-11 13:54:41,159 qubes.tests.integ.network.VmNetworking_fedora-42-xfce.test_001_simple_networking_paused[253452]: test-inst-vm1: systemctl --no-pager status qubes-iptables: b'\xe2\x97\x8f qubes-iptables.service - Qubes base firewall settings\n     Loaded: loaded (/usr/lib/systemd/system/qubes-iptables.service; enabled; preset: enabled)\n    Drop-In: /usr/lib/systemd/system/service.d\n             \xe2\x94\x94\xe2\x94\x8010-timeout-abort.conf\n     Active: active (exited) since Thu 2025-09-11 13:54:24 UTC; 17s ago\n Invocation: d694a461ca5f4bb9acf0b188de5a7088\n    Process: 440 ExecStart=/usr/lib/qubes/init/qubes-iptables start (code=exited, status=0/SUCCESS)\n   Main PID: 440 (code=exited, status=0/SUCCESS)\n   Mem peak: 3M\n        CPU: 13ms\n\nSep 11 13:54:23 test-inst-vm1 systemd[1]: Starting qubes-iptables.service - Qubes base firewall settings...\nSep 11 13:54:24 test-inst-vm1 qubes-iptables[440]: nft: Applying firewall rules: OK\nSep 11 13:54:24 test-inst-vm1 qubes-iptables[440]: nft: Applying firewall rules: OK\nSep 11 13:54:24 test-inst-vm1 systemd[1]: Finished qubes-iptables.service - Qubes base firewall settings.\n'
2025-09-11 13:54:41,251 qubes.tests.integ.network.VmNetworking_fedora-42-xfce.test_001_simple_networking_paused[253452]: test-inst-vm1: systemctl --no-pager status xendriverdomain: b'\xe2\x97\x8f xendriverdomain.service - Xen driver domain device daemon\n     Loaded: loaded (/etc/systemd/system/xendriverdomain.service; enabled; preset: enabled)\n    Drop-In: /usr/lib/systemd/system/service.d\n             \xe2\x94\x94\xe2\x94\x8010-timeout-abort.conf\n     Active: active (running) since Thu 2025-09-11 13:54:23 UTC; 17s ago\n Invocation: 7753397d96344ea796d996b55efcd05b\n    Process: 421 ExecStart=/usr/sbin/xl devd (code=exited, status=0/SUCCESS)\n   Main PID: 435 (xl)\n      Tasks: 2 (limit: 7680)\n     Memory: 2.7M (peak: 3.5M)\n        CPU: 6ms\n     CGroup: /system.slice/xendriverdomain.service\n             \xe2\x94\x94\xe2\x94\x80435 /usr/sbin/xl devd\n\nSep 11 13:54:23 test-inst-vm1 systemd[1]: Starting xendriverdomain.service - Xen driver domain device daemon...\nSep 11 13:54:23 test-inst-vm1 xl[421]: libxl: error: libxl_utils.c:818:libxl_cpu_bitmap_alloc: failed to retrieve the maximum number of cpus\nSep 11 13:54:23 test-inst-vm1 xl[421]: libxl: error: libxl_utils.c:818:libxl_cpu_bitmap_alloc: failed to retrieve the maximum number of cpus\nSep 11 13:54:23 test-inst-vm1 xl[421]: libxl: error: libxl_utils.c:818:libxl_cpu_bitmap_alloc: failed to retrieve the maximum number of cpus\nSep 11 13:54:23 test-inst-vm1 systemd[1]: Started xendriverdomain.service - Xen driver domain device daemon.\n'
2025-09-11 13:54:43,101 appmenus[253452]: Removing appmenus for 'test-inst-netvm1' in 'dom0'
2025-09-11 13:54:44,006 vm.test-inst-netvm1[253452]: Removing volume root: qubes_dom0/vm-test-inst-netvm1-root
2025-09-11 13:54:44,007 vm.test-inst-netvm1[253452]: Removing volume private: qubes_dom0/vm-test-inst-netvm1-private
2025-09-11 13:54:44,007 vm.test-inst-netvm1[253452]: Removing volume volatile: qubes_dom0/vm-test-inst-netvm1-volatile
2025-09-11 13:54:44,007 vm.test-inst-netvm1[253452]: Removing volume kernel: 6.17-rc5-1.1.fc41
2025-09-11 13:54:44,419 appmenus[253452]: Removing appmenus for 'test-inst-vm1' in 'dom0'
2025-09-11 13:54:45,292 vm.test-inst-vm1[253452]: Removing volume root: qubes_dom0/vm-test-inst-vm1-root
2025-09-11 13:54:45,292 vm.test-inst-vm1[253452]: Removing volume private: qubes_dom0/vm-test-inst-vm1-private
2025-09-11 13:54:45,292 vm.test-inst-vm1[253452]: Removing volume volatile: qubes_dom0/vm-test-inst-vm1-volatile
2025-09-11 13:54:45,292 vm.test-inst-vm1[253452]: Removing volume kernel: 6.17-rc5-1.1.fc41

@marmarek
Copy link
Member

Sep 11 13:12:32 untrusted kernel: CPU: 1 UID: 0 PID: 141 Comm: xenwatch Not tainted 6.17.0-0.rc5.1.qubes.1.fc41.x86_64 #1 PREEMPT(full)

Oh, sorry, you've got experimental kernel. Switch to stable one at least in VMs.

This was referenced Oct 1, 2025
Merged
Merged
Merged
Merged
Merged
Merged
Merged
Merged
Merged
This was referenced Oct 10, 2025
Merged
Merged
Merged
Merged
Open
Merged
Open
Merged
Merged
Open
Merged
Merged
Closed
Draft
This was referenced Oct 22, 2025
Merged
Merged
Merged
Open
Open
marmarek
marmarek approved these changes Oct 23, 2025
View reviewed changes
Copy link
Member

@marmarek marmarek left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I suspect this might not be necessary after fixing the kernel issue mentioned in the other PR, but since it isn't fixed yet, lets have it in

@marmarek marmarek merged commit e999264 into QubesOS:main Oct 23, 2025
3 of 5 checks passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@marmarek marmarek marmarek approved these changes

Assignees

No one assigned

Labels

openqa-pending

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

Preloaded disposable doesn't handle netvm changes when it is paused

3 participants

@ben-grande @marmarek @qubesos-bot