Ubuntu
linux-lts-utopic package

[Regression] Unprivileged containers fail to start in linux-lts-utopic

Bug #1487125 reported by Seth Forshee
16
This bug affects 3 people
Affects Status Importance Assigned to Milestone
linux-lts-utopic (Ubuntu)
Fix Released
Critical
Seth Forshee

Bug Description

== SRU Justification ==

Impact: linux-lts-utopic 3.16.0-46.62 contains a regression which prevents unprivileged containers from starting due to a failure mounting sysfs.

Fix: Backport of upstream commit f9bb48825a6b5d02f4cabcc78967c75db903dcdc, which is marked for stable but is missing from 3.16 stable. Another stable commit that did get into 3.16 requires this patch.

Regression potential: This patch is specifically targeted at unprivileged mounts of virtual filesystems in containers and fixes a regression there. It should have no impact on mounts in the host.

---

linux-lts-utopic 3.16.0-46.62 contains a regression mounting unprivileged containers. The log shows a failure mounting sysfs:

      lxc-start 20150427012246.807 ERROR lxc_conf - conf.c:lxc_mount_auto_mounts:819 - Operation not permitted - error mounting sysfs on /usr/lib/x86_64-linux-gnu/lxc/sys flags 14

This is due to missing upstream commit f9bb48825a6b5d02f4cabcc78967c75db903dcdc.

See original description
Seth Forshee (sforshee)
affects: linux (Ubuntu) → linux-lts-utopic (Ubuntu)
Seth Forshee (sforshee)
description: updated
Seth Forshee (sforshee)
description: updated
Luis Henriques (henrix)
Changed in linux-lts-utopic (Ubuntu):
status: In Progress → Fix Committed
Brad Figg (brad-figg)
tags: added: verification-needed-trusty
Revision history for this message
Anthony A. (y-ubuntf-r) wrote :

Same regression on Ubuntu Trusty 14.04.3

Start a LXC unprivileged fails on kernel 3.16.0-46 but work fine on 3.16.0-45

Revision history for this message
Anthony A. (y-ubuntf-r) wrote :

oops I changed inadvertently status and I can not undo the change

Changed in linux-lts-utopic (Ubuntu):
status: Fix Committed → Fix Released
Seth Forshee (sforshee)
Changed in linux-lts-utopic (Ubuntu):
status: Fix Released → Fix Committed
Revision history for this message
Seth Forshee (sforshee) wrote :

Verified that starting unprivileged containers with lxc is again working with 3.16.0-48.64 from proposed.

tags: added: verification-done-trusty
removed: verification-needed-trusty
Revision history for this message
Launchpad Janitor (janitor) wrote :

This bug was fixed in the package linux-lts-utopic - 3.16.0-48.64~14.04.1

---------------
linux-lts-utopic (3.16.0-48.64~14.04.1) trusty; urgency=low

  [ Luis Henriques ]

  * Release Tracking Bug
    - LP: #1487225

  [ Upstream Kernel Changes ]

  * sysfs: Create mountpoints with sysfs_create_mount_point
    - LP: #1487125

linux-lts-utopic (3.16.0-47.63~14.04.1) trusty; urgency=low

  [ Brad Figg ]

  * Release Tracking Bug
    - LP: #1485127

  [ Brad Figg ]

  * CONFIG: CONFIG_DELL_RBTN=m

  [ Upstream Kernel Changes ]

  * dell-rbtn: Dell Airplane Mode Switch driver
    - LP: #1440949
  * dell-rbtn: Export notifier for other kernel modules
  * dell-laptop: Use dell-rbtn instead i8042 filter when possible
  * net: Remove ndo_xmit_flush netdev operation, use signalling instead.
    - LP: #1454892
  * hyperv: Increase the buffer length for netvsc_channel_cb()
    - LP: #1454892
  * hyperv: Add support for vNIC hot removal
    - LP: #1454892
  * hyperv: fix sparse warnings
    - LP: #1454892
  * hv_netvsc: Implement batching in send buffer
    - LP: #1454892
  * hv_netvsc: Cleanup the test for freeing skb when we use sendbuf
    mechanism
    - LP: #1454892
  * hv_netvsc: Eliminate memory allocation in the packet send path
    - LP: #1454892
  * hv_netvsc: Fix the packet free when it is in skb headroom
    - LP: #1454892
  * hv_netvsc: Implement partial copy into send buffer
    - LP: #1454892
  * hv_netvsc: Fix a bug in netvsc_start_xmit()
    - LP: #1454892
  * Drivers: hv: vmbus: Suport an API to send packet with additional
    control
    - LP: #1454892
  * Drivers: hv: vmbus: Suport an API to send pagebuffers with additional
    control
    - LP: #1454892
  * Drivers: hv: vmbus: Export the vmbus_sendpacket_pagebuffer_ctl()
    - LP: #1454892
  * hv_netvsc: Use the xmit_more skb flag to optimize signaling the host
    - LP: #1454892

 -- Luis Henriques <email address hidden> Thu, 20 Aug 2015 23:10:28 +0100

Changed in linux-lts-utopic (Ubuntu):
status: Fix Committed → Fix Released
To post a comment you must log in.
This report contains Public information  
Everyone can see this information.
Subscribing...

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.