snapd

snapd udev rules are incompatible with unified cgroup hierarchy

Bug #1678342 reported by Neal Gompa on 2017-04-01

This bug report is a duplicate of: Bug #1801664: Snapd fails to work in pure v2 cgroup system. Edit Remove

10

This bug affects 1 person

Affects		Status	Importance	Assigned to	Milestone
	snapd	Triaged	High	Zygmunt Krynicki
	snapd (Fedora)	In Progress	Undecided	redhat-bugs #1438079

Bug Description

snapd / snap-confine currently assume that the legacy CGroup hierarchy is used, however the new unified CGroup hierarchy is coming and is incompatible with the udev hooks currently distributed with the snap-confine aspect of Snappy.

Tags:

Revision history for this message

In Red Hat Bugzilla #1438079, Zbigniew (zbigniew-redhat-bugs) wrote on 2017-03-31:

#3

Description of problem:
It's not something that matters much right now, but as people will be moving to unified cgroup hierarchy, this will matter more.
/usr/lib/udev/snappy-app-dev hardcodes paths which are specific to legacy hierarchy (and assumes that devices controller is mounted...).

Version-Release number of selected component (if applicable):
snapd-2.23.6-1.fc27

Expected results:
All code which touches cgroups is ready for legacy and unified hierarchies.

Revision history for this message

In Red Hat Bugzilla #1438079, Zbigniew (zbigniew-redhat-bugs) wrote on 2017-03-31:

#4

The udev rules are in snap-confine-2.23.6-1.fc26.x86_64.rpm actually.

Revision history for this message

In Red Hat Bugzilla #1438079, Zbigniew (zbigniew-redhat-bugs) wrote on 2017-03-31:

#5

So there's snap-confine in dist git, but snap-confine is now built from snapd. Confusing!

Revision history for this message

Zygmunt Krynicki (zyga) wrote on 2017-04-03:

#1

Thanks for reporting this issue. As you seem to know more about this than I do, can you tell me how the new cgroup hierarchy works? Snapd has very modest requirements wrt control groups, it merely wants to create a new device control group in specific conditions. We don't care (particularly) about much else, apart from the fact that a process is placed there and that we can put certain devices there.

Changed in snappy:
importance:	Undecided → High
assignee:	nobody → Zygmunt Krynicki (zyga)
status:	New → Incomplete

Revision history for this message

Neal Gompa (ngompa13) wrote on 2017-04-03:

#2

@Zygmunt, I have no idea. I just forwarded the bug on from Red Hat Bugzilla. You'll want to ask Zbigniew Jędrzejewski-Szmek in the linked bug.

Simon Fels (morphis) on 2017-04-03

tags:

added: cross-distro

Revision history for this message

In Red Hat Bugzilla #1438079, Zygmunt (zygmunt-redhat-bugs) wrote on 2017-04-04:

#6

Thank you for the bug report. We will look at solving this!

Zygmunt Krynicki (zyga) on 2017-04-04

Changed in snappy:
status:	Incomplete → Triaged

Zygmunt Krynicki (zyga) on 2017-08-18

no longer affects:	snap-confine
Changed in snapd:
status:	New → Triaged
importance:	Undecided → High
assignee:	nobody → Zygmunt Krynicki (zyga)
Changed in snappy:
assignee:	Zygmunt Krynicki (zyga) → nobody
no longer affects:	snappy

Bug Watch Updater (bug-watch-updater) on 2017-10-27

Changed in snapd (Fedora):
importance:	Unknown → Undecided
status:	Unknown → In Progress

Report a bug

This report contains Public information

Everyone can see this information.

Duplicate of bug #1801664 Remove

You are

Subscribing...

Edit bug mail

Other bug subscribers

Remote bug watches

redhat-bugs #1438079
[ON_QA] Edit

Bug watches keep track of this bug in other bug trackers.