snapd fails on old kernel apparmor, runtime detection needed
Bug #1591148 reported by
Federico Gimenez
This bug affects 10 people
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
snapd |
Fix Released
|
High
|
Unassigned |
Bug Description
A Linode instance of Ubuntu using the stock Linode kernel does not work with snapd as snapd assumes the ubuntu kernel (when os-release says it is ubuntu) and uses apparmor features otherwise not available.
There are several issues here:
- branding !ubuntu as ubuntu
- running on apparmor system that is not supporting new constructs
- using runtime detection (across snapd+snap-confine) rather than compile-time or simplified (which distro + release) checks
tags: | added: security |
description: | updated |
no longer affects: | snappy |
Changed in snapd: | |
status: | New → Confirmed |
summary: |
- snap install fails with a kernel lacking apparmor support + snapd fails on old kernel apparmor, runtime detection needed |
Changed in snapd: | |
importance: | Undecided → High |
To post a comment you must log in.
This also comes with an additional impact on the Store.
Linode instances trying to refresh core from r888 to r1079 (amd64), will systematically fail every 6h after downloading the core blob (70MB), no cache or failure limits, it will keep retrying, e.g.:
https:/ /pastebin. canonical. com/179859/