← Back to team overview

touch-packages team mailing list archive

  1. touch-packages team
  2. Mailing list archive
  3. Message #110504

[Bug 1502604] Re: autopkgtests fail in LXC testbed

  Thread PreviousDate PreviousThread Next 
Note that this _only_ affects trusty.  All kernels in trusty are
affected.  linux-lts-vivid in trusty shows this behaviour where as linux
in vivid does not, as these are essentially identical it seems most
likely this is either an lxc profile issue or an appparmor userspace
issue.

-- 
You received this bug notification because you are a member of Ubuntu
Touch seeded packages, which is subscribed to lxc in Ubuntu.
https://bugs.launchpad.net/bugs/1502604

Title:
  autopkgtests fail in LXC testbed

Status in Auto Package Testing:
  Triaged
Status in lxc package in Ubuntu:
  Triaged

Bug description:
  This spawned from
  https://plus.google.com/u/0/+MartinPitti/posts/JE8be51XRZy : lxc's
  autopkgtests currently fail on armhf/ppc64el where we run autopkgtests
  in an LXC container
  (http://autopkgtest.ubuntu.com/packages/l/lxc/wily/armhf/).

  The testbeds use a custom and more liberal apparmor profile than the
  default LXC one (see http://bazaar.launchpad.net/~auto-package-
  testing-dev/auto-package-testing/trunk/view/head:/slave-admin/setup-
  adt-lxc.commands):

  profile lxc-container-adt flags=(attach_disconnected,mediate_deleted) {
    #include <abstractions/lxc/container-base>
    #include <abstractions/lxc/start-container>

    # Nesting
    mount fstype=cgroup -> /sys/fs/cgroup/**,
    mount fstype=proc -> /var/cache/lxc/**,
    mount fstype=sysfs -> /var/cache/lxc/**,
    mount options=(rw,bind) /var/cache/lxc/**/dev/shm/ -> /var/cache/lxc/**/run/shm/,

    # Required for lxc-tests
    mount options=(rw,bind) /lib/** -> /var/lib/lxc**,
    mount options=(rw,rbind) /var/lib/lxcsnaps/** -> /var/lib/lxcsnaps/**,

    # Allow containers to mount /proc, e. g. for sbuild/pbuilder tests
    mount options=(rw,bind),
    mount fstype=devpts,
    mount fstype=proc,
    mount fstype=sysfs,
  }

  But with just this they hang eternally and time out, and there are
  also some test failures.

  Reproducer: (tested on wily amd64):

    adt-build-lxc ubuntu wily
    echo "lxc.aa_profile = unconfined" | tee -a /var/lib/lxc/adt-wily/config
    adt-run lxc --- lxc -s adt-wily

To manage notifications about this bug go to:
https://bugs.launchpad.net/auto-package-testing/+bug/1502604/+subscriptions

References

  Thread PreviousDate PreviousThread Next