touch-packages team mailing list archive

Thread
Date

[Bug 1419554] Re: Can't upgrade procps in LXC 1.1

To: touch-packages@xxxxxxxxxxxxxxxxxxx
From: Stéphane Graber <stgraber@xxxxxxxxxxxx>
Date: Tue, 10 Feb 2015 21:26:11 -0000
Reply-to: Bug 1419554 <1419554@xxxxxxxxxxxxxxxxxx>
Sender: bounces@xxxxxxxxxxxxx

root@precise-procps:/root# cat /etc/sysctl.d/*.conf /etc/sysctl.conf | sysctl -e -p - || echo fail
error: "Read-only file system" setting key "kernel.printk"
net.ipv6.conf.all.use_tempaddr = 2
net.ipv6.conf.default.use_tempaddr = 2
error: "Read-only file system" setting key "kernel.kptr_restrict"
net.ipv4.conf.default.rp_filter = 1
net.ipv4.conf.all.rp_filter = 1
error: "Read-only file system" setting key "kernel.yama.ptrace_scope"
error: "Read-only file system" setting key "vm.mmap_min_addr"
fail

root@precise-procps:/root# ls
procps_3.2.8-11ubuntu6.4_amd64.deb
root@precise-procps:/root# dpkg -i procps_3.2.8-11ubuntu6.4_amd64.deb 
(Reading database ... 13317 files and directories currently installed.)
Preparing to replace procps 1:3.2.8-11ubuntu6.3 (using procps_3.2.8-11ubuntu6.4_amd64.deb) ...
Unpacking replacement procps ...
Setting up procps (1:3.2.8-11ubuntu6.4) ...
procps stop/waiting
Processing triggers for ureadahead ...
Processing triggers for libc-bin ...
ldconfig deferred processing now taking place

root@precise-procps:/root# cat /etc/sysctl.d/*.conf /etc/sysctl.conf | sysctl -e -p - || echo fail
error: "Read-only file system" setting key "kernel.printk"
net.ipv6.conf.all.use_tempaddr = 2
net.ipv6.conf.default.use_tempaddr = 2
error: "Read-only file system" setting key "kernel.kptr_restrict"
net.ipv4.conf.default.rp_filter = 1
net.ipv4.conf.all.rp_filter = 1
error: "Read-only file system" setting key "kernel.yama.ptrace_scope"
error: "Read-only file system" setting key "vm.mmap_min_addr"
root@precise-procps:/root# 

** Tags removed: verification-needed
** Tags added: verification-done-precise

-- 
You received this bug notification because you are a member of Ubuntu
Touch seeded packages, which is subscribed to procps in Ubuntu.
https://bugs.launchpad.net/bugs/1419554

Title:
  Can't upgrade procps in LXC 1.1

Status in procps package in Ubuntu:
  Fix Committed
Status in procps source package in Precise:
  Fix Committed
Status in procps source package in Trusty:
  Fix Committed
Status in procps source package in Utopic:
  Fix Committed
Status in procps source package in Vivid:
  Fix Committed

Bug description:
  == SRU ==
  Rationale:
   sysctl now fails with current LXC as files which shouldn't be written to in containers are read-only. A previous fix applied to the EACCESS case as returned by apparmor.

  Text case:
   start procps

  Regression potential:
   All EROFS write failures will now be ignored (an error is still logged) but I can't think of a case where that'd be a bad thing. 

  Original bug report:

  LXC 1.1 on vivid has started giving privileged containers a read-only
  /sys, which prevents Ubuntu's procps Upstart job from starting. This
  isn't normally too problematic, except that the weekend's procps SRU's
  postinst tries to start the job and causes the upgrade to fail.

  Disabling the procps postinst makes apt usable again.

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/procps/+bug/1419554/+subscriptions

References

[Bug 1419554] [NEW] Can't upgrade procps in LXC 1.1
From: William Grant, 2015-02-08