[Bug 1878225] Re: snapd.seeded.service waits forever (?) to have snaps seeded in LXD on s390x and arm64

Stéphane Graber 1878225 at bugs.launchpad.net
Fri Jun 26 03:31:44 UTC 2020 

AppArmor mount rules have had a lot of issues in the past (and still do)
depending on the version of kernel, the parser and the exact rule. If
you want an easy way out of this, setting `raw.apparmor=mount,` on your
container will almost certainly get such issues to disappear.

LXD 4.0 has a number of tweaks in the rules to workaround a bunch of those issues.
It's a trick we can do on unprivileged containers as we don't rely on apparmor for security there, for privileged containers, we don't get to do the same and so our policy is quite a bit more strict.

-- 
You received this bug notification because you are a member of Ubuntu
Foundations Bugs, which is subscribed to autopkgtest in Ubuntu.
https://bugs.launchpad.net/bugs/1878225

Title:
  snapd.seeded.service waits forever (?) to have snaps seeded in LXD on
  s390x and arm64

Status in Auto Package Testing:
  New
Status in autopkgtest package in Ubuntu:
  New
Status in lxd package in Ubuntu:
  Incomplete
Status in snapd package in Ubuntu:
  Confirmed

Bug description:
  lxc launch ubuntu-daily:groovy gg-test
  lxc shell gg-test
  root at gg-test:~# service snapd.seeded status
  ● snapd.seeded.service - Wait until snapd is fully seeded
       Loaded: loaded (/lib/systemd/system/snapd.seeded.service; enabled; vendor preset: enabled)
       Active: activating (start) since Tue 2020-05-12 14:14:52 UTC; 30min ago
     Main PID: 249 (snap)
        Tasks: 10 (limit: 4704)
       Memory: 11.3M
       CGroup: /system.slice/snapd.seeded.service
               └─249 /usr/bin/snap wait system seed.loaded

  May 12 14:14:52 gg-test systemd[1]: Starting Wait until snapd is fully
  seeded...

  root at gg-test:~# systemctl list-jobs 
  JOB UNIT                                 TYPE  STATE  
  132 systemd-update-utmp-runlevel.service start waiting
  119 cloud-config.service                 start waiting
  122 snapd.seeded.service                 start running
  2   multi-user.target                    start waiting
  115 cloud-init.target                    start waiting
  1   graphical.target                     start waiting
  138 snapd.autoimport.service             start waiting
  121 cloud-final.service                  start waiting

  8 jobs listed.

  root at gg-test:~# journalctl -a | pastebinit
  https://paste.ubuntu.com/p/PtdcvvdKCM/

To manage notifications about this bug go to:
https://bugs.launchpad.net/auto-package-testing/+bug/1878225/+subscriptions

More information about the foundations-bugs mailing list