[Bug 2059730] Re: Focal 5.15 kernel apparmor mismatch missing snap_validate_preseed functionality in livecd-rootfs

Philip Roche 2059730 at bugs.launchpad.net
Tue Apr 2 16:00:37 UTC 2024 

Focal livecd-rootfs `2.664.53` with these proposed changes now in upload
queue
https://launchpad.net/ubuntu/focal/+queue?queue_state=1&queue_text=livecd-
rootfs

-- 
You received this bug notification because you are a member of Ubuntu
Foundations Bugs, which is subscribed to livecd-rootfs in Ubuntu.
https://bugs.launchpad.net/bugs/2059730

Title:
  Focal 5.15 kernel apparmor mismatch missing snap_validate_preseed
  functionality in livecd-rootfs

Status in livecd-rootfs package in Ubuntu:
  New

Bug description:
  kernel bug

  https://bugs.launchpad.net/ubuntu/+source/linux/+bug/2045384

  introduced an apparmor change to the 5.15. This rolled down to the
  Focal HWE 5.15 kernel, causing failures to properly snap seed

  The original functionality was added into ubuntu/master and
  ubuntu/jammy with this bug:

  https://bugs.launchpad.net/ubuntu/+source/livecd-rootfs/+bug/2015596

  which happened during the HWE roll to the 5.19 kernel. There was an
  assumption that a breaking change like this would not affect Focal, as
  rolls were done. However, 2045384 shows that this is not necessarily
  true.

  To fix 2045384, a backport to focal of the functionality in
  snap_validate_seed allowing matching on kernel version, and the
  creation of kernel specific directories is required

  [ Impact ]

  Boot will be slowed by ~200ms until this is resolved in livecd-rootfs

  [ Test Plan ]

   * for focal build any cloud image with preseeded snaps with HWE 5.15 kernel
   * boot
   * run `snap debug seeding`
   * assert the test described above passes

  [ Where problems could occur ]

   * Similar patches already exist for later releases 6.2, 6.5 kernel
  etc. and have been used on other private customer kernels and all
  kernels released after 22.04, so there is already a good track record
  for this patchset and it shouldn't create any issues.

  [ Other Info ]

   * This is a time-sensitive issue for a paying customer

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/livecd-rootfs/+bug/2059730/+subscriptions

More information about the foundations-bugs mailing list