[Touch-packages] [Bug 1433584] Re: Version 0.82.1ubuntu2.1 breaks unattended upgrades on unprivileged Docker containers
*** This bug is a duplicate of bug 1422345 *** https://bugs.launchpad.net/bugs/1422345 ** This bug has been marked a duplicate of bug 1422345 stop being nice does not work -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to unattended-upgrades in Ubuntu. https://bugs.launchpad.net/bugs/1433584 Title: Version 0.82.1ubuntu2.1 breaks unattended upgrades on unprivileged Docker containers Status in unattended-upgrades package in Ubuntu: New Bug description: Since update of the unattended-upgrades package to version 0.82.1ubuntu2.1, unprivileged Docker containers cannot properly perform unattended upgrades anymore. They fail with the following error message: = Traceback (most recent call last): File "/usr/bin/unattended-upgrade", line 1186, in main(options) File "/usr/bin/unattended-upgrade", line 993, in main os.nice(-19) PermissionError: [Errno 1] Operation not permitted = This is due to the fact that the script tries to set a negative nice value, which is by default not allowed on unprivileged Docker containers. In previous package versions, the script was trying to set a nice value of 0, which was allowed. To solve this issue, two solutions could be considered: - The unattended-upgrades package should remain using a nice value of 0 - The containers should be started with the "--cap-add=CAP_SYS_NICE" option. Unfortunately, it is not possible to add this capability to running containers. More information: # lsb_release -rd Description:Ubuntu 14.04.1 LTS Release:14.04 # apt-cache policy unattended-upgrades unattended-upgrades: Installed: 0.82.1ubuntu2.1 Candidate: 0.82.1ubuntu2.1 Version table: *** 0.82.1ubuntu2.1 0 500 http://ubunturepo/ trusty-updates/main amd64 Packages 100 /var/lib/dpkg/status 0.82.1ubuntu2 0 500 http://ubunturepo/ trusty/main amd64 Packages To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/unattended-upgrades/+bug/1433584/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
[Touch-packages] [Bug 1433584] Re: Version 0.82.1ubuntu2.1 breaks unattended upgrades on unprivileged Docker containers
Should be fixed with 0.82.8ubuntu0.2 https://bugs.launchpad.net/ubuntu/+source/unattended-upgrades/+bug/1422345 -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to unattended-upgrades in Ubuntu. https://bugs.launchpad.net/bugs/1433584 Title: Version 0.82.1ubuntu2.1 breaks unattended upgrades on unprivileged Docker containers Status in unattended-upgrades package in Ubuntu: New Bug description: Since update of the unattended-upgrades package to version 0.82.1ubuntu2.1, unprivileged Docker containers cannot properly perform unattended upgrades anymore. They fail with the following error message: = Traceback (most recent call last): File "/usr/bin/unattended-upgrade", line 1186, in main(options) File "/usr/bin/unattended-upgrade", line 993, in main os.nice(-19) PermissionError: [Errno 1] Operation not permitted = This is due to the fact that the script tries to set a negative nice value, which is by default not allowed on unprivileged Docker containers. In previous package versions, the script was trying to set a nice value of 0, which was allowed. To solve this issue, two solutions could be considered: - The unattended-upgrades package should remain using a nice value of 0 - The containers should be started with the "--cap-add=CAP_SYS_NICE" option. Unfortunately, it is not possible to add this capability to running containers. More information: # lsb_release -rd Description:Ubuntu 14.04.1 LTS Release:14.04 # apt-cache policy unattended-upgrades unattended-upgrades: Installed: 0.82.1ubuntu2.1 Candidate: 0.82.1ubuntu2.1 Version table: *** 0.82.1ubuntu2.1 0 500 http://ubunturepo/ trusty-updates/main amd64 Packages 100 /var/lib/dpkg/status 0.82.1ubuntu2 0 500 http://ubunturepo/ trusty/main amd64 Packages To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/unattended-upgrades/+bug/1433584/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
[Touch-packages] [Bug 1422345] Re: stop being nice does not work
I can confirm, worked fine in my LXC containers. -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to unattended-upgrades in Ubuntu. https://bugs.launchpad.net/bugs/1422345 Title: stop being nice does not work Status in unattended-upgrades package in Ubuntu: Fix Released Status in unattended-upgrades source package in Trusty: Fix Committed Status in unattended-upgrades source package in Utopic: Fix Committed Status in unattended-upgrades package in Debian: New Bug description: Test Case - 1) Install apache2 from the -release pocket 2) Run unattended-upgrades 3) Observe apache2 running with a niceness of 19 4) Downgrade apache2 to the version from the -release pocket 5) Install the version of unattended-upgrades from -proposed 6) Run unattended-upgrades 7) Observe apache2 running with a niceness of 0 i.e. no niceness Since version 0.81, unattended-upgrades does the upgrade calculation with os.nice(19). To finish the nice block in /usr/bin/unattended-upgrade, the following call is used: os.nice(0) Since the argument is interpreted as incremental, this should be: os.nice(-19) Without this fix, this problem is back: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=701850 "unattended-upgrades: nice 19/ionice idle inherited by restarted processes" Found in the trusty version (0.82.1ubuntu2), but probably in any version (including Debian) since 0.81. To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/unattended-upgrades/+bug/1422345/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
