As requested by mvo above, this bug is now the MIR for squashfuse. The same package is in zesty, yakkety and xenial so the result of the review should apply equally to all series.
## Paperwork Availability: in universe in all relevant series Rationale: required for snapd inside LXD containers Security: No bugs reported against package in Ubuntu or security related issues on Github Quality assurance: - Packaging standard for a fuse filesystem - No debconf questions - No bugs - No bugs - Looked at in Ubuntu (never updated but was SRUed to all releases) - Not hardware dependent - No upstream testsuite, the plan is to have snapd tested inside LXD as part of snapd autopkgtest, which will indirectly exercise squashfuse - Has a watch file UI: No UI Dependencies: Depends on a bunch of compression libraries, all in main Standards compliance: compliant Maintenance: - Ubuntu Server team subscribed to LP bugs Background information: - Needed for snaps inside LXD containers where using the kernel "squashfs" isn't possible (denied for unprivileged users). Security: - No existing CVE or other security report for squashfuse - No suid/sgid binaries - Code will run as "root" in the case of LXD but doesn't have to, and "root" in the case of LXD means root inside a user namespace, so effectively an unprivileged user on the host. -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1628289 Title: snapd should depend on squashfuse (for use in containers) To manage notifications about this bug go to: https://bugs.launchpad.net/snappy/+bug/1628289/+subscriptions -- ubuntu-bugs mailing list [email protected] https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
