release-2.42.5 : lp:~mvo/snapd/+git/snapd-mvo : Git : Code : snapd

Get this branch:: git clone -b release-2.42.5 https://git.launchpad.net/~mvo/snapd/+git/snapd-mvo

Branch merges

Branch information

Name:: release-2.42.5

Repository:: lp:~mvo/snapd/+git/snapd-mvo

Recent commits

6b244b5... by Michael Vogt on 2019-12-06

Merge remote-tracking branch 'upstream/master' into release-2.42.5

4adc1b4... by Michael Vogt on 2019-12-06

releasing package snapd version 2.42.5

ce2454b... by Jamie Strandboge on 2019-12-06

snap-confine: revert, with comment, explicit unix deny for nested lxd

While snap-confine itself doesn't require unix rules and therefore all
unix rules are implicitly denied, adding an explicit deny for unix to
silence noisy denials breaks nested lxd when it shouldn't:

  $ sudo snap install lxd
  $ sudo lxd init
  $ sudo lxc launch ubuntu:18.04 c1 -c security.nesting=true
  $ lxc exec c1 -- snap install lxd
  error: cannot perform the following tasks:
  - Start snap "lxd" (12631) services ([start snap.lxd.activate.service]
    failed with exit status 1: Job for snap.lxd.activate.service failed
    because the control process exited with error code.

Until the cause is determined, do not use an explicit deny for unix.

Reference:
- https://bugs.launchpad.net/snapd/+bug/1855355

c5c53ed... by Michael Vogt on 2019-12-06