Public bug reported:
[impact]
in a container, haveged won't run, and if it does run, it fails
with 1.9.1 or earlier, the service includes
ConditionVirtualization=!container which prevents running inside a
container
with 1.9.8 or later, this is removed, but the package still has -w 1024
in the /etc/default/haveged which tries to write to
/proc/sys/kernel/random/write_wakeup_threshold, which fails inside a
container and causes haveged to exit with error
[test case]
check haveged service output:
with 1.9.1:
$ systemctl status haveged | grep -i condition
Condition: start condition failed at Tue 2020-09-08 16:51:39 UTC; 25min ago
Sep 08 16:51:39 haveged-f systemd[1]: Condition check resulted in Entropy
daemon using the HAVEGE algorithm being skipped.
with 1.9.8:
$ systemctl status haveged
● haveged.service - Entropy Daemon based on the HAVEGE algorithm
Loaded: loaded (/lib/systemd/system/haveged.service; enabled; vendor
preset: enabled)
Active: failed (Result: exit-code) since Tue 2020-09-08 16:22:11 UTC;
55min ago
Docs: man:haveged(8)
http://www.issihosts.com/haveged/
Process: 1510 ExecStart=/usr/sbin/haveged --Foreground --verbose=1
$DAEMON_ARGS (code=exited, status=1/FAILURE)
Main PID: 1510 (code=exited, status=1/FAILURE)
Sep 08 16:22:11 haveged-g systemd[1]: haveged.service: Scheduled restart job,
restart counter is at 5.
Sep 08 16:22:11 haveged-g systemd[1]: Stopped Entropy Daemon based on the
HAVEGE algorithm.
Sep 08 16:22:11 haveged-g systemd[1]: haveged.service: Start request repeated
too quickly.
Sep 08 16:22:11 haveged-g systemd[1]: haveged.service: Failed with result
'exit-code'.
Sep 08 16:22:11 haveged-g systemd[1]: Failed to start Entropy Daemon based on
the HAVEGE algorithm.
[regression potential]
any regression would likely involve haveged failing to start and/or run.
[scope]
TBD
** Affects: haveged (Ubuntu)
Importance: Low
Assignee: Dan Streetman (ddstreet)
Status: In Progress
** Affects: haveged (Ubuntu Groovy)
Importance: Low
Assignee: Dan Streetman (ddstreet)
Status: In Progress
** Also affects: haveged (Ubuntu Groovy)
Importance: Undecided
Status: New
** Changed in: haveged (Ubuntu Groovy)
Assignee: (unassigned) => Dan Streetman (ddstreet)
** Changed in: haveged (Ubuntu Groovy)
Importance: Undecided => Low
** Changed in: haveged (Ubuntu Groovy)
Status: New => In Progress
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1894877
Title:
haveged doesn't run in container
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/haveged/+bug/1894877/+subscriptions
--
ubuntu-bugs mailing list
ubuntu-bugs@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
