Hi,
Op 23-05-2024 om 16:08 schreef Quentin Schulz via lists.yoctoproject.org:
Hi Michael,
On 5/23/24 10:45 AM, Michael Opdenacker wrote:
On 5/21/24 at 16:31, Etienne Cordonnier via lists.yoctoproject.org wrote:
The way I see to patch this at the moment is to print instructions
for the users to run this command manually when this specific error
happens (we can't run it automatically as part of bitbake since it
needs sudo, and also it decreases the security on the machine
so end-users should be aware of it). I can send a patch if you want,
but this isn't really a clean solution.
Ubuntu 24.04 is not yet supported by yocto officially, and I hope the
Ubuntu bug will be fixed before yocto officially supports 24.04. What
people could do to help at this point is add themselves to the Ubuntu
launchpad bug as "affected user". This would raise the "Bug heat"
score and hopefully will increase the bug priority as well.
Right, I don't know how to document a workaround for a version that we
don´t support yet.
True, I was being overly optimistic :) I assume we'll support 24.04 at
some point. The issue I foresee is that some people have a tendency of
not upgrading their systems, so... even if Canonical fixes their own
stuff in upgrades, we may still need to document it?
I think it's a Ubuntu bug, they have it on launchpad and discourse. And
they should fix it quickly. I the mean time I found adding a file
/etc/apparmor.d/bitbake with
abi <abi/4.0>,
include <tunables/global>
/home/**/bitbake/bin/bitbake flags=(unconfined) {
userns,
}
fixes the issue permanently. Likely punches a security hole as any user
can create a program "bitbake", but can't be worse than 'apparmor_parser
-R /etc/apparmor.d/unprivileged_userns'.
What about a wiki page for work-arounds on not-supported-yet versions?
That's something we could refer to in the documentation.
I'd be very happy if we don't mention the wiki page, nobody maintains
that sadly (or let's say, not as much as yocto-docs :) ), and we
had/have heavily outdated information there. For the time being, we
could have it in the wiki yes, hopefully web search engine would return
it when looking up for the error message/keywords, but I would try not
to add a link to the docs. Once we support 24.04, then we could document
it somehow in a note/warning/info pane?
Cheers,
Quentin
-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.
View/Reply Online (#63361): https://lists.yoctoproject.org/g/yocto/message/63361
Mute This Topic: https://lists.yoctoproject.org/mt/106749109/21656
Group Owner: yocto+ow...@lists.yoctoproject.org
Unsubscribe: https://lists.yoctoproject.org/g/yocto/unsub
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-
