=== devil is now known as Guest8411
=== chihchun_afk is now known as chihchun
=== Guest8411 is now known as devil_
[07:28] <mup> PR snapd#2352 closed: tests: save/restore /snap/core/current symlink <Created by mvo5> <Merged by mvo5> <https://github.com/snapcore/snapd/pull/2352>
[07:50] <dholbach> good morning
[07:55] <zyga> good morning
[07:55] <didrocks> hey guys
[08:01] <foxmask> bonjello
[08:43] <longsleep> sergiusens: Hey do you have a minute? I have troube registering a key with snapcraft, only get "Key registration failed: The account-key-request assertion is not valid."
=== markusfluer_ is now known as markusfluer
[09:28] <zyga> ogra_: hey
[09:28] <zyga> ogra_: good morning, how are you?
[09:48] <ogra_> zyga, fine, whats up ?
[09:59] <longsleep> ogra_: hey i played around with snappy on the weekend and on my outdated Kernel 3.10 i get some apparmor denies from snap-confine - is there a list/instructions of what a Kernel needs to support nowadays?
[09:59] <longsleep> ogra_: The exact problem is [20615.733900] type=1400 audit(1480285192.166:21): apparmor="DENIED" operation="mount" info="failed mntpnt match" error=-13 profile="/usr/lib/snapd/snap-confine//mount-namespace-capture-helper" name="/run/snapd/ns/hello-world.mnt/" pid=2537 comm="snap-confine" srcname="/" flags="rw, bind" (essentially happens on running anything provided by a snap)
[10:03] <ogra_> longsleep, yeah, snapd uses namespaces now ... not sure what kernel feature you need there though
[10:03] <zyga> ogra_: hey, I have a question about bug ...
[10:03] <mup> PR snapd#2362 opened: daemon: ensure `snap try` installs core if its missing <Created by mvo5> <https://github.com/snapcore/snapd/pull/2362>
[10:03] <zyga> longsleep: hmm, I may be able to help with that
[10:03] <zyga> one sec
[10:03] <zyga> ogra_: do you recall this bug https://bugs.launchpad.net/snappy/+bug/1558944 ?
[10:03] <mup> Bug #1558944: modprobe.d directory is created in /etc/modprobe.d/ <Snappy:In Progress by zyga> <https://launchpad.net/bugs/1558944>
[10:04] <ogra_> zyga, yep
[10:04] <longsleep> ogra_: yeah i got user namespaces and stuff and lxc/lxd works just fine - this is Kernel 3.10 plus a lot of patches i did a while ago to get lxd running.
[10:05] <zyga> longsleep: this errors is about when snap-confine tries to capture the mount namespace via a bind mount on the nsnfs sfs file sye
[10:06] <zyga> longsleep: let me check the man page
[10:06] <zyga> longsleep: technically since 3.8
[10:07] <zyga> longsleep: but this is not kernel itself but apparmor on snap-confine
[10:07] <longsleep> zyga: Kernel config: https://github.com/longsleep/linux-pine64/blob/pine64-hacks-1.2/arch/arm64/configs/sun50iw1p1smp_linux_defconfig + https://github.com/longsleep/build-pine64-image/blob/snappy/snappy/kernel/snapcraft.yaml#L15-L20
[10:07] <zyga> longsleep: does that kernel have the full apaprmor patch set applied?
[10:07] <longsleep> zyga: yes
[10:07] <longsleep> zyga: not sure how exactly "full apparmor" is defined though
[10:07] <zyga> longsleep: hmmm, can you file a bug on launchpad.net/snap-confine with the kernel config and the patches applied (perhaps git gree), I can try to check it out
[10:08] <zyga> longsleep: thre are two branches that are in review that would let you run snap-confine without confinement that would perhaps unblock this
[10:08] <zyga> longsleep: you can try those out
[10:08] <longsleep> zyga: yes tonight when i am at home again - do you have a link?
[10:08] <zyga> longsleep: yes, just opening
[10:08] <ogra_> zyga, your bug is a duplicate of Bug 1638524
[10:08] <mup> Bug #1638524: /etc/modprobe.d adds one to much directory level <Snappy:Fix Released> <ubuntu-core-config (Ubuntu):Fix Released> <https://launchpad.net/bugs/1638524>
[10:09] <zyga> https://github.com/snapcore/snap-confine/tree/use-aa-support
[10:09] <zyga> rebuild snap-confine with this
[10:09] <zyga> and remove the apparmor profile entirely
[10:09] <zyga> ogra_: checking
[10:09] <longsleep> zyga: ok then it will run unconfined, this would help to know if that is the problem?
[10:10] <zyga> ogra_: thank you! :)
[10:10] <zyga> longsleep: yes
[10:10] <mup> Bug #1558944 changed: modprobe.d directory is created in /etc/modprobe.d/ <Snappy:In Progress by zyga> <https://launchpad.net/bugs/1558944>
[10:10] <Odd_Bloke> ogra_: Any advance on https://bugs.launchpad.net/snappy/+bug/1639878 ?  That's currently blocking us from publishing Ubuntu Core to Azure.
[10:10] <mup> Bug #1639878: pc-kernel.snap missing drivers necessary for Hyper-v <Snappy:New for ogra> <https://launchpad.net/bugs/1639878>
[10:11] <longsleep> zyga: if you scroll down a bit on https://github.com/longsleep/linux-pine64/commits/pine64-hacks-1.2?after=1od8aSrvwOrJAFEQq6ob8d%2FRHfIrMzQ%3D then you see what i merged for apparmor support back then
[10:11] <longsleep> (UBUNTU: SAUCE stuff)
[10:11] <longsleep> maybe its too old or something was added since april
[10:12] <zyga> longsleep: maybe, but I'm not a kernel expert, you'd have to check again
[10:12] <longsleep> zyga: yeah will do thanks!
[10:28] <mup> Bug #1645271 opened: User unable to disable service <Snappy:New> <https://launchpad.net/bugs/1645271>
[10:41] <ogra_> Odd_Bloke, on my TODO for this week
[10:42] <Odd_Bloke> ogra_: <3
[10:45] <ogra_> (this needs a bit per-arch love first, we dont want all these modules on arm images for example)
=== hikiko is now known as hikiko|ln
[11:50] <mup> PR snapd#2363 opened: snap: support "daemon: notify" in snap.yaml <Created by mvo5> <https://github.com/snapcore/snapd/pull/2363>
[11:54] <jamespage> morning all
[11:54] <gerry_> hello all, has anybody hear of an issue of using the jdk plugin with a java swing gui?
[11:54] <jamespage> is it possible to use the install from a snapcraft part as part of the build env for another?
[11:55] <jamespage> specifically I'd like to build libvirt-python (using the python module) against libvirt built in a previous part
[11:56] <jamespage> sergiusens, ^^ is that possible?
[11:59] <gerry_> I have been told that the jdk plugin is headless as I need the x11 server how do I cure this in my wrapper?
[12:09] <ahasenack> hi, is there a (trivial?) way to tell snapcraft cleanbuild to set a proxy for the lxd it creates?
[12:09] <ahasenack> I set a proxy for lxc, via lxc config, but that doesn't affect the ubuntu install running inside the lxd
[12:26] <mup> PR snapd#2362 closed: daemon: ensure `snap try` installs core if it's missing <Created by mvo5> <Merged by chipaca> <https://github.com/snapcore/snapd/pull/2362>
[12:29] <jamespage> oh wait - that might actually be happening already
[12:30] <gerry_> I have been told that the jdk plugin is headless could this be the reason why my java program crashes when I try to start it with sudo?
[12:41] <gerry_> how would I load a part which contains the jdk headers ?
=== hikiko|ln is now known as hikiko
[13:23] <gerry_> how do I do this? "If you only need to embed a Java runtime, add a part with the jdk type."
=== jamieben_ is now known as JamieBennett
[13:28] <zyga> gerry_: perhaps ask kyrofa or sergiusens when they are around or ask on the mailing list where others can google it easier
[13:31] <gerry_> zyga: thanks for the advice, on this list? snapcraft@lists.snapcraft.io
[13:33] <zyga> gerry_: yes, this one
[13:34] <zyga> gerry_: both of the gentelmen I mentioned are in US-ish timezones so it may be better if you are "far away" from them
[13:35] <gerry_> ok thank you very much for your help
=== chihchun is now known as chihchun_afk
=== jgrimm-out is now known as jgrimm
[14:04] <zyga> jdstrand: hey
[14:05] <zyga> jdstrand: are you around today?
[14:05] <jdstrand> zyga: hey, yes
[14:05] <jdstrand> I just got online
[14:06] <zyga> jdstrand: hey :)
[14:06] <zyga> jdstrand: how were your holildays?
[14:07] <zyga> jdstrand: I have a few things I'd like your input on
[14:07] <zyga> jdstrand: some are more trivial than others, I think the most important one is the XDG_RUNTIME_DIR design
[14:07] <jdstrand> zyga: they were pretty laid back but nice, thanks :) how was your weekend?
[14:07] <zyga> jdstrand: can you please ping me when you have the time to talk about that?
[14:07] <zyga> jdstrand: great, I was in a theme park with my family; lots of fun and memories :)
[14:07] <jdstrand> zyga: nice!
[14:08] <jdstrand> zyga: and sure-- it'll be a few minutes-- lots of pings and emails
[14:08] <zyga> jdstrand: no worries, same here :)
[14:08] <jdstrand> and by a few minutes, I mean a little while
[14:14] <mup> PR snapd#2364 opened: overlord: increase test timeout and improve failure message <Created by mvo5> <https://github.com/snapcore/snapd/pull/2364>
[14:59] <mup> PR snapd#2365 opened: interfaces: fix system-observe interface to work with ps_mem <Created by mvo5> <https://github.com/snapcore/snapd/pull/2365>
[15:02] <mup> PR snapcraft#930 opened: Parser support remote dependencies <Created by 3v1n0> <https://github.com/snapcore/snapcraft/pull/930>
=== devil is now known as Guest29760
[15:19] <alex-abreu> mvo, ping
[15:27] <mvo> alex-abreu: pong
[15:27] <alex-abreu> mvo, just a quick question, just wondering if me & david can be added to the snappy dev team?
[15:29] <mvo> alex-abreu: in github? or in LP ? or both?
[15:29] <alex-abreu> mvo, LP
[15:29] <mup> PR snapd#2366 opened: interfaces: apparmor support for classic confinement <Created by zyga> <https://github.com/snapcore/snapd/pull/2366>
[15:30] <mvo> alex-abreu: sure, done
[15:31] <alex-abreu> mvo, thank you
[15:40] <abeato> jdstrand, I am getting this error in the automated review of the ofono snap: "not allowed by 'deny-connection/on-classic' in base declaration declaration-snap-v2_slots_deny-connection (service, ofono)", is that happening because latest snapd is still not used by the store?
[15:40] <jdstrand> abeato: no, that is because there is no snap declaration for it
[15:41] <jdstrand> abeato: let me add one
[15:41] <abeato> jdstrand, ack, thanks
[15:44] <jdstrand> abeato: done. you can press the publish button now
[15:46] <abeato> jdstrand, nice!
[15:47] <abeato> and published :)
[15:50] <mup> PR snapcraft#931 opened: parser: add support for origin-{branch,commit,tag} <Created by 3v1n0> <https://github.com/snapcore/snapcraft/pull/931>
[16:02] <icey> is it possible to poke the CI to have it run again without a new push? ref: https://github.com/snapcore/snapcraft/pull/908
[16:02] <mup> PR snapcraft#908: Let Rust plugin fetch dependencies in pull <Created by ChrisMacNaughton> <https://github.com/snapcore/snapcraft/pull/908>
[16:03] <zyga> icey: you should be able to rerun travis tests, as for other CI, I don't know
[16:03] <icey> zyga: travis passes, autopkgtests failed
[16:03] <zyga> icey: AFAIK pitti was the one that set this up, I don't know how to restart that
[16:04] <pitti> icey: yes it is, you need the shared secret for that; mvo has it
[16:06] <pitti> sorry, snapcraft, not snapd -- that would be sergiusens
[16:09] <mup> Bug #1645377 opened: AppArmor policy error for networking at initialization, even with the correct network plug. <Snappy:New> <https://launchpad.net/bugs/1645377>
[16:10] <mterry> Poke about bug 1642669 -- it's preventing us from supporting snap installation in the unity8-session snap.  We're not sure this is supposed to work or if we should be using a different method of installation
[16:10] <mup> Bug #1642669: PolicyKit doesn't work inside snaps, preventing snap installation in unity8 <snapd-glib:Confirmed> <Snappy:New> <https://launchpad.net/bugs/1642669>
[16:17] <mup> PR snapd#2367 opened: store: fix mismatch for snap download hash mismatch error message <Created by mvo5> <https://github.com/snapcore/snapd/pull/2367>
[16:19] <mup> PR snapd#2354 closed: release: releasing package snapd version 2.18 <Created by mvo5> <Merged by mvo5> <https://github.com/snapcore/snapd/pull/2354>
[16:21] <mup> Bug #1645377 changed: AppArmor policy error for networking at initialization, even with the correct network plug. <snapd-interface> <Snappy:Invalid> <ubuntu-ui-toolkit-examples:New> <https://launchpad.net/bugs/1645377>
[16:23] <mup> PR snapd#2367 closed: store: fix mismatch for snap download hash mismatch error message <Created by mvo5> <Closed by mvo5> <https://github.com/snapcore/snapd/pull/2367>
[16:30] <zyga> jdstrand: will you be able to do a pass over snap-confine pull requests today?
[16:30] <mup> Bug #1592901 changed: gvfs confinement issues <snapd-interface> <verification-done> <Snappy:Fix Released by jdstrand> <https://launchpad.net/bugs/1592901>
[16:45] <flexiondotorg> zyga, I've tried build a deb of snapd locally and in a PPA>
[16:45] <flexiondotorg> It is failing :-(
[16:46] <flexiondotorg> debian/rules:67: recipe for target 'override_dh_auto_build' failed
[16:46] <flexiondotorg> Anything familiar about that?
[16:46] <flexiondotorg> I've tried a local build too, same issue.
[16:46] <flexiondotorg> I'd like to test some of my changes before submitting a pr.
[16:48] <longsleep> Is anyone here who might be able to help me to get a key registered at the store with snapcraft? I only get "Key registration failed: The account-key-request assertion is not valid."
[16:59] <zyga> flexiondotorg: you need to run govendor AFAIK, look at how debian/gbp.conf file please
[17:00] <flexiondotorg> zyga, OK. I'll double check.
[17:00] <flexiondotorg> Thanks.
[17:28] <mhall119> oSoMoN: would you be willing to make a blog post about what you posted on G+ re: ubuntu-app-platform snap?
[17:30] <oSoMoN> mhall119, I don’t mind, where would that be published?
[17:34] <mhall119> developer.ubuntu.com would be appropriate for that
[17:34] <mhall119> do you have editor access to it?
[17:43] <mup> Bug #1645407 opened: interface required: network namespace management <neutron> <snapd-interface> <snap-nova-hypervisor:New> <Snappy:New> <https://launchpad.net/bugs/1645407>
[17:46] <mup> PR snapd#2368 opened: tests: parameterize remote store <Created by fgimenez> <https://github.com/snapcore/snapd/pull/2368>
[17:49] <mup> Bug #1645410 opened: interface required: openvswitch <snapd-interface> <snap-nova-hypervisor:New> <Snappy:New> <https://launchpad.net/bugs/1645410>
[17:58] <mup> Bug #1645413 opened: gvfs confinement issues (directory listing) <Snappy:New> <https://launchpad.net/bugs/1645413>
=== Guest29760 is now known as devil_
=== pmcg1 is now known as pmcgowan
[18:06] <oSoMoN> mhall119, I don’t think so
[18:16] <zyga> jdstrand: any chance for some reviews/chat?
[18:17] <jdstrand> zyga: I'm moving to that now
[18:17] <zyga> jdstrand: great, I'll be here for a few more hours
[18:22] <mup> Bug #1645407 changed: interface required: network namespace management <neutron> <snapd-interface> <snap-nova-hypervisor:Triaged> <Snappy:New> <https://launchpad.net/bugs/1645407>
[18:35] <mup> PR snapcraft#932 opened: Implement `enable-ci travis --refresh` command <Created by cprov> <https://github.com/snapcore/snapcraft/pull/932>
[19:07] <mup> Bug #1645445 opened: Turtlebot needs /dev/kobuki <snapd-interface> <Snappy:New> <https://launchpad.net/bugs/1645445>
[19:24] <mhall119> oSoMoN: you should be able to login at https://developer.ubuntu.com/openid/login/ now
[19:24] <mhall119> go to (menu at the top) Zinnia->New Entry
[19:24] <mhall119> and include the categories English and Article
[19:25] <mhall119> ping me if you need help, the interface can be confusing
[19:58] <longsleep> zyga: added bug https://bugs.launchpad.net/snap-confine/+bug/1645457, going to give https://github.com/snapcore/snap-confine/tree/use-aa-support a shot now
[19:58] <mup> Bug #1645457: cannot bind-mount the mount namespace file on Kernel 3.10 <Snappy Launcher:New> <https://launchpad.net/bugs/1645457>
=== JanC_ is now known as JanC
[20:07] <zyga> longsleep: ok
[20:11] <zyga> jdstrand: I'd like to land https://github.com/snapcore/snap-confine/pull/197/files
[20:11] <mup> PR snap-confine#197: Fix spread tests preventing Ubuntu 16.04 i386 from passing <Created by zyga> <https://github.com/snapcore/snap-confine/pull/197>
[20:11] <zyga> jdstrand: unless you want to spend some time reviweing it in detail I'll just merge it
[20:16] <longsleep> zyga: mhm - seems i cannot cross compile snap-confine for arm64 :/ 'no package 'glib-2.0' found
[20:17] <longsleep> zyga: any idea if i could do that somehow on the device even when snap-confine does not work?
[20:17] <zyga> longsleep: you probably need all the build-deps cross compiled
[20:17] <longsleep> zyga: yeah :/
[20:17] <zyga> longsleep: aka get the aarch64 version of them
[20:17] <zyga> longsleep: (it's pretty easy)
[20:17] <zyga> longsleep: if you don't know how to do that just build it natively on arm
[20:17] <longsleep> zyga: yes but i do not have enough disk space on my laptop :)
[20:17] <zyga> longsleep: install the classic snap
[20:17] <zyga> longsleep: no, I mean, you can just get them from the archive
[20:18] <zyga> longsleep: add arm64 arch to your apt sources
[20:18] <longsleep> zyga: yes but i have to install them - and rootfs is pretty much full :(
[20:18] <zyga> though I don't cross compile on arm often
[20:18] <zyga> longsleep: well, just wait then, I'll sort things out :)
[20:18] <longsleep> i can do it on arm64 - if i can install and run classic on my half working snappy install
[20:19] <zyga> longsleep: your shell is unconfined, remember that
[20:20] <jdstrand> zyga: looks fine to me
[20:20] <longsleep> zyga: yes but how to switch to classic now?
[20:20] <longsleep> root@localhost:~# classic
[20:20] <longsleep> cannot bind-mount the mount namespace file /proc/3965/ns/mnt -> classic.mnt. errmsg: Permission denied
[20:21] <longsleep> chicken egg problem?
[20:21] <zyga> longsleep: classic is a snap, you don't need it if you have a rootfs
[20:21] <zyga> longsleep: just do it manually
[20:22] <zyga> longsleep: but again, if you don't want to figure out the chain of things that are required to check a potential fix then please just wait
[20:22] <longsleep> zyga: well i want to learn details as much as possible - so if i can figure out things without asking too many stupid questions then i will continue
[20:23] <zyga> longsleep: I'm happy to give you the answers if you want to dig deeper
[20:24] <longsleep> zyga: awesome ! so i did not follow you above, what do you mean "do it manually" if i have a rootfs?
[20:24] <zyga> https://github.com/zyga/devtools/blob/master/classic.sh
[20:24] <longsleep> zyga: i mean i can download arm64 rootfs and chroot into it - somehting like that?
[20:24] <zyga> I didn't try it for a while
[20:24] <zyga> but that did do the trick before
[20:25] <longsleep> zyga: ah cool, let me try
[20:25] <zyga> and it can be used to learn what it takes to have "classic"
[20:27] <longsleep> zyga: looks about right and pretty much what i had done now manually
[20:30] <mup> PR snapd#2350 closed: tests: include /boot in saved state (including bootenv and any kernels) <Created by mvo5> <Merged by zyga> <https://github.com/snapcore/snapd/pull/2350>
[21:48] <longsleep> zyga: so i got snap-confine compiled, any suggestion on how to replace it now for testing?
[22:30] <longsleep> zyga: i probably did something wrong, but the self-compiled snap-confine from use-aa-support branch segfaults when running it like /root/xenial/root/snap-confine/src/snap-confine snap.hello-world.env /snap/hello-world/27/bin/env
[22:30] <longsleep> Segmentation fault
[23:26] <mup> PR snapd#2348 closed: debian/rules: build with -buildoptions=pie <Created by chipaca> <Merged by chipaca> <https://github.com/snapcore/snapd/pull/2348>