[02:28] <mup> PR snapd#10147 closed: browser-support: Allow firefox to run correctly under wayland <Created by alexmurray> <Closed by alexmurray> <https://github.com/snapcore/snapd/pull/10147>
[05:41] <mborzecki> morning
[06:05] <zyga> good morning
[06:34] <mborzecki> zyga: hey
[06:34] <zyga> mborzecki o/
[06:34] <zyga> mborzecki I see snow outside
[06:35] <mborzecki> zyga: (un)lucky you
[06:35] <mborzecki> it's just rain here
[07:02] <pstolowski> morning!
[07:12] <mborzecki> pstolowski: hey, welcome back!
[07:17] <pstolowski> hey, glad to be back :)
[07:17]  * pstolowski needs to reboot
[07:30] <mvo> pstolowski: good morning! great that you are back
[07:30] <pstolowski> hey mvo !
[07:41] <mborzecki> mvo: hey
[09:25] <mup> PR snapd#10140 closed: boot, overlord/devicestate: consider gadget command lines when updating boot config <Run nested> <Created by bboozzoo> <Merged by bboozzoo> <https://github.com/snapcore/snapd/pull/10140>
[10:34] <jamesh> pedronis: fyi, https://github.com/snapcore/snapd/pull/9043 is updated now that the accessChecker implementations are on master
[10:34] <mup> PR #9043: daemon: replace access control flags on commands with access checkers <Needs security review> <Created by jhenstridge> <https://github.com/snapcore/snapd/pull/9043>
[10:34] <jamesh> so a smaller diff
[10:35] <mup> PR snapd#10127 closed: daemon: add new accessChecker implementations <Created by jhenstridge> <Merged by jhenstridge> <https://github.com/snapcore/snapd/pull/10127>
[10:50] <pedronis> jamesh: thanks, great, I put it back in my queue
[11:26]  * pstolowski lunch
[11:49] <Trixelit> is anyone here?
[12:07] <mborzecki> Trixelit: there is
[12:08] <mborzecki> pedronis: i've opened https://github.com/snapcore/snapd/pull/10148 the managers tests grew a bit
[12:08] <mup> PR #10148: overlord/devicestate, overlord/snapstate: add task for updating kernel command lines from gadget <Run nested> <Created by bboozzoo> <https://github.com/snapcore/snapd/pull/10148>
[12:10] <mup> PR snapd#10148 opened: overlord/devicestate, overlord/snapstate: add task for updating kernel command lines from gadget <Run nested> <Created by bboozzoo> <https://github.com/snapcore/snapd/pull/10148>
[12:10] <pedronis> mborzecki: that's most of what we discussed for .extra ?
[12:10] <mborzecki> yes
[12:11] <pedronis> anyway let's see how it looks once 43 is landed
[12:15] <Trixelit> I'm confused, snap installed core version 2.37, refreshing it says there's no new updates but github has 2.42
[12:16] <Trixelit> certbot won't work without the newest version but I don't know how to install it
[12:23] <mborzecki> Trixelit: 2.37 is very old,  debian and ubuntu can reexec directly to a version from the core snap, but other distributions rely on their pacakge repositories
[12:24] <Trixelit> so what do I do?
[12:25] <Trixelit> snap version
[12:25] <Trixelit> snap    2.37.4-1+b1
[12:25] <Trixelit> snapd   2.37.4-1+b1
[12:25] <Trixelit> series  16
[12:25] <Trixelit> deepin  20.2
[12:25] <Trixelit> kernel  4.15.0-30deepin-generic
[12:32] <Trixelit> is there a way to update snapd from github?
[12:37] <pstolowski> Trixelit: no, why would you want that? (sorry i missed earlier context if there was any; snapd should refresh itself from time to time)
[12:37] <Trixelit> when i installed core, it installed at 2.37, but there are no updates available when i try to refresh it
[12:38] <Trixelit> and certbot doesn't work unless snapd is at its latest version
[12:38] <Trixelit> pstolowski
[12:40] <pstolowski> Trixelit: what does 'sudo snap refresh core' say?
[12:40] <Trixelit> snap "core" has no updates available pstolowski
[12:41] <pstolowski> Trixelit: and 'snap list'?
[12:41] <Trixelit> Name         Version    Rev    Tracking  Publisher     Notes
[12:41] <Trixelit> certbot      1.14.0     1093   stable    certbot-eff✓  classic
[12:41] <Trixelit> core         16-2.49.2  10958  stable    canonical✓    core
[12:41] <pstolowski> (please pastebin if long)
[12:41] <Trixelit> core20       20210319   975    stable    canonical✓    base
[12:41] <Trixelit> hello-world  6.4        29     stable    canonical✓    -
[12:45] <pstolowski> hmm that's weird, you have latest core, so snapd should be at that version (2.49.2)
[12:52] <mborzecki> pstolowski: it's deepin? maybe reexec isn't used there
[12:52] <mborzecki> maybe they have their own package builds or sth
[12:53] <Trixelit> makes no sense as to why certbot doesn't work if I have the latest core
[12:53] <Trixelit> I just hope i can get this working tonight
[12:55] <ogra> ou'll likely have to ask deepin to update the snapd package, seems it is used from the deepin archive there
[12:55] <ogra> *you'll
[12:55] <zyga> no reexec on deepin IIRC
[12:55] <zyga> it's easy to check
[12:55] <zyga> the logic is in snapd
[12:56] <zyga> but even if the distro patched it, it would need alignment to really work
[12:56] <ogra> right, its a deepin problem, they need to update
[12:56] <Trixelit> So pretty much, certbot will never work
[12:56] <Trixelit> unless deepin actually updates it
[12:58] <ogra> what are the symptoms of "certbot no working" ... you didnt tell us yet
[12:58] <mborzecki> iirc debian stable reexecs
[12:59] <mborzecki> from what i read deeping is based on debian stable, so unless they did something with package version or disabled reexec explicitly it shoudl reexec right?
[12:59]  * zyga looks
[12:59] <mborzecki> Trixelit: can you run `SNAPD_DEBUG=1 snap version` and paste the output?
[13:07] <zyga> Trixelit what does /etc/os-release look like on deepin?
[13:07] <Trixelit> @mor
[13:07] <Trixelit> ah
[13:07] <Trixelit> mborzecki 2021/04/14 23:07:08.334235 cmd_linux.go:70: DEBUG: re-exec not supported on distro "deepin" yet
[13:07] <Trixelit> error: unknown command "2.37.4-1+b1", see 'snap help'
[13:07] <Trixelit> zyga
[13:07] <Trixelit> PRETTY_NAME="Deepin 20.2"
[13:07] <Trixelit> NAME="Deepin"
[13:07] <Trixelit> VERSION_ID="20.2"
[13:07] <Trixelit> VERSION="20.2"
[13:07] <Trixelit> ID=Deepin
[13:07] <Trixelit> HOME_URL="https://www.deepin.org/"
[13:07] <Trixelit> BUG_REPORT_URL="https://bbs.deepin.org/"
[13:07] <zyga> there you go
[13:08] <zyga> there's no ID_LIKE=debian
[13:08] <zyga> so no reexec
[13:08] <zyga> you can try adding that
[13:08] <zyga> and restarting snapd
[13:08] <Trixelit> What is reexec
[13:08] <zyga> ID_LIKE="debian"
[13:08] <zyga> but no promises
[13:08] <Trixelit> where do I put that?
[13:08] <zyga> reexec is a snapd feature
[13:08] <zyga> where instead of waiting for deepin to do the update
[13:08] <zyga> you can get snapd from the core snap itself
[13:08] <zyga> (or from the snapd snap)
[13:09] <zyga> it requires some effort to support so it is not automatic
[13:09] <Trixelit> no updates available
[13:09] <zyga> *if* you want to try that then edit /etc/os-release, add that line and restart snapd
[13:09] <zyga> but no promises
[13:09] <Trixelit> I just tried that
[13:09] <zyga> snaps are all up-to-date
[13:09] <zyga> restart snapd.service
[13:09] <zyga> and run snap version
[13:10] <Trixelit> holy it updated
[13:10] <Trixelit> snap    2.49.2
[13:10] <Trixelit> snapd   2.49.2
[13:10] <Trixelit> series  16
[13:10] <Trixelit> deepin  20.2
[13:10] <Trixelit> kernel  4.15.0-30deepin-generic
[13:10] <Trixelit> Thanks zyga
[13:10] <zyga> Trixelit if it works do let us know
[13:10] <zyga> as in, if nothing breaks after a while
[13:10] <zyga> reboot and see if it's all good later
[13:10] <Trixelit> fingers crossed
[13:10] <Trixelit> ill try certbot in a few mins
[13:40] <pedronis> pstolowski: I should look at the last commint in https://github.com/snapcore/snapd/pull/10053 right?
[13:40] <mup> PR #10053: o/snapstate: helper for getting snaps affected by refresh, define new hook <Needs Samuele review> <Refresh control> <Created by stolowski> <https://github.com/snapcore/snapd/pull/10053>
[13:41] <pstolowski> pedronis: yes
[13:41] <pedronis> ok, I put it back into my queue
[13:55] <mup> PR snapd#10149 opened: many: implement fde-hooks v2 <Created by mvo5> <https://github.com/snapcore/snapd/pull/10149>
[14:28] <ijohnson> thanks for the review mvo !
[14:28] <mvo> my pleasure
[14:30] <mup> PR snapd#10133 closed: wrappers/services.go: introduce EnsureSnapServices() <UC20> <Created by anonymouse64> <Merged by anonymouse64> <https://github.com/snapcore/snapd/pull/10133>
[14:56] <mup> PR snapd#10150 opened: tests: new tests.skip tool <Created by sergiocazzolato> <https://github.com/snapcore/snapd/pull/10150>
[15:25] <pedronis> pstolowski: I reviewed https://github.com/snapcore/snapd/pull/10053, the code looks right but I was confused for a sec, made some comments/order suggestions
[15:25] <mup> PR #10053: o/snapstate: helper for getting snaps affected by refresh, define new hook <Needs Samuele review> <Refresh control> <Created by stolowski> <https://github.com/snapcore/snapd/pull/10053>
[15:26] <pstolowski> pedronis: looking, thanks
[15:56] <mup> PR snapd#10128 closed: tests: add 20.04 to systems for nested/core <Run nested> <Created by stolowski> <Merged by sergiocazzolato> <https://github.com/snapcore/snapd/pull/10128>
[16:00] <pedronis> jamesh: I re-reviewed https://github.com/snapcore/snapd/pull/8699 some small things there, I will need a 2nd review from somebody else in snapd
[16:00] <mup> PR #8699: interfaces/desktop-launch: support confined snaps launching other snaps <Needs Samuele review> <Created by AlanGriffiths> <https://github.com/snapcore/snapd/pull/8699>
[16:00] <pedronis> s/I/it/
[16:00]  * cachio_ lunch
[16:48] <mborzecki> re
[16:48] <mborzecki> hm, i'm confused by how we eanble secure boot in nested manual tests, iirc it was supposed by be enabled by default when the system is 20.04?
[16:50] <cachio_> mborzecki, it always goes through this
[16:50] <cachio_> [ "$NESTED_ENABLE_SECURE_BOOT" = true ]
[16:50] <cachio_> because the var is set
[16:51] <cachio_> what you changed is the default bahaviour in case the variable is not set
[16:54] <mborzecki> cachio_: i have nested/manual tests, which does not set NESTED_ENABLE_SECURE_BOOT, but system is 20.04, so secure boot would be enabled by default, wouldn't it?
[16:55] <mborzecki> eh and magically the same branch that works with tpm locally fails in spread jobs in 10148
[16:55] <cachio_> mborzecki, I think the mess was introduced when both core and core20 were merged
[16:57] <cachio_> manual tests should use the same configuration as core suite
[16:57] <cachio_>             # Enable tpm in the nested vm in case it is supported
[16:57] <cachio_>             NESTED_ENABLE_TPM: '$(HOST: echo "${NESTED_ENABLE_TPM:-}")'
[16:57] <cachio_>             # Enable secure boot in the nested vm in case it is supported
[16:57] <cachio_>             NESTED_ENABLE_SECURE_BOOT: '$(HOST: echo "${NESTED_ENABLE_SECURE_BOOT:-}")'
[16:57] <cachio_> so default values are used
[16:59] <cachio_> mborzecki, do you want to update that in the same pr?
[17:04] <mborzecki> cachio_: i mean this part, the idea was taht if the env variable is not set, but the system is ubuntu-20.04* secure boot gets eanbled by default, and afaiu this covers tests/nested/manual tests too right?
[17:05] <mborzecki> uhh, i see now
[17:05] <mborzecki> there's env for tests/nested/manual suite which overrides this :/
[17:07] <cachio_> yes
[17:07] <cachio_> this is what we need to change
[17:26] <mup> PR snapd#10106 closed: secboot,boot: provide fde-hooks v2 API interface to hooks <Created by mvo5> <Closed by mvo5> <https://github.com/snapcore/snapd/pull/10106>
[17:27]  * cachio_ afk
[18:01] <mup> PR snapd#10143 closed: boot: handle updating of components that contribute to kernel command line <Skip spread> <Created by bboozzoo> <Merged by bboozzoo> <https://github.com/snapcore/snapd/pull/10143>
[20:17] <mup> PR snapcraft#3500 closed: docker: Need to repeat ARG in every section <Created by abitrolly> <Merged by sergiusens> <https://github.com/snapcore/snapcraft/pull/3500>
[20:26] <mup> PR snapd#10118 closed: boot/flags.go: add HostUbuntuDataForMode <Simple 😃> <UC20> <Created by anonymouse64> <Merged by anonymouse64> <https://github.com/snapcore/snapd/pull/10118>
[21:02] <mup> PR snapcraft#3502 closed: snaps: do not validate snaps before install/refresh (Fixes LP#1901733) <Created by Saviq> <Merged by sergiusens> <https://github.com/snapcore/snapcraft/pull/3502>
[22:25] <StupidDanbo> I can't run Chromium. Someone from #ubuntu suggested I try asking here. after running: sudo snap refresh, I got: error: cannot perform the following tasks: - Run configure hook of "chromium" snap if present (run hook "configure": cannot create temporary directory for the root file system: Permission denied)
[22:37] <ijohnson> StupidDanbo can you run `snap changes` and then `snap tasks <chg>` for any task that is in Error state?
[22:38] <ijohnson> Also note that most folks are EOD right now so you will get the most help if you make a forum post and post some details then EU folks will see it in their morning
[22:54] <StupidDanbo> oh I only saw the 2nd part at first.
[22:55] <StupidDanbo> same error about permission denied for creating temporary directory for root
[22:55] <ijohnson> StupidDanbo can you share the full output though?
[22:56] <StupidDanbo> how do I do that?
[22:56] <ijohnson> You can copy the output from the terminal and put it in pastebin.ubuntu.com and share the pastebin link here
[22:58] <StupidDanbo> https://pastebin.ubuntu.com/p/s7GmChnnph/
[22:59] <StupidDanbo> hm. identical error for task 270
[23:04] <StupidDanbo> is there a way to backup my Chromium bookmarks before I try to reinstall it? or does"removing" all snaps not uninstall Chromium?
[23:07] <StupidDanbo> maybe "apparmor doesn't like symlinks"
[23:08] <StupidDanbo> but surely my /tmp/ isn't on the SSD...
[23:08] <StupidDanbo> .... oh, it IS a symlink. It's got that arrow on the folder icon.
[23:09] <StupidDanbo> ironically my root folder looks like it's on the SSD, while /tmp is pointing to my HDD to avoid filling it up. :|