[pkg-apparmor] Bug#782700: Bug#782700: Please drop $remote_fs init.d dependency to allow running early
Cameron Norman
camerontnorman at gmail.com
Thu Apr 16 23:05:36 UTC 2015
On Thu, Apr 16, 2015 at 5:56 AM, Martin Pitt <mpitt at debian.org> wrote:
> Package: apparmor
> Version: 2.9.0-3
>
> Hello,
>
> apparmor's init.d script currently depends on $remote_fs. This is a
> rather heavy dependency and means that important processes like
> dhclient or NFS cannot be covered by apparmor as they need to start
> before. In the extreme case this also means that
> network-online.target, NetworkManager.service, dbus.service etc. all
> need to run during early boot ("rcS" in the old sysvinit world), which
> likely leads to dependency cycles.
>
> IMHO $local_fs should suffice as during booting the init.d script does
> not need much from /usr or /var. The exception is the click package
> hook processing, but this is only really significant for Ubuntu Touch
> images (which don't use /usr on NFS). The profile cache has been split
> into /etc/ and /var for this reason, so that on boot you only need the
> cache in /etc. The one in /var is only being used for click packages
> as far as I know.
I feel like it would be better to split out the click stuff. While it
may be ok to ignore the click bits needing the full fs to be mounted
in most cases, it would ensure that any future issues are properly
avoided. Any objection to it from you?
Would I change this in the Ubuntu source package then?
Cheers,
--
Cameron Norman
More information about the pkg-apparmor-team
mailing list