[pkg-lxc-devel] Bug#946170: libpam-cgfs: does nothing under cgroupv2 / unified hierarchy

Ryutaroh Matsumoto ryutaroh.matsumoto at nagoya-u.jp
Wed Dec 4 19:05:35 GMT 2019 

Package: libpam-cgfs
Version: 1:3.1.0+really3.0.4-2
Severity: important
Tags: upstream
User: pkg-systemd-maintainers at lists.alioth.debian.org
Usertags: cgroupv2
Control: -1 forwarded https://github.com/lxc/lxc/issues/3198
Control: block 943981 by -1

Dear Maintainer,

According to
https://github.com/lxc/lxc/blob/master/doc/pam_cgfs.sgml.in
libpam_cgfs chowns some cgroup directories to a login user,
but actually it does nothing under cgroup2  unified hierarchy, as

$ ls -l /sys/fs/cgroup/user.slice/user-1000.slice /sys/fs/cgroup/user.slice/user-1000.slice/session-2.scope
/sys/fs/cgroup/user.slice/user-1000.slice:
total 0
-r--r--r-- 1 root     root     0 Dec  5 03:40 cgroup.controllers
-r--r--r-- 1 root     root     0 Dec  5 03:40 cgroup.events
-rw-r--r-- 1 root     root     0 Dec  5 03:40 cgroup.freeze
-rw-r--r-- 1 root     root     0 Dec  5 03:40 cgroup.max.depth
-rw-r--r-- 1 root     root     0 Dec  5 03:40 cgroup.max.descendants
-rw-r--r-- 1 root     root     0 Dec  5 03:40 cgroup.procs
-r--r--r-- 1 root     root     0 Dec  5 03:40 cgroup.stat
-rw-r--r-- 1 root     root     0 Dec  5 03:40 cgroup.subtree_control
-rw-r--r-- 1 root     root     0 Dec  5 03:40 cgroup.threads
-rw-r--r-- 1 root     root     0 Dec  5 03:40 cgroup.type
-rw-r--r-- 1 root     root     0 Dec  5 03:40 cpu.pressure
-r--r--r-- 1 root     root     0 Dec  5 03:40 cpu.stat
-rw-r--r-- 1 root     root     0 Dec  5 03:40 io.max
-rw-r--r-- 1 root     root     0 Dec  5 03:40 io.pressure
-r--r--r-- 1 root     root     0 Dec  5 03:40 io.stat
-r--r--r-- 1 root     root     0 Dec  5 03:40 memory.current
-r--r--r-- 1 root     root     0 Dec  5 03:40 memory.events
-r--r--r-- 1 root     root     0 Dec  5 03:40 memory.events.local
-rw-r--r-- 1 root     root     0 Dec  5 03:40 memory.high
-rw-r--r-- 1 root     root     0 Dec  5 03:40 memory.low
-rw-r--r-- 1 root     root     0 Dec  5 03:40 memory.max
-rw-r--r-- 1 root     root     0 Dec  5 03:40 memory.min
-rw-r--r-- 1 root     root     0 Dec  5 03:40 memory.oom.group
-rw-r--r-- 1 root     root     0 Dec  5 03:40 memory.pressure
-r--r--r-- 1 root     root     0 Dec  5 03:40 memory.stat
-r--r--r-- 1 root     root     0 Dec  5 03:40 pids.current
-r--r--r-- 1 root     root     0 Dec  5 03:40 pids.events
-rw-r--r-- 1 root     root     0 Dec  5 03:40 pids.max
drwxr-xr-x 2 root     root     0 Dec  5 03:40 session-2.scope
drwxr-xr-x 4 ryutaroh ryutaroh 0 Dec  5 03:40 user at 1000.service

/sys/fs/cgroup/user.slice/user-1000.slice/session-2.scope:
total 0
-r--r--r-- 1 root root 0 Dec  5 03:42 cgroup.controllers
-r--r--r-- 1 root root 0 Dec  5 03:40 cgroup.events
-rw-r--r-- 1 root root 0 Dec  5 03:42 cgroup.freeze
-rw-r--r-- 1 root root 0 Dec  5 03:42 cgroup.max.depth
-rw-r--r-- 1 root root 0 Dec  5 03:42 cgroup.max.descendants
-rw-r--r-- 1 root root 0 Dec  5 03:40 cgroup.procs
-r--r--r-- 1 root root 0 Dec  5 03:42 cgroup.stat
-rw-r--r-- 1 root root 0 Dec  5 03:40 cgroup.subtree_control
-rw-r--r-- 1 root root 0 Dec  5 03:42 cgroup.threads
-rw-r--r-- 1 root root 0 Dec  5 03:42 cgroup.type
-rw-r--r-- 1 root root 0 Dec  5 03:42 cpu.pressure
-r--r--r-- 1 root root 0 Dec  5 03:40 cpu.stat
-rw-r--r-- 1 root root 0 Dec  5 03:42 io.max
-rw-r--r-- 1 root root 0 Dec  5 03:42 io.pressure
-r--r--r-- 1 root root 0 Dec  5 03:42 io.stat
-r--r--r-- 1 root root 0 Dec  5 03:42 memory.current
-r--r--r-- 1 root root 0 Dec  5 03:42 memory.events
-r--r--r-- 1 root root 0 Dec  5 03:42 memory.events.local
-rw-r--r-- 1 root root 0 Dec  5 03:40 memory.high
-rw-r--r-- 1 root root 0 Dec  5 03:40 memory.low
-rw-r--r-- 1 root root 0 Dec  5 03:40 memory.max
-rw-r--r-- 1 root root 0 Dec  5 03:40 memory.min
-rw-r--r-- 1 root root 0 Dec  5 03:42 memory.oom.group
-rw-r--r-- 1 root root 0 Dec  5 03:42 memory.pressure
-r--r--r-- 1 root root 0 Dec  5 03:42 memory.stat
-r--r--r-- 1 root root 0 Dec  5 03:42 pids.current
-r--r--r-- 1 root root 0 Dec  5 03:42 pids.events
-rw-r--r-- 1 root root 0 Dec  5 03:40 pids.max

Best regards,
Ryutaroh Matsumoto



-- System Information:
Debian Release: 10.1
  APT prefers stable
  APT policy: (990, 'stable'), (500, 'stable-updates'), (500, 'unstable'), (500, 'testing'), (1, 'experimental')
Architecture: amd64 (x86_64)

Kernel: Linux 5.3.0-2-amd64 (SMP w/4 CPU cores)
Locale: LANG=ja_JP.UTF-8, LC_CTYPE=ja_JP.UTF-8 (charmap=UTF-8), LANGUAGE=ja_JP.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)
LSM: AppArmor: enabled

Versions of packages libpam-cgfs depends on:
ii  libc6           2.29-3
ii  libgcc1         1:8.3.0-6
ii  libpam-runtime  1.3.1-5
ii  libpam0g        1.3.1-5

libpam-cgfs recommends no packages.

libpam-cgfs suggests no packages.

-- no debconf information

More information about the Pkg-lxc-devel mailing list