mirror of
https://github.com/ostreedev/ostree.git
synced 2025-01-09 01:18:35 +03:00
bc62fd5196
There seems to be a tricky regression here with the util-linux support for the new mount API, plus overlays support for it. ``` [2023-11-09T21:05:30.633Z] Nov 09 21:05:26 qemu0 kola-runext-unlock-transient.sh[2108]: + unshare -m -- /bin/sh -c 'mount -o remount,rw /usr && echo hello from transient unlock >/usr/share/writable-usr-test' [2023-11-09T21:05:30.633Z] Nov 09 21:05:26 qemu0 kola-runext-unlock-transient.sh[2148]: mount: /usr: mount point not mounted or bad option. [2023-11-09T21:05:30.633Z] Nov 09 21:05:26 qemu0 kola-runext-unlock-transient.sh[2148]: dmesg(1) may have more information after failed mount system call. ``` OK this seems related to the new mount API support in util-linux and overlayfs. From a strace: ``` 2095 open_tree(AT_FDCWD, "/usr", OPEN_TREE_CLOEXEC) = 3 2095 mount_setattr(-1, NULL, 0, NULL, 0) = -1 EINVAL (Invalid argument) ... 2095 fspick(3, "", FSPICK_NO_AUTOMOUNT|FSPICK_EMPTY_PATH) = 4 2095 fsconfig(4, FSCONFIG_SET_FLAG, "seclabel", NULL, 0) = 0 2095 fsconfig(4, FSCONFIG_SET_STRING, "lowerdir", "usr", 0) = -1 EINVAL (Invalid argument) ``` I think the core problem here is it's trying to reconfigure the mount with existing options, but in the new mount namespace we can't see the lowerdir. Here we really really just want to remount writable. Telling util-linux to not pass existing options fixes it.
35 lines
1.0 KiB
Bash
Executable File
35 lines
1.0 KiB
Bash
Executable File
#!/bin/bash
|
|
# Test unlock --transient
|
|
set -xeuo pipefail
|
|
|
|
. ${KOLA_EXT_DATA}/libinsttest.sh
|
|
|
|
testfile=/usr/share/writable-usr-test
|
|
|
|
case "${AUTOPKGTEST_REBOOT_MARK:-}" in
|
|
"")
|
|
require_writable_sysroot
|
|
assert_not_has_file "${testfile}"
|
|
ostree admin unlock --transient
|
|
# It's still read-only
|
|
if touch ${testfile}; then
|
|
fatal "modified /usr"
|
|
fi
|
|
# But, we can affect it in a new mount namespace
|
|
unshare -m -- /bin/sh -c 'mount --options-source=disable -o remount,rw /usr && echo hello from transient unlock >'"${testfile}"
|
|
assert_file_has_content "${testfile}" "hello from transient unlock"
|
|
# Still can't write to it from the outer namespace
|
|
if touch ${testfile} || rm -v "${testfile}" 2>/dev/null; then
|
|
fatal "modified ${testfile}"
|
|
fi
|
|
/tmp/autopkgtest-reboot 2
|
|
;;
|
|
"2")
|
|
if test -f "${testfile}"; then
|
|
fatal "${testfile} persisted across reboot?"
|
|
fi
|
|
echo "ok unlock transient"
|
|
;;
|
|
*) fatal "Unexpected boot mark ${AUTOPKGTEST_REBOOT_MARK}"
|
|
esac
|