Removal of CONFIG_NET_NS from 2.6.32-32 breaks applications
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
linux (Ubuntu) |
Invalid
|
Undecided
|
Unassigned | ||
Lucid |
Won't Fix
|
Medium
|
Tim Gardner |
Bug Description
LP #700295 removed CONFIG_NET_NS from linux-image-
However, this breaks functionality for existing applications using LTS kernels and using namespaces in relatively static configurations (i.e. ones where non-root users cannot rapidly create and delete namespaces). This seems to me to be an unreasonable change, as LTS kernel changes are not meant to remove existing functionality. We have a production application (well, one week away from production) which suddenly broke due to this. As we are only using LTS for security updates etc., this is rather unfortunate, as we now cannot take any further kernel patches (unless this is reverted), which is rather the point of LTS.
Worse still, later kernels are WORSE in their stability for namespace configurations, so we cannot move to 2.6.38 (see LP #843892).
It seems to me a more appropriate fix to LP #700295 would have been to disable the use of network namespaces in vsftp, which would then leave existing users who do allow rapid cycling of namespaces to carry on regardless. This must be a trivial patch in vsftp as it must already cope with failure of the clone() syscall to support CLONE_NEWNS, as that's how it works on existing kernels.
tags: | added: lucid |
Changed in linux (Ubuntu Lucid): | |
assignee: | nobody → Canonical Kernel SRU Team (canonical-kernel-sru-team) |
importance: | Undecided → Medium |
status: | New → Triaged |
summary: |
- Removal of CONFIG_NS from 2.6.32-32 breaks applications + Removal of CONFIG_NET_NS from 2.6.32-32 breaks applications |
description: | updated |
This bug is missing log files that will aid in diagnosing the problem. From a terminal window please run:
apport-collect 844185
and then change the status of the bug to 'Confirmed'.
If, due to the nature of the issue you have encountered, you are unable to run this command, please add a comment stating that fact and change the bug status to 'Confirmed'.
This change has been made by an automated script, maintained by the Ubuntu Kernel Team.