Maintenance release for 2.27: 2.27.6

mvo · September 7, 2017, 9:47am

We discovered a potential issue with snaps that use the hardware-observe, network-control or network-observe interfaces in 2.27. We enabled seccomp argument filtering in 2.27. This limits what “domain” of the socket() syscall can be used by default. Most importantly the NETLINK_KOBJECT_UEVENT is no longer available by default. However for the interfaces above this protocol should be available.

We released 2.27.6 that fixes this issue. It is available in the beta channel for now and will be promoted to stable once the full QA cycle is completed.

zyga-snapd · September 7, 2017, 10:04am

I’ll handle releases for Arch openSUSE (once infrastructure is back) and Debian ( @mwhudson for enabling that). I’ll wait for a green light though.

zyga-snapd · September 7, 2017, 10:31pm

The Debian package is ready and has been uploaded a moment ago. The openSUSE package is likewise ready. I will prepare Arch package later (tomorrow).

cachio · September 8, 2017, 3:36am

Hello, the 2.27.6 release is now in the candidate channel. Please help testing by snap refresh --candidate core and let us know if everything works as expected.

Test results: https://docs.google.com/document/d/15R26w7cwjdYegUDofAwI28LUtdfLNyp0um0WXWCzS60/edit

Please, let me know if you find any regression.

zyga-snapd · September 8, 2017, 5:45am

The Arch package is in progress but is slowed down by a test failure that affects snapd on golang 1.9 Osutil tests fail on golang 1.9

Conan_Kudo · September 10, 2017, 1:22pm

Fedora packages for snapd 2.27.6 have been submitted for testing:

Fedora 27: https://bodhi.fedoraproject.org/updates/FEDORA-2017-4546b9dd38
Fedora 26: https://bodhi.fedoraproject.org/updates/FEDORA-2017-8ef8c9e6c2
Fedora 25: https://bodhi.fedoraproject.org/updates/FEDORA-2017-d699df2619

They should be available in updates-testing within the next 24-48 hours.