udev/69-dm-lvm-metad.rules.in shouldn't invoke systemd-run from BINDIR #36
Comments
|
metad has been eliminated from lvm2 project |
|
Thanks! Since which version is this gone? |
|
Since commit 67722b3 we have a new way how to 'autoactivate' volume. I'm actually not fully understanding what the you mean by $PATH - since there is 'no path' inside udev rules - everything must go with full explicit path. So can you more describe what do you want to achieve with this - do you want to see 'configure --system-run-path' option or what is actually wanted ? |
|
The problem is that I think, long-term lvm shouldn't be shelling out to |
|
We already used SYSTEMD_WANTS before, but there were issues with it - the service is edge-triggered based on flipping the SYSTEMD_READY variable from 0 to 1 at the same time as the SYSTEMD_WANTS is specified - so it requires these to conditions to be met, not just the SYSTEMD_WANTS. Unfortunately, this was not always the case where needed and sometimes it even caused interference (e.g. issue #94). |
|
There are also other issues - like basically there is no way to synchronize with 'parallel' stuff executed by systemd services - so it's been causing us basically highly unpredictable device access pattern - while we more prefer execution of scanning inline with udev rule. Also we do plan to store more data inside udevDB - so further daemons like 'udisk2' would not need to scan device again - yet the exact plan is still being analysed for this. But it's relatively easy to provide a configure option for 'systemd-run' path if that's good for something - although I'd be interesting in which systems/conditions this utility is outside of 'default' /usr/bin directory ? |
|
This is Nix(OS), and we set You don't need to really support much of this, but asking for the path to the |
NixOS should be well capable to build 'virtual' /usr/bin for each individual package you have in your system (the whole magic behind NixOS) - so there really should be no reason to configure/tune 'lvm2' specifically for NixOS - so IMHO you are most likely not using it to its full potential here - also note - lvm2 calls number of other binaries (i.e. with lvresize ) and I'm not exactly we provide configurable for every single system's binary tool we use here - we simply rely on /usr/bin... Referring systemd's binaries in the 'non-standard' directories may actually case number of weird issue on it's own.... Also it's worth to be noted - lvm2 is NOT supposed to be executed inside a 'container' - it's always closely tied to system binaries connected to kernel (udevd) - so just ensuring you are not trying to do something invalid.... |
No, it's all hardcoded paths in
Are you? I was assuming you rely on
We already do right now - by patching in these paths ourselves, rather than letting the configure script do it for us. See https://github.com/NixOS/nixpkgs/blob/c11c55dd08a6cb91f92e83adc8522e4fb469d2a9/pkgs/os-specific/linux/lvm2/common.nix#L77-L97 Also it's worth to be noted - lvm2 is NOT supposed to be executed inside a 'container' - it's always closely tied to system binaries connected to kernel (udevd) - so just ensuring you are not trying to do something invalid.... We're not executing things more in a container than other distros - it's just that on NixOS, As I said above, having a configure knob to configure the location to |
|
The way we were using for a while NixOS - we were just using 'packages' as they are and building some 'virtual' 'container-like' environment for testing - so we could test various combination of libraries, without the need to rebuild a single package - but surely the use-case might have been a bit strange. The issue why we prefer full explicit paths for executed binaries is security reason - since lvm2 is using root privileges we want to lower the risk associated with 'modified' $PATH (although surely we know it's not a big protection) - so if we rely on $PATH somewhere, it's rather an overlook. But if you provide configure patch for all these paths you need to change - it's not such a big deal to add this support instead of doing local hacking - there could be maybe a fine grained system BINDIR which could differ from lvm2 bindir |
|
Upstream git HEAD now also supports 'configure --with-systemd-run=/path/systemd-run' option. https://listman.redhat.com/archives/lvm-devel/2023-February/024591.html |
https://github.com/lvmteam/lvm2/blob/master/udev/69-dm-lvm-metad.rules.in#L111 calls
systemd-runfrom(BINDIR), which is not necessarily where the systemd binaries are installed.This should probably be discovered from
$PATHand made overridable, likeTHIN_*_CMDand others.Reading 2c42f60, it seems it's necessary to invoke
systemd-runhere, and it's not possible to model this differently.The text was updated successfully, but these errors were encountered: