Bug 1271331

Summary: '-c' option of sandbox does not work.
Product: Red Hat Enterprise Linux 7 Reporter: Dalibor Pospíšil <dapospis>
Component: policycoreutilsAssignee: Petr Lautrbach <plautrba>
Status: CLOSED ERRATA QA Contact: Dalibor Pospíšil <dapospis>
Severity: medium Docs Contact:
Priority: medium    
Version: 7.1CC: dwalsh, lvrabec, mgrepl, mmalik, plautrba, pvrabec, ssekidde
Target Milestone: rc   
Target Release: ---   
Hardware: All   
OS: Linux   
Whiteboard:
Fixed In Version: policycoreutils-2.5-6.el7 Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of: 1091139 Environment:
Last Closed: 2016-11-04 02:13:28 UTC Type: Bug
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:
Bug Depends On:    
Bug Blocks: 1364088    
Attachments:
Description Flags
Remove -c option from man page none

Description Dalibor Pospíšil 2015-10-13 16:24:55 UTC 
+++ This bug was initially created as a clone of Bug #1091139 +++

Customer Contact Name:
  Yasuyuki Kobayashi
  
Description of Problem:
  The man page of sandbox command shows as below:
  ------------------
  -c  Use control groups to control this copy of sandbox. Specify parameters
      in /etc/sysconfig/sandbox. Max memory usage and cpu usage are to be
      specified in percent. You can specify which CPUs to use by numbering them
      0,1,2... etc.
  ------------------
  
  And we set the file /etc/sysconfig/sandbox as following:
  -----------------
    # Space separate list of homedirs
    HOMEDIRS="/home"
    # Control group configuration
    NAME=sandbox
    CPUAFFINITY=ALL
    MEMUSAGE=80%
    CPUUSAGE=80%
  ----------------

  We think that if cgroup has been used to control sandbox,
  there should be directory "/cgroup/memory/sandbox" and "/cgroup/cpu/sandbox" in the directory "/cgroup".
  But, there is no such directory in "/cgroup" after executing "sandbox -c id -Z".
  ---------------
  # sandbox -c id -Z
  unconfined_u:unconfined_r:sandbox_t:s0:c580,c885
  # ls /cgroup/cpu/sandbox
  ls: cannot access /cgroup/cpu/sandbox: No such file or directory 
  ---------------
  So please fix sandbox to use cgroup correctly when specified '-c' option.
  
  Version-Release number of selected component:
  policycoreutils-2.2.5-15.el7

  How reproducible:
  Always 
  
  Step to Reproduce:
  1. see linked test
Comment 1 Daniel Walsh 2015-10-13 22:26:35 UTC 
-c should be dropped.
Comment 2 Petr Lautrbach 2016-05-10 07:22:14 UTC 
Created attachment 1155581 [details]
Remove -c option from man page
Comment 6 errata-xmlrpc 2016-11-04 02:13:28 UTC 
Since the problem described in this bug report should be
resolved in a recent advisory, it has been closed with a
resolution of ERRATA.

For information on the advisory, and where to find the updated
files, follow the link below.

If the solution does not work for you, open a new bug report.

https://rhn.redhat.com/errata/RHEA-2016-2279.html