Snap tweaks (#584)

This slightly reduces the overhead of the `lxc` command. In this rough benchmark, `lxc help >/dev/null` is used as it is self-contained (make no API call). Baseline: ``` $ timeout 30 bash -c 'i=0; trap "echo \$i" EXIT; while i=$((i+1)); do lxc help >/dev/null; done' 598 ``` PR changes applied: ``` $ sudo mount -o bind,ro snapcraft/commands/lxc /snap/lxd/current/commands/lxc $ timeout 30 bash -c 'i=0; trap "echo \$i" EXIT; while i=$((i+1)); do lxc help >/dev/null; done' 620 ``` This is a meager improvement (~3.5%) but it moves the needle in the right direction. From ~19.93 execs/second to ~20.67 execs/second. For comparison's sake, here's what I get from a simple **non-snap** binary (~1192 execs/second): ``` $ timeout 30 bash -c 'i=0; trap "echo \$i" EXIT; while i=$((i+1)); do /usr/bin/echo foo >/dev/null; done' 35767 ```
canonical · Oct 25, 2024 · 6987436 · 6987436
2 parents fa29b0d + 9bde3c0
commit 6987436
Show file tree

Hide file tree

Showing 2 changed files with 7 additions and 18 deletions.
diff --git a/snapcraft/commands/daemon.reload b/snapcraft/commands/daemon.reload
@@ -11,4 +11,4 @@ fi
 
 echo reload > "${SNAP_COMMON}/state"
 read -r PID < "${SNAP_COMMON}/lxd.pid"
-kill "$PID"
+exec kill "$PID"
diff --git a/snapcraft/commands/lxc b/snapcraft/commands/lxc
@@ -1,14 +1,6 @@
 #!/bin/sh
 set -eu
 
-# Re-exec outside of apparmor confinement
-if [ -d /sys/kernel/security/apparmor ]; then
-  label="$(while read -r l; do echo "$l"; done < /proc/self/attr/current)"
-  if [ "$label" != "unconfined" ] && [ -n "${label##*(unconfined)}" ]; then
-    exec /usr/bin/aa-exec -p unconfined -- "$0" "$@"
-  fi
-fi
-
 # Fill SNAP_REAL_HOME if missing
 if [ -z "${SNAP_REAL_HOME:-""}" ]; then
     SNAP_REAL_HOME="${HOME}"
@@ -19,15 +11,6 @@ if [ -z "${SNAP_REAL_HOME:-""}" ]; then
     fi
 fi
 
-# Migrate data if needed
-if [ ! -d "${SNAP_USER_COMMON}/config" ]; then
-    if [ -d "${SNAP_REAL_HOME}/.config/lxc" ]; then
-        cp -r "${SNAP_REAL_HOME}/.config/lxc" "${SNAP_USER_COMMON}/config" || true
-    fi
-
-    mkdir -p "${SNAP_USER_COMMON}/config"
-fi
-
 # Set the environment
 if [ -z "${LXD_DIR:-""}" ]; then
     export LXD_DIR="${SNAP_COMMON}/lxd/"
@@ -38,6 +21,7 @@ if [ -z "${LXD_DIR:-""}" ]; then
 fi
 
 export LXD_CONF="${SNAP_USER_COMMON}/config"
+[ -d "${LXD_CONF}" ] || mkdir -p "${LXD_CONF}"
 export LXD_GLOBAL_CONF="${LXD_GLOBAL_CONF:-"${SNAP_COMMON}/global-conf/"}"
 
 # Use editor wrapper
@@ -56,5 +40,10 @@ if [ -x "${SNAP_COMMON}/lxc.debug" ]; then
     LXC="${SNAP_COMMON}/lxc.debug"
 fi
 
+# Run lxc itself outside of apparmor confinement
+if [ -d /sys/kernel/security/apparmor ]; then
+  exec /usr/bin/aa-exec -p unconfined -- "${LXC}" "$@"
+fi
+
 # Run lxc itself
 exec "${LXC}" "$@"