Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

linux: fix creating devices in the rootfs #960

Merged
merged 1 commit into from
Jul 4, 2022
Merged

linux: fix creating devices in the rootfs #960

merged 1 commit into from
Jul 4, 2022

Conversation

giuseppe
Copy link
Member

@giuseppe giuseppe commented Jul 3, 2022

fix the creation of devices nodes in the container rootfs.

commit d583bdc introduced the regression.

Closes: #917

Signed-off-by: Giuseppe Scrivano gscrivan@redhat.com

@giuseppe
linux: fix creating devices in the rootfs
22c6181 
fix the creation of devices nodes in the container rootfs.

commit d583bdc introduced the regression.

Closes: containers#917

Signed-off-by: Giuseppe Scrivano <gscrivan@redhat.com>
@giuseppe giuseppe mentioned this pull request Jul 3, 2022
Closed
@giuseppe
Copy link
Member Author

giuseppe commented Jul 3, 2022

@cdoern the podman failure seems to be related to the fact that the io limits are applied to the infra container, not the pod cgroup. Is it a known regression or how is it supposed to work (and why does the Podman CI pass? 😄)

@cdoern
Copy link
Contributor

cdoern commented Jul 3, 2022

@giuseppe this is unexpected but I think I know where this is happening. My theory is that is is being applied to both infra and the pod cgroup (which is overkill and breaking this) so I just need to cut off infra from getting these assigned.

@giuseppe
Copy link
Member Author

giuseppe commented Jul 3, 2022

I think we still miss the plumbing for the pod cgroup. At least there isn't for systemd.

I have opened a PR for Podman to drop the test for now

@cdoern
Copy link
Contributor

cdoern commented Jul 3, 2022

I think we still miss the plumbing for the pod cgroup. At least there isn't for systemd.

I have opened a PR for Podman to drop the test for now

hm, I will look at the systemd docs: https://www.freedesktop.org/software/systemd/man/systemd.resource-control.html and see if I can find the missing values. I assumed not exposing them yet wouldn't break anything, especially if IOAccounting is true.

@cdoern
Copy link
Contributor

cdoern commented Jul 3, 2022

I can fold this fix into containers/common#1082 and then vendor it into podman.

flouthoc
flouthoc approved these changes Jul 4, 2022
View reviewed changes
Copy link
Collaborator

@flouthoc flouthoc left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

PR LGTM once CI gets unblocked.

@flouthoc
Copy link
Collaborator

flouthoc commented Jul 4, 2022

Merging this since PR LGTM and CI is green now.

@flouthoc flouthoc merged commit 3417536 into containers:main Jul 4, 2022
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@flouthoc flouthoc flouthoc approved these changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

crun 1.4+ CreateContainer in sandbox failed for volumeDevices container
3 participants
@giuseppe @cdoern @flouthoc