-
Notifications
You must be signed in to change notification settings - Fork 2.5k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Podman run with remote service is failing #14573
Comments
You are talking podman -remote here?
|
No, I get the same behavior.
|
I believe this to be a problem with MacOS/Arm64 only. I tried to replicate the problem on purely linux amd64, but there everything works as intended. |
can you show me the cgroup where the podman daemon is running in? You can look at it through the |
I'm not sure what the
|
Like with #14517 this is not a macOS only issue, and I have no idea how to replicate. But I'm seeing this exact issue using VSCode in a toolbox on a Linux host. Opening a dev container fails with:
It has not happened before, I have encountered it a few times, and it's always gone away by itself (or perhaps after some reboot or recreating the container, no idea). Whatever it is, there is some heisenbug going on with podman remote which is not macOS only. EDIT: doing |
@giuseppe PTAL |
that happens because You can fix it manually with (the list of cgroup controllers could be different on your system):
|
But how would this happen? |
The nested |
Podman could do that automatically, but I'd prefer to avoid the cost of reading and parsing Maybe we could do that just for |
I am mostly worried about network file systems (e.g. a volume on NFS) where reading the xattr could add a significant cost. |
Seems like doing it for podman system service, makes the most sense. |
at startup, when running on a cgroup v2 system, check if the current process is running in the root cgroup and move it to a sub-cgroup, otherwise Podman is not able to create cgroups and move processes there. Closes: containers#14573 [NO NEW TESTS NEEDED] it needs nested podman Signed-off-by: Giuseppe Scrivano <gscrivan@redhat.com>
PR here: #14787 |
Is this a BUG REPORT or FEATURE REQUEST? (leave only one on its own line)
/kind bug
Description
Unable to run containers via a podman tcp service. The ability to pull and build is there, but not running.
Steps to reproduce the issue:
In one terminal run
docker run --privileged -p 8888:8888 quay.io/podman/stable:latest podman system service --time=0 tcp://0.0.0.0:8888
Setup local podman to use the service
podman system connection add local tcp://localhost:8888
Run
podman run docker.io/library/alpine echo hello
Describe the results you received:
An error occurred about some cgroups.
Describe the results you expected:
The container would start and be running.
Additional information you deem important (e.g. issue happens only occasionally):
The commands
podman pull
,podman images list
,podman ps
andpodman build
seem to work just as expected. It's onlypodman run
that always fails (also for other images). The logs from the service container contain:Output of
podman version
:Output of
podman info --debug
:Package info (e.g. output of
rpm -q podman
orapt list podman
):Have you tested with the latest version of Podman and have you checked the Podman Troubleshooting Guide? (https://github.com/containers/podman/blob/main/troubleshooting.md)
Yes
Additional environment details (AWS, VirtualBox, physical, etc.):
Using Arm64 MacOS platform.
The text was updated successfully, but these errors were encountered: