August 18, 2022 Podman Community Cabal Meeting - Canceled
by Tom Sweeney
Hi All,
The Podman Community Cabal Meeting scheduled for this Thursday
August 18, 2022 at 11:00 a.m. EDT (UTC-4) has been canceled. We
recently realized that most of the attendees will be attending
DevConf.US at that time. DevConf.US is free to attend, and you can do
so in person or virtually. The only requirement is you need to sign up
and you can do so for free at https://www.devconf.info/us/. A bunch of
info there too on the times and topics. FWIW, Dan Walsh will be doing
the Keynote on Saturday August 20, 2022 at 9:30 a.m. EDT (UTC-4).
Our next Podman Community Cabal meeting will be on Thursday
September 15, 2022 at 11:00 a.m. EDT (UTC-4).
Thanks All!
t
1 year, 8 months
container exited on segmentation fault
by GHui Wu
When I execute "podman build -f centos.dockerfile", there is error "container exited on segmentation fault".
$ cat centos.dockerfile
FROM docker.io/library/centos:centos7.9.2009
SHELL ["/bin/bash", "-c"]
RUN yum update
RUN yum install -y wget make rsync gcc gcc-c++ gcc-gfortran openmpi-devel
$ podman build -f centos.dockerfile
STEP 1/4: FROM docker.io/library/centos:centos7.9.2009
Trying to pull docker.io/library/centos:centos7.9.2009...
Getting image source signatures
Copying blob 2d473b07cdd5 skipped: already exists
Copying config eeb6ee3f44 done
Writing manifest to image destination
Storing signatures
STEP 2/4: SHELL ["/bin/bash", "-c"]
WARN[0008] SHELL is not supported for OCI image format, [/bin/bash -c] will be ignored. Must use `docker` format
--> 5b52fbd2b03
STEP 3/4: RUN yum update
container exited on segmentation fault
Error: error building at STEP "RUN yum update": error while running runtime: exit status 1
$ podman --log-level debug build -f centos.dockerfile
INFO[0000] podman filtering at log level debug
DEBU[0000] Called build.PersistentPreRunE(podman --log-level debug build -f centos.dockerfile)
DEBU[0000] Found default OCI runtime /home/rsync/.local/container/sbin/runc path via PATH environment variable
DEBU[0000] Using conmon from $PATH: "/home/rsync/.local/container/bin/conmon"
DEBU[0000] Initializing boltdb state at /tmp/1000/share/containers/storage/libpod/bolt_state.db
DEBU[0000] Using graph driver overlay
DEBU[0000] Using graph root /tmp/1000/share/containers/storage
DEBU[0000] Using run root /tmp/containers-user-1000/containers
DEBU[0000] Using static dir /tmp/1000/share/containers/storage/libpod
DEBU[0000] Using tmp dir /run/user/1000/libpod/tmp
DEBU[0000] Using volume path /tmp/1000/share/containers/storage/volumes
DEBU[0000] Set libpod namespace to ""
DEBU[0000] Not configuring container store
DEBU[0000] Initializing event backend file
DEBU[0000] Configured OCI runtime crun initialization failed: no valid executable found for OCI runtime crun: invalid argument
DEBU[0000] using runtime "runc" from $PATH: "/home/rsync/.local/container/sbin/runc"
DEBU[0000] Configured OCI runtime kata initialization failed: no valid executable found for OCI runtime kata: invalid argument
DEBU[0000] Configured OCI runtime runsc initialization failed: no valid executable found for OCI runtime runsc: invalid argument
DEBU[0000] Configured OCI runtime krun initialization failed: no valid executable found for OCI runtime krun: invalid argument
DEBU[0000] Using OCI runtime "/home/rsync/.local/container/sbin/runc"
INFO[0000] Setting parallel job count to 13
INFO[0000] podman filtering at log level debug
DEBU[0000] Called build.PersistentPreRunE(podman --log-level debug build -f centos.dockerfile)
DEBU[0000] overlay: storage already configured with a mount-program
DEBU[0000] Found default OCI runtime /home/rsync/.local/container/sbin/runc path via PATH environment variable
DEBU[0000] overlay: storage already configured with a mount-program
DEBU[0000] Using conmon from $PATH: "/home/rsync/.local/container/bin/conmon"
DEBU[0000] Initializing boltdb state at /tmp/1000/share/containers/storage/libpod/bolt_state.db
DEBU[0000] Overriding run root "/run/user/1000/containers" with "/tmp/containers-user-1000/containers" from database
DEBU[0000] Using graph driver overlay
DEBU[0000] Using graph root /tmp/1000/share/containers/storage
DEBU[0000] Using run root /tmp/containers-user-1000/containers
DEBU[0000] Using static dir /tmp/1000/share/containers/storage/libpod
DEBU[0000] Using tmp dir /run/user/1000/libpod/tmp
DEBU[0000] Using volume path /tmp/1000/share/containers/storage/volumes
DEBU[0000] overlay: storage already configured with a mount-program
DEBU[0000] Set libpod namespace to ""
DEBU[0000] [graphdriver] trying provided driver "overlay"
DEBU[0000] overlay: mount_program=/home/rsync/.local/container/bin/fuse-overlayfs
DEBU[0000] backingFs=xfs, projectQuotaSupported=false, useNativeDiff=false, usingMetacopy=false
DEBU[0000] Initializing event backend file
DEBU[0000] Configured OCI runtime crun initialization failed: no valid executable found for OCI runtime crun: invalid argument
DEBU[0000] using runtime "runc" from $PATH: "/home/rsync/.local/container/sbin/runc"
DEBU[0000] Configured OCI runtime kata initialization failed: no valid executable found for OCI runtime kata: invalid argument
DEBU[0000] Configured OCI runtime runsc initialization failed: no valid executable found for OCI runtime runsc: invalid argument
DEBU[0000] Configured OCI runtime krun initialization failed: no valid executable found for OCI runtime krun: invalid argument
DEBU[0000] Using OCI runtime "/home/rsync/.local/container/sbin/runc"
INFO[0000] Setting parallel job count to 13
DEBU[0000] Failed to add podman to systemd sandbox cgroup: Process org.freedesktop.systemd1 exited with status 1
DEBU[0000] base for stage 0: "docker.io/library/centos:centos7.9.2009"
DEBU[0000] FROM "docker.io/library/centos:centos7.9.2009"
STEP 1/4: FROM docker.io/library/centos:centos7.9.2009
DEBU[0000] Pulling image docker.io/library/centos:centos7.9.2009 (policy: missing)
DEBU[0000] Looking up image "docker.io/library/centos:centos7.9.2009" in local containers storage
DEBU[0000] Normalized platform linux/amd64 to {amd64 linux [] }
DEBU[0000] Trying "docker.io/library/centos:centos7.9.2009" ...
DEBU[0000] parsed reference into "[overlay@/tmp/1000/share/containers/storage+/tmp/containers-user-1000/containers:overlay.mount_program=/home/rsync/.local/container/bin/fuse-overlayfs,overlay.mountopt=nodev,fsync=0]@eeb6ee3f44bd0b5103bb561b4c16bcb82328cfe5809ab675bb17ab3a16c517c9"
DEBU[0000] Found image "docker.io/library/centos:centos7.9.2009" as "docker.io/library/centos:centos7.9.2009" in local containers storage
DEBU[0000] Found image "docker.io/library/centos:centos7.9.2009" as "docker.io/library/centos:centos7.9.2009" in local containers storage ([overlay@/tmp/1000/share/containers/storage+/tmp/containers-user-1000/containers:overlay.mount_program=/home/rsync/.local/container/bin/fuse-overlayfs,overlay.mountopt=nodev,fsync=0]@eeb6ee3f44bd0b5103bb561b4c16bcb82328cfe5809ab675bb17ab3a16c517c9)
DEBU[0000] Looking up image "docker.io/library/centos:centos7.9.2009" in local containers storage
DEBU[0000] Normalized platform linux/amd64 to {amd64 linux [] }
DEBU[0000] Trying "docker.io/library/centos:centos7.9.2009" ...
DEBU[0000] parsed reference into "[overlay@/tmp/1000/share/containers/storage+/tmp/containers-user-1000/containers:overlay.mount_program=/home/rsync/.local/container/bin/fuse-overlayfs,overlay.mountopt=nodev,fsync=0]@eeb6ee3f44bd0b5103bb561b4c16bcb82328cfe5809ab675bb17ab3a16c517c9"
DEBU[0000] Found image "docker.io/library/centos:centos7.9.2009" as "docker.io/library/centos:centos7.9.2009" in local containers storage
DEBU[0000] Found image "docker.io/library/centos:centos7.9.2009" as "docker.io/library/centos:centos7.9.2009" in local containers storage ([overlay@/tmp/1000/share/containers/storage+/tmp/containers-user-1000/containers:overlay.mount_program=/home/rsync/.local/container/bin/fuse-overlayfs,overlay.mountopt=nodev,fsync=0]@eeb6ee3f44bd0b5103bb561b4c16bcb82328cfe5809ab675bb17ab3a16c517c9)
DEBU[0000] exporting opaque data as blob "sha256:eeb6ee3f44bd0b5103bb561b4c16bcb82328cfe5809ab675bb17ab3a16c517c9"
DEBU[0000] [graphdriver] trying provided driver "overlay"
DEBU[0000] overlay: mount_program=/home/rsync/.local/container/bin/fuse-overlayfs
DEBU[0000] backingFs=xfs, projectQuotaSupported=false, useNativeDiff=false, usingMetacopy=false
DEBU[0000] overlay: mount_data=nodev,fsync=0,lowerdir=/tmp/1000/share/containers/storage/overlay/l/XTKGVV3AVTILAFY7KWE7ZSSLAB,upperdir=/tmp/1000/share/containers/storage/overlay/37853418d7844a50c0e3100a9feb98826d9c809bf5114b85508fa1d4066d81c1/diff,workdir=/tmp/1000/share/containers/storage/overlay/37853418d7844a50c0e3100a9feb98826d9c809bf5114b85508fa1d4066d81c1/work,volatile,context="system_u:object_r:svirt_sandbox_file_t:s0:c761,c952"
DEBU[0000] Container ID: 490c92350829de8f6a5ed8a8e61312185f58623469f67ce8fadd02a061c14f65
DEBU[0000] Parsed Step: {Env:[PATH=/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/bin] Command:shell Args:[/bin/bash -c] Flags:[] Attrs:map[json:true] Message:SHELL /bin/bash -c Original:SHELL ["/bin/bash", "-c"]}
STEP 2/4: SHELL ["/bin/bash", "-c"]
DEBU[0000] parsed reference into "[overlay@/tmp/1000/share/containers/storage+/tmp/containers-user-1000/containers:overlay.mount_program=/home/rsync/.local/container/bin/fuse-overlayfs,overlay.mountopt=nodev,fsync=0]@eeb6ee3f44bd0b5103bb561b4c16bcb82328cfe5809ab675bb17ab3a16c517c9"
DEBU[0000] exporting opaque data as blob "sha256:eeb6ee3f44bd0b5103bb561b4c16bcb82328cfe5809ab675bb17ab3a16c517c9"
DEBU[0000] parsed reference into "[overlay@/tmp/1000/share/containers/storage+/tmp/containers-user-1000/containers:overlay.mount_program=/home/rsync/.local/container/bin/fuse-overlayfs,overlay.mountopt=nodev,fsync=0]@5b52fbd2b039f23a0f89117f418b270b73b6b62672de58adefdbe8ce291544b2"
DEBU[0000] exporting opaque data as blob "sha256:5b52fbd2b039f23a0f89117f418b270b73b6b62672de58adefdbe8ce291544b2"
--> Using cache 5b52fbd2b039f23a0f89117f418b270b73b6b62672de58adefdbe8ce291544b2
--> 5b52fbd2b03
DEBU[0000] Pulling image 5b52fbd2b039f23a0f89117f418b270b73b6b62672de58adefdbe8ce291544b2 (policy: never)
DEBU[0000] Looking up image "5b52fbd2b039f23a0f89117f418b270b73b6b62672de58adefdbe8ce291544b2" in local containers storage
DEBU[0000] Normalized platform linux/amd64 to {amd64 linux [] }
DEBU[0000] Trying "5b52fbd2b039f23a0f89117f418b270b73b6b62672de58adefdbe8ce291544b2" ...
DEBU[0000] parsed reference into "[overlay@/tmp/1000/share/containers/storage+/tmp/containers-user-1000/containers:overlay.mount_program=/home/rsync/.local/container/bin/fuse-overlayfs,overlay.mountopt=nodev,fsync=0]@5b52fbd2b039f23a0f89117f418b270b73b6b62672de58adefdbe8ce291544b2"
DEBU[0000] Found image "5b52fbd2b039f23a0f89117f418b270b73b6b62672de58adefdbe8ce291544b2" as "5b52fbd2b039f23a0f89117f418b270b73b6b62672de58adefdbe8ce291544b2" in local containers storage
DEBU[0000] Found image "5b52fbd2b039f23a0f89117f418b270b73b6b62672de58adefdbe8ce291544b2" as "5b52fbd2b039f23a0f89117f418b270b73b6b62672de58adefdbe8ce291544b2" in local containers storage ([overlay@/tmp/1000/share/containers/storage+/tmp/containers-user-1000/containers:overlay.mount_program=/home/rsync/.local/container/bin/fuse-overlayfs,overlay.mountopt=nodev,fsync=0]@5b52fbd2b039f23a0f89117f418b270b73b6b62672de58adefdbe8ce291544b2)
DEBU[0000] exporting opaque data as blob "sha256:5b52fbd2b039f23a0f89117f418b270b73b6b62672de58adefdbe8ce291544b2"
DEBU[0000] exporting opaque data as blob "sha256:5b52fbd2b039f23a0f89117f418b270b73b6b62672de58adefdbe8ce291544b2"
DEBU[0000] overlay: mount_data=nodev,fsync=0,lowerdir=/tmp/1000/share/containers/storage/overlay/l/XTKGVV3AVTILAFY7KWE7ZSSLAB,upperdir=/tmp/1000/share/containers/storage/overlay/babbd75a1f8d4863938a6223036a14fedd9142cfb2334a977edd6150f5900e4e/diff,workdir=/tmp/1000/share/containers/storage/overlay/babbd75a1f8d4863938a6223036a14fedd9142cfb2334a977edd6150f5900e4e/work,volatile,context="system_u:object_r:svirt_sandbox_file_t:s0:c761,c952"
DEBU[0001] Container ID: 4cf53ae9f1fbb7c015035033db459a5d8b928b1a16faca7cc2b6bc5ad3487a71
DEBU[0001] Parsed Step: {Env:[PATH=/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/bin] Command:run Args:[yum update] Flags:[] Attrs:map[] Message:RUN yum update Original:RUN yum update}
STEP 3/4: RUN yum update
DEBU[0001] RUN imagebuilder.Run{Shell:true, Args:[]string{"yum update"}, Mounts:[]string(nil)}, docker.Config{Hostname:"", Domainname:"", User:"", Memory:0, MemorySwap:0, MemoryReservation:0, KernelMemory:0, CPUShares:0, CPUSet:"", PortSpecs:[]string(nil), ExposedPorts:map[docker.Port]struct {}{}, PublishService:"", StopSignal:"", StopTimeout:0, Env:[]string{"PATH=/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/bin"}, Cmd:[]string{"/bin/bash"}, Shell:[]string{"/bin/bash", "-c"}, Healthcheck:(*docker.HealthConfig)(nil), DNS:[]string(nil), Image:"", Volumes:map[string]struct {}{}, VolumeDriver:"", WorkingDir:"", MacAddress:"", Entrypoint:[]string{}, SecurityOpts:[]string(nil), OnBuild:[]string{}, Mounts:[]docker.Mount(nil), Labels:map[string]string{"org.label-schema.build-date":"20201113", "org.label-schema.license":"GPLv2", "org.label-schema.name":"CentOS Base Image", "org.label-schema.schema-version":"1.0", "org.label-schema.vendor":"CentOS", "org.opencontainers.image.create
d":"2020-11-13 00:00:00+00:00", "org.opencontainers.image.licenses":"GPL-2.0-only", "org.opencontainers.image.title":"CentOS Base Image", "org.opencontainers.image.vendor":"CentOS"}, AttachStdin:false, AttachStdout:false, AttachStderr:false, ArgsEscaped:false, Tty:false, OpenStdin:false, StdinOnce:false, NetworkDisabled:false, VolumesFrom:""}
DEBU[0001] using "/var/tmp/buildah825064852" to hold bundle data
DEBU[0001] Forcing use of an IPC namespace.
DEBU[0001] Forcing use of a PID namespace.
DEBU[0001] Forcing use of a user namespace.
DEBU[0001] Resources: &define.CommonBuildOptions{AddHost:[]string{}, CgroupParent:"", CPUPeriod:0x0, CPUQuota:0, CPUShares:0x0, CPUSetCPUs:"", CPUSetMems:"", HTTPProxy:true, Memory:0, DNSSearch:[]string{}, DNSServers:[]string{}, DNSOptions:[]string{}, MemorySwap:0, LabelOpts:[]string(nil), OmitTimestamp:false, SeccompProfilePath:"", ApparmorProfile:"", ShmSize:"65536k", Ulimit:[]string{}, Volumes:[]string{}, Secrets:[]string{}, SSHSources:[]string{}}
DEBU[0001] adding slirp4netns 10.0.2.3 built-in DNS server
DEBU[0001] /etc/system-fips does not exist on host, not mounting FIPS mode subscription
DEBU[0000] bind mounted "/tmp/1000/share/containers/storage/overlay/babbd75a1f8d4863938a6223036a14fedd9142cfb2334a977edd6150f5900e4e/merged" to "/var/tmp/buildah825064852/mnt/rootfs"
DEBU[0000] config = {"ociVersion":"1.0.2-dev","process":{"user":{"uid":0,"gid":0},"args":["/bin/sh","-c","yum update"],"env":["PATH=/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/bin","HOSTNAME=4cf53ae9f1fb"],"cwd":"/","capabilities":{"bounding":["CAP_AUDIT_WRITE","CAP_CHOWN","CAP_DAC_OVERRIDE","CAP_FOWNER","CAP_FSETID","CAP_KILL","CAP_MKNOD","CAP_NET_BIND_SERVICE","CAP_NET_RAW","CAP_SETFCAP","CAP_SETGID","CAP_SETPCAP","CAP_SETUID","CAP_SYS_CHROOT"],"effective":["CAP_AUDIT_WRITE","CAP_CHOWN","CAP_DAC_OVERRIDE","CAP_FOWNER","CAP_FSETID","CAP_KILL","CAP_MKNOD","CAP_NET_BIND_SERVICE","CAP_NET_RAW","CAP_SETFCAP","CAP_SETGID","CAP_SETPCAP","CAP_SETUID","CAP_SYS_CHROOT"],"inheritable":["CAP_AUDIT_WRITE","CAP_CHOWN","CAP_DAC_OVERRIDE","CAP_FOWNER","CAP_FSETID","CAP_KILL","CAP_MKNOD","CAP_NET_BIND_SERVICE","CAP_NET_RAW","CAP_SETFCAP","CAP_SETGID","CAP_SETPCAP","CAP_SETUID","CAP_SYS_CHROOT"],"permitted":["CAP_AUDIT_WRITE","CAP_CHOWN","CAP_DAC_OVERRIDE","CAP_FOWNER","CAP_FSETID","CAP
_KILL","CAP_MKNOD","CAP_NET_BIND_SERVICE","CAP_NET_RAW","CAP_SETFCAP","CAP_SETGID","CAP_SETPCAP","CAP_SETUID","CAP_SYS_CHROOT"],"ambient":["CAP_AUDIT_WRITE","CAP_CHOWN","CAP_DAC_OVERRIDE","CAP_FOWNER","CAP_FSETID","CAP_KILL","CAP_MKNOD","CAP_NET_BIND_SERVICE","CAP_NET_RAW","CAP_SETFCAP","CAP_SETGID","CAP_SETPCAP","CAP_SETUID","CAP_SYS_CHROOT"]},"rlimits":[{"type":"RLIMIT_NOFILE","hard":1024,"soft":1024},{"type":"RLIMIT_NPROC","hard":32768,"soft":32768}],"selinuxLabel":"system_u:system_r:svirt_lxc_net_t:s0:c761,c952"},"root":{"path":"/var/tmp/buildah825064852/mnt/rootfs"},"hostname":"4cf53ae9f1fb","mounts":[{"destination":"/sys","type":"sysfs","source":"sysfs","options":["nosuid","noexec","nodev","ro"]},{"destination":"/proc","type":"proc","source":"proc","options":["nosuid","noexec","nodev"]},{"destination":"/dev","type":"tmpfs","source":"tmpfs","options":["nosuid","noexec","strictatime","mode=755","size=65536k"]},{"destination":"/etc/hosts","type":"bind","source":"/var/tmp/buildah8
25064852/hosts","options":["rbind"]},{"destination":"/etc/resolv.conf","type":"bind","source":"/var/tmp/buildah825064852/resolv.conf","options":["rbind"]},{"destination":"/dev/pts","type":"devpts","source":"devpts","options":["nosuid","noexec","newinstance","ptmxmode=0666","mode=0620","gid=5"]},{"destination":"/dev/shm","type":"tmpfs","source":"shm","options":["nosuid","noexec","nodev","mode=1777","size=65536k"]},{"destination":"/dev/mqueue","type":"mqueue","source":"mqueue","options":["nosuid","noexec","nodev"]},{"destination":"/run/.containerenv","type":"bind","source":"/var/tmp/buildah825064852/run/.containerenv","options":["rbind"]},{"destination":"/sys/fs/cgroup","type":"cgroup","source":"cgroup","options":["nosuid","noexec","nodev","relatime","ro"]}],"linux":{"uidMappings":[{"containerID":0,"hostID":0,"size":1},{"containerID":1,"hostID":1,"size":65536}],"gidMappings":[{"containerID":0,"hostID":0,"size":1},{"containerID":1,"hostID":1,"size":65536}],"resources":{"devices":[{"all
ow":false,"access":"rwm"}]},"namespaces":[{"type":"pid"},{"type":"network"},{"type":"ipc"},{"type":"uts"},{"type":"mount"},{"type":"user"}],"seccomp":{"defaultAction":"SCMP_ACT_ERRNO","defaultErrnoRet":38,"architectures":["SCMP_ARCH_X86_64","SCMP_ARCH_X86","SCMP_ARCH_X32"],"syscalls":[{"names":["bdflush","io_pgetevents","kexec_file_load","kexec_load","migrate_pages","move_pages","nfsservctl","nice","oldfstat","oldlstat","oldolduname","oldstat","olduname","pciconfig_iobase","pciconfig_read","pciconfig_write","sgetmask","ssetmask","swapcontext","swapoff","swapon","sysfs","uselib","userfaultfd","ustat","vm86","vm86old","vmsplice"],"action":"SCMP_ACT_ERRNO","errnoRet":1},{"names":["_llseek","_newselect","accept","accept4","access","adjtimex","alarm","bind","brk","capget","capset","chdir","chmod","chown","chown32","clock_adjtime","clock_adjtime64","clock_getres","clock_getres_time64","clock_gettime","clock_gettime64","clock_nanosleep","clock_nanosleep_time64","clone","clone3","close","cl
ose_range","connect","copy_file_range","creat","dup","dup2","dup3","epoll_create","epoll_create1","epoll_ctl","epoll_ctl_old","epoll_pwait","epoll_pwait2","epoll_wait","epoll_wait_old","eventfd","eventfd2","execve","execveat","exit","exit_group","faccessat","faccessat2","fadvise64","fadvise64_64","fallocate","fanotify_mark","fchdir","fchmod","fchmodat","fchown","fchown32","fchownat","fcntl","fcntl64","fdatasync","fgetxattr","flistxattr","flock","fork","fremovexattr","fsconfig","fsetxattr","fsmount","fsopen","fspick","fstat","fstat64","fstatat64","fstatfs","fstatfs64","fsync","ftruncate","ftruncate64","futex","futex_time64","futimesat","get_robust_list","get_thread_area","getcpu","getcwd","getdents","getdents64","getegid","getegid32","geteuid","geteuid32","getgid","getgid32","getgroups","getgroups32","getitimer","get_mempolicy","getpeername","getpgid","getpgrp","getpid","getppid","getpriority","getrandom","getresgid","getresgid32","getresuid","getresuid32","getrlimit","getrusage","ge
tsid","getsockname","getsockopt","gettid","gettimeofday","getuid","getuid32","getxattr","inotify_add_watch","inotify_init","inotify_init1","inotify_rm_watch","io_cancel","io_destroy","io_getevents","io_setup","io_submit","ioctl","ioprio_get","ioprio_set","ipc","keyctl","kill","lchown","lchown32","lgetxattr","link","linkat","listen","listxattr","llistxattr","lremovexattr","lseek","lsetxattr","lstat","lstat64","madvise","mbind","memfd_create","memfd_secret","mincore","mkdir","mkdirat","mknod","mknodat","mlock","mlock2","mlockall","mmap","mmap2","mount","move_mount","mprotect","mq_getsetattr","mq_notify","mq_open","mq_timedreceive","mq_timedreceive_time64","mq_timedsend","mq_timedsend_time64","mq_unlink","mremap","msgctl","msgget","msgrcv","msgsnd","msync","munlock","munlockall","munmap","name_to_handle_at","nanosleep","newfstatat","open","openat","openat2","open_tree","pause","pidfd_getfd","pidfd_open","pidfd_send_signal","pipe","pipe2","pivot_root","pkey_alloc","pkey_free","pkey_mpro
tect","poll","ppoll","ppoll_time64","prctl","pread64","preadv","preadv2","prlimit64","pselect6","pselect6_time64","pwrite64","pwritev","pwritev2","read","readahead","readdir","readlink","readlinkat","readv","reboot","recv","recvfrom","recvmmsg","recvmmsg_time64","recvmsg","remap_file_pages","removexattr","rename","renameat","renameat2","restart_syscall","rmdir","rseq","rt_sigaction","rt_sigpending","rt_sigprocmask","rt_sigqueueinfo","rt_sigreturn","rt_sigsuspend","rt_sigtimedwait","rt_sigtimedwait_time64","rt_tgsigqueueinfo","sched_get_priority_max","sched_get_priority_min","sched_getaffinity","sched_getattr","sched_getparam","sched_getscheduler","sched_rr_get_interval","sched_rr_get_interval_time64","sched_setaffinity","sched_setattr","sched_setparam","sched_setscheduler","sched_yield","seccomp","select","semctl","semget","semop","semtimedop","semtimedop_time64","send","sendfile","sendfile64","sendmmsg","sendmsg","sendto","setns","set_mempolicy","set_robust_list","set_thread_area",
"set_tid_address","setfsgid","setfsgid32","setfsuid","setfsuid32","setgid","setgid32","setgroups","setgroups32","setitimer","setpgid","setpriority","setregid","setregid32","setresgid","setresgid32","setresuid","setresuid32","setreuid","setreuid32","setrlimit","setsid","setsockopt","setuid","setuid32","setxattr","shmat","shmctl","shmdt","shmget","shutdown","sigaltstack","signalfd","signalfd4","sigreturn","socketcall","socketpair","splice","stat","stat64","statfs","statfs64","statx","symlink","symlinkat","sync","sync_file_range","syncfs","sysinfo","syslog","tee","tgkill","time","timer_create","timer_delete","timer_getoverrun","timer_gettime","timer_gettime64","timer_settime","timer_settime64","timerfd_create","timerfd_gettime","timerfd_gettime64","timerfd_settime","timerfd_settime64","times","tkill","truncate","truncate64","ugetrlimit","umask","umount","umount2","uname","unlink","unlinkat","unshare","utime","utimensat","utimensat_time64","utimes","vfork","wait4","waitid","waitpid","wr
ite","writev"],"action":"SCMP_ACT_ALLOW"},{"names":["personality"],"action":"SCMP_ACT_ALLOW","args":[{"index":0,"value":0,"op":"SCMP_CMP_EQ"}]},{"names":["personality"],"action":"SCMP_ACT_ALLOW","args":[{"index":0,"value":8,"op":"SCMP_CMP_EQ"}]},{"names":["personality"],"action":"SCMP_ACT_ALLOW","args":[{"index":0,"value":131072,"op":"SCMP_CMP_EQ"}]},{"names":["personality"],"action":"SCMP_ACT_ALLOW","args":[{"index":0,"value":131080,"op":"SCMP_CMP_EQ"}]},{"names":["personality"],"action":"SCMP_ACT_ALLOW","args":[{"index":0,"value":4294967295,"op":"SCMP_CMP_EQ"}]},{"names":["arch_prctl"],"action":"SCMP_ACT_ALLOW"},{"names":["modify_ldt"],"action":"SCMP_ACT_ALLOW"},{"names":["open_by_handle_at"],"action":"SCMP_ACT_ERRNO","errnoRet":1},{"names":["bpf","fanotify_init","lookup_dcookie","perf_event_open","quotactl","setdomainname","sethostname","setns"],"action":"SCMP_ACT_ERRNO","errnoRet":1},{"names":["chroot"],"action":"SCMP_ACT_ALLOW"},{"names":["delete_module","init_module","finit_mo
dule","query_module"],"action":"SCMP_ACT_ERRNO","errnoRet":1},{"names":["acct"],"action":"SCMP_ACT_ERRNO","errnoRet":1},{"names":["kcmp","process_madvise","process_vm_readv","process_vm_writev","ptrace"],"action":"SCMP_ACT_ERRNO","errnoRet":1},{"names":["iopl","ioperm"],"action":"SCMP_ACT_ERRNO","errnoRet":1},{"names":["settimeofday","stime","clock_settime","clock_settime64"],"action":"SCMP_ACT_ERRNO","errnoRet":1},{"names":["vhangup"],"action":"SCMP_ACT_ERRNO","errnoRet":1},{"names":["socket"],"action":"SCMP_ACT_ALLOW"}]},"maskedPaths":["/proc/acpi","/proc/kcore","/proc/keys","/proc/latency_stats","/proc/timer_list","/proc/timer_stats","/proc/sched_debug","/proc/scsi","/sys/firmware","/sys/fs/selinux","/sys/dev"],"readonlyPaths":["/proc/asound","/proc/bus","/proc/fs","/proc/irq","/proc/sys","/proc/sysrq-trigger"],"mountLabel":"system_u:object_r:svirt_sandbox_file_t:s0:c761,c952"}}
DEBU[0000] Running ["runc" "create" "--bundle" "/var/tmp/buildah825064852" "--pid-file" "/var/tmp/buildah825064852/pid" "--no-new-keyring" "buildah-buildah825064852"]
DEBU[0000] waiting for parent start message
DEBU[0002] network namespace successfully setup, send start message to child
DEBU[0000] Running ["runc" "start" "buildah-buildah825064852"]
DEBU[0000] closing stdin
DEBU[0000] "/var/tmp/buildah825064852/mnt/rootfs" is apparently not really mounted, skipping
DEBU[0000] "/var/tmp/buildah825064852/mnt" is apparently not really mounted, skipping
container exited on segmentation fault
DEBU[0002] error building at step {Env:[PATH=/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/bin] Command:run Args:[yum update] Flags:[] Attrs:map[] Message:RUN yum update Original:RUN yum update}: error while running runtime: exit status 1
Error: error building at STEP "RUN yum update": error while running runtime: exit status 1
1 year, 8 months
Re: container exited on segmentation fault
by GHui
> $ podman build -f centos.dockerfile
> STEP 1/4: FROM docker.io/library/centos:centos7.9.2009
> STEP 2/4: SHELL ["/bin/bash", "-c"]
> --> Using cache 5b52fbd2b039f23a0f89117f418b270b73b6b62672de58adefdbe8ce291544b2
> --> 5b52fbd2b03
> STEP 3/4: RUN yum -y update
> container exited on segmentation fault
> Error: error building at STEP "RUN yum -y update": error while running runtime:
> exit status 1
> Most likely the system is running out of memory. when building. Other
> options would be something like SELinux or SECCOMP or User namespace is
> being denied and yum is crashing.
Yes, it because of SELinux is enabled.
1 year, 8 months
image is in use by a container
by GHui Wu
When I remove the image, it output the error "image is in use by a container'. But there is no container.
$ podman images
REPOSITORY TAG IMAGE ID CREATED SIZE
docker.io/library/centos 7.9.2009 eeb6ee3f44bd 10 months ago 212 MB
docker.io/library/centos 8.4.2105 5d0da3dc9764 10 months ago 239 MB
$ podman rmi eeb6ee3f44bd
Error: Image used by ebc5c35088b04b38a4f6c6575951f2a0effc7f17a6aabc1a2d7d29d24f6e5094: image is in use by a container
$ podman ps -a
CONTAINER ID IMAGE COMMAND CREATED STATUS PORTS NAMES
1 year, 8 months
ERRO[0002] Getting info on OCI runtime runc: error getting version of OCI runtime runc: `/export/home/rsync/.local/container/sbin/runc --version` failed: (signal: killed)
by ugiwgh@qq.com
When I execute "podman info", there is error output.
But when I execute "/export/home/rsync/.local/container/sbin/runc --version", it runs right.
$ podman info
ERRO[0002] Getting info on OCI runtime runc: error getting version of OCI runtime runc: `/export/home/rsync/.local/container/sbin/runc --version` failed: (signal: killed)
host:
arch: amd64
buildahVersion: 1.24.1
cgroupControllers: []
cgroupManager: cgroupfs
cgroupVersion: v1
conmon: null
cpus: 1
distribution:
distribution: '"centos"'
version: "7"
eventLogger: file
hostname: myhost
idMappings:
gidmap:
- container_id: 0
host_id: 1212
size: 1
- container_id: 1
host_id: 7598096
size: 35536
uidmap:
- container_id: 0
host_id: 1212
size: 1
- container_id: 1
host_id: 7598096
size: 35536
kernel: 3.10.0-1127.18.2.el7.x86_64
linkmode: dynamic
logDriver: k8s-file
memFree: 291183898624
memTotal: 404003688448
networkBackend: cni
ociRuntime: null
os: linux
remoteSocket:
path: /tmp/podman-run-1212/podman/podman.sock
security:
apparmorEnabled: false
capabilities: CAP_AUDIT_WRITE,CAP_CHOWN,CAP_DAC_OVERRIDE,CAP_FOWNER,CAP_FSETID,CAP_KILL,CAP_MKNOD,CAP_NET_BIND_SERVICE,CAP_NET_RAW,CAP_SETFCAP,CAP_SETGID,CAP_SETPCAP,CAP_SETUID,CAP_SYS_CHROOT
rootless: true
seccompEnabled: true
seccompProfilePath: ""
selinuxEnabled: false
serviceIsRemote: false
slirp4netns:
executable: /export/home/rsync/.local/container/bin/slirp4netns
package: Unknown
version: |-
slirp4netns version 1.1.12
commit: 7a104a101aa3278a2152351a082a6df71f57c9a3
libslirp: 4.6.1.55-888d
SLIRP_CONFIG_VERSION_MAX: 4
libseccomp: 2.3.1
swapFree: 0
swapTotal: 0
uptime: 441h 18m 32.4s (Approximately 18.38 days)
plugins:
log:
- k8s-file
- none
- passthrough
network:
- bridge
- macvlan
- ipvlan
volume:
- local
registries: {}
store:
configFile: /export/home/rsync/.local/container/config/containers/storage.conf
containerStore:
number: 8
paused: 0
running: 0
stopped: 8
graphDriverName: overlay
graphOptions:
overlay.imagestore: /export/home/rsync/.local/share/containers/storage
overlay.mount_program:
Executable: /export/home/rsync/.local/container/bin/fuse-overlayfs
Package: Unknown
Version: |-
fusermount3 version: 3.10.4
fuse-overlayfs: version 1.8.2
FUSE library version 3.10.3
using FUSE kernel interface version 7.31
overlay.mountopt: nodev,fsync=0
graphRoot: /tmp/1212/14810/share/containers/storage
graphStatus:
Backing Filesystem: tmpfs
Native Overlay Diff: "false"
Supports d_type: "true"
Using metacopy: "false"
imageCopyTmpDir: /var/tmp
imageStore:
number: 6
runRoot: /tmp/containers-user-1212/containers
volumePath: /tmp/1212/14810/share/containers/storage/volumes
version:
APIVersion: 4.0.2
Built: 1648031621
BuiltTime: Wed Mar 23 18:33:41 2022
GitCommit: c99f9f1b6960b98158b7f5fc4e6b5ac1a10b3542
GoVersion: go1.16.13
OsArch: linux/amd64
Version: 4.0.2
$ /export/home/rsync/.local/container/sbin/runc --version
runc version 1.1.0
spec: 1.0.2-dev
go: go1.16.13
libseccomp: 2.3.1
1 year, 8 months
Error processing tar file(signal: killed)
by ugiwgh@qq.com
When I pull centos:7.9.2009, it pulls successfully.
But when I pull the following image, there is errro.
$ podman --log-level debug pull myregistry/vasp:test
Copying blob d9ba75c043da skipped: already exists
Copying blob c316183b7326 skipped: already exists
Copying blob 3a0615eb7473 [>-------------------------------------] 9.6MiB / 250.5MiB
Copying blob d9ba75c043da skipped: already exists
Copying blob c316183b7326 skipped: already exists
Copying blob d9ba75c043da skipped: already exists
Copying blob c316183b7326 skipped: already exists
Copying blob d9ba75c043da skipped: already exists
Copying blob c316183b7326 skipped: already exists
Copying blob 3a0615eb7473 done
Copying blob a0867b88f18e done
Copying blob 6b3122725716 done
Copying blob cf4b6482cd5a done
Copying blob 5b667cbbcbe1 done
Copying blob e04fe02d5ee6 done
Copying blob 32e582c244b5 done
DEBU[0088] Error pulling candidate myregistry.com/vasp:test: writing blob: adding layer with blob "sha256:cf4b6482cd5adf3028b32858df192c5516f7db480601d2af3e22a7c42ad3b36a": Error processing tar file(signal: killed):
Error: writing blob: adding layer with blob "sha256:cf4b6482cd5adf3028b32858df192c5516f7db480601d2af3e22a7c42ad3b36a": Error processing tar file(signal: killed):
1 year, 8 months
--root on a separately mounted filesystem - partly not working - ?
by lejeczek
Hi guys.
I have a some bits such as images, containers on a separate
disk which disk mounts at boot time, then 'podman' is called
with '--root' to that mount-point - pretty regular stuff.
All works until system reboots. After reboot I see:
-> $ podman-apps container ls
ERRO[0000] Joining network namespace for container
d00badc4665ca3eae92b720925e6088e534ec81e01153d9d85f81eccf87d6a62:
error retrieving network namespace at
/run/user/2503/netns/netns-77b9d3b5-6522-741a-0d12-34921bf12828:
failed to Statfs
"/run/user/2503/netns/netns-77b9d3b5-6522-741a-0d12-34921bf12828":
no such file or directory
Error: error joining network namespace of container
d00badc4665ca3eae92b720925e6088e534ec81e01153d9d85f81eccf87d6a62:
error retrieving network namespace at
/run/user/2503/netns/netns-77b9d3b5-6522-741a-0d12-34921bf12828:
failed to Statfs
"/run/user/2503/netns/netns-77b9d3b5-6522-741a-0d12-34921bf12828":
no such file or directory
at which point I can:
-> $ podman-apps system reset
I can re-create my containers and all seems to work until,
next reboot when I get errors as above.
'podman-apps' is an alias to 'podman --root /my-mountpoint'
What is failing here? Some dependencies I cannot see which
cause this failure?
many thanks, L.
1 year, 8 months
