-
Notifications
You must be signed in to change notification settings - Fork 2.4k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Update CI VM Images #19751
Update CI VM Images #19751
Conversation
@Luap99 commented:
|
Un-drafting this PR, though CI will most likely fail given Paul's comment (above). |
LGTM |
[APPROVALNOTIFIER] This PR is APPROVED This pull-request has been approved by: cevich, rhatdan The full list of commands accepted by this bot can be found here. The pull request process is described here
Needs approval from an approver in each of these files:
Approvers can indicate their approval by writing |
Sorry for the delay, it took me a while to figure it out -- the new issue with pasta on Debian sid is fixed in 0.0~git20230908.05627dc-1. |
No worries I was a little preoccupied for the last few weeks anyway 😱 Building fresh images now. |
36ce7ff
to
50fac03
Compare
rawhide failures look like containers/crun#1308 |
50fac03
to
144f087
Compare
Thanks for taking a look Paul, that was both unexpected and appreciated 😀 |
The `v4.3.1` version of the library defines a common `passthrough_envars()` so it doesn't need to be duplicated in podman and buildah CI. It also includes an update to build-push which should make debugging easier. Finally, these images include setting of the en_US.UTF-8 locale to enable removal of a workaroud in a future commit. Signed-off-by: Chris Evich <[email protected]>
This reverts commit ed1f514. The en_US.UTF-8 locale is now added in the images at build time, containers/automation_images#295 Signed-off-by: Paul Holzinger <[email protected]>
144f087
to
ef8d88c
Compare
crun |
Uh oh, there are a bunch of "new to me" F38 failures:
This was using images freshly built last night (EST on the 26th). @Luap99 or @edsantiago or @umohnani8 have you seen any of these? FWIW, I'm planning a new set of image builds once the crun-1.9.1-3 is available or "a few days" whichever happens first 😄 |
Maybe significant: Ed's F39 PR with images built a few hours after mine do not show the F38 errors. |
Need new crun. Why are we both spending effort on the same thing? |
oh, I thought that was just for rawhide. At least it was only rawhide failing with slightly older VM images. I'll take your word for it though if you say that's what it is. It's a bit of an unknown how long the F39 PR will take, that's why this one is open. |
Closing in favor of #20162 |
…stem As a result of AppArmor commit d4b0fef10a4a ("parser: fix rule flag generation change_mount type rules"), we can't expect anymore to get permission to mount() / read-write, with MS_REC | MS_UNBINDABLE ("runbindable", in AppArmor terms), if we don't explicitly pass those flags as options. It used to work by mistake. Now, the reasonable expectation would be that we could just change the existing rule into: mount options=(rw, runbindable) "" -> /, ...but this now fails to load too, I think as a result of AppArmor commit 9d3f8c6cc05d ("parser: fix parsing of source as mount point for propagation type flags"). It works with 'rw' alone, but 'runbindable' is indeed a propagation type flag. Skip the source specification, it doesn't add anything meaningful to the rule anyway. Reported-by: Paul Holzinger <[email protected]> Link: containers/podman#19751 Signed-off-by: Stefano Brivio <[email protected]>
The
v4.3.1
version of the automation library defines a commonpassthrough_envars()
so it doesn't need to be duplicated in podman andbuildah CI. It also includes an update to build-push which should make
debugging easier.
Finally, these images include setting of the en_US.UTF-8 locale to enable
removal of a workaroud in a future commit.
This reverts commit ed1f514.
The en_US.UTF-8 locale is now added in the images at build time,
containers/automation_images#295
Does this PR introduce a user-facing change?