tmp: Do not remove tmp.mount unit file from the rootfs #301

amshinde · 2019-05-30T22:22:01Z

We should start this unit so that systemd can mount /tmp as
tmpfs.

Fixes #300

Signed-off-by: Archana Shinde [email protected]

We should start this unit so that systemd can mount /tmp as tmpfs. Fixes kata-containers#300 Signed-off-by: Archana Shinde <[email protected]>

Invoke tmp.mount by adding it to kata-containers.target. This is not invoked by systemd with current rootfs setup we have as one of the dependencies for tmp.mount is systemd-remount-fs.service which depends on /etc/fstab file being present(it is currenty missing) Instead of adding that file, start the tmp.mount unit by including it in kata-containers.target With this and change in os-builder to not delete the tmp.mount unit, (kata-containers/osbuilder#301) /tmp should now be writeable for systemd based images. For initrd this is handled by the agent itself. Fixes #kata-containers/osbuilder#300 Signed-off-by: Archana Shinde <[email protected]>

jodh-intel

lgtm.

Note: This needs to land before kata-containers/agent#564.

jodh-intel · 2019-05-31T07:51:26Z

/test

grahamwhaley

lgtm
@amshinde @GabyCT - do we think there is any way we can make a CI test to spot any regression of this in the future? I know that might be a little tricky, as this is outside the container workload space...

grahamwhaley · 2019-05-31T08:42:30Z

FC CI looks unhappy:

Complete!
INFO: Create symlink to /tmp in /var to create private temporal directories with systemd
INFO: Configure chrony file /rootfs/etc/chrony.conf
/osbuilder/rootfs.sh: line 398: /rootfs/etc/chrony.conf: No such file or directory
Failed at 116: sudo -E AGENT_INIT="${AGENT_INIT}" AGENT_VERSION="${agent_commit}" GOPATH="$GOPATH" USE_DOCKER=true OS_VERSION=${os_version} ./rootfs-builder/rootfs.sh "${distro}"
Failed at 18: "${cidir}/install_kata_image.sh"
+ exit_handler
+ '[' 1 -eq 0 ']'
+ info 'ERROR: test failed'
+ s='ERROR: test failed'
+ echo -e 'INFO: ERROR: test failed\n'
INFO: ERROR: test failed

amshinde · 2019-05-31T16:39:50Z

@grahamwhaley Just taking a look, did the FC CI just get fixed?

devimc · 2019-05-31T16:40:47Z

@amshinde yup

amshinde · 2019-05-31T16:45:58Z

@grahamwhaley @GabyCT @devimc We do need to have a test for this. Yes this is going to be tricky.
Maybe we test this by generating a debug rootfs as well and verify the mini-os mounts and services using
a debug console.
We need to be generating a debug rootfs(with debug shell and tracing) in the future from user debuggability point of view as well. Any suggestions?

Invoke tmp.mount by adding it to kata-containers.target. This is not invoked by systemd with current rootfs setup we have as one of the dependencies for tmp.mount is systemd-remount-fs.service which depends on /etc/fstab file being present(it is currenty missing) Instead of adding that file, start the tmp.mount unit by including it in kata-containers.target With this and change in os-builder to not delete the tmp.mount unit, (kata-containers/osbuilder#301) /tmp should now be writeable for systemd based images. For initrd this is handled by the agent itself. Fixes kata-containers#565 Signed-off-by: Archana Shinde <[email protected]>

chavafg · 2019-05-31T18:43:57Z

Seems like this change broke the dmesg log test on all CI:

13:13:39 [1] 
13:13:39 [1] • Failure [13.651 seconds]
13:13:39 [1] check dmesg logs errors
13:13:39 [1] /tmp/jenkins/workspace/kata-containers-tests-ubuntu-18-04-PR/go/src/github.com/kata-containers/tests/integration/docker/run_test.go:277
13:13:39 [1]   Run to check dmesg log errors
13:13:39 [1]   /tmp/jenkins/workspace/kata-containers-tests-ubuntu-18-04-PR/go/src/github.com/kata-containers/tests/integration/docker/run_test.go:294
13:13:39 [1]     should be empty [It]
13:13:39 [1]     /tmp/jenkins/workspace/kata-containers-tests-ubuntu-18-04-PR/go/src/github.com/kata-containers/tests/integration/docker/run_test.go:295
13:13:39 [1] 
13:13:39 [1]     Expected
13:13:39 [1]         <string>: [    0.619595] systemd[72]: tmp.mount: Failed to execute command: No such file or directory
13:13:39 [1]         [    0.619844] systemd[72]: tmp.mount: Failed at step EXEC spawning /usr/bin/mount: No such file or directory
13:13:39 [1]     to be empty
13:13:39 [1] 
13:13:39 [1]     /tmp/jenkins/workspace/kata-containers-tests-ubuntu-18-04-PR/go/src/github.com/kata-containers/tests/integration/docker/run_test.go:305
13:13:39 [1] ------------------------------
13:13:39 [1]

tmp: Do not remove tmp.mount unit file from the rootfs

6f294f4

We should start this unit so that systemd can mount /tmp as tmpfs. Fixes kata-containers#300 Signed-off-by: Archana Shinde <[email protected]>

amshinde mentioned this pull request May 30, 2019

tmp: Add tmp.mount to kata-containers.target kata-containers/agent#564

Merged

jodh-intel approved these changes May 31, 2019

View reviewed changes

grahamwhaley approved these changes May 31, 2019

View reviewed changes

devimc approved these changes May 31, 2019

View reviewed changes

devimc merged commit 030cd4d into kata-containers:master May 31, 2019

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

tmp: Do not remove tmp.mount unit file from the rootfs #301

tmp: Do not remove tmp.mount unit file from the rootfs #301

amshinde commented May 30, 2019

jodh-intel left a comment

jodh-intel commented May 31, 2019

grahamwhaley left a comment

grahamwhaley commented May 31, 2019

amshinde commented May 31, 2019

devimc commented May 31, 2019

amshinde commented May 31, 2019

chavafg commented May 31, 2019

tmp: Do not remove tmp.mount unit file from the rootfs #301

tmp: Do not remove tmp.mount unit file from the rootfs #301

Conversation

amshinde commented May 30, 2019

jodh-intel left a comment

Choose a reason for hiding this comment

jodh-intel commented May 31, 2019

grahamwhaley left a comment

Choose a reason for hiding this comment

grahamwhaley commented May 31, 2019

amshinde commented May 31, 2019

devimc commented May 31, 2019

amshinde commented May 31, 2019

chavafg commented May 31, 2019