Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!
Bug 692118 - app-emulation/libpod-1.4.4 - podman run -it --rm alpine: Error: container_linux.go:345: starting container process caused "process_linux.go:281: applying cgroup configuration for process caused \"mountpoint for devices not found\""
Summary: app-emulation/libpod-1.4.4 - podman run -it --rm alpine: Error: container_lin...
Status: RESOLVED FIXED
Alias: None
Product: Gentoo Linux
Classification: Unclassified
Component: Current packages (show other bugs)
Hardware: AMD64 Linux
: Normal normal (vote)
Assignee: Zac Medico
URL: https://bugzilla.redhat.com/show_bug....
Whiteboard:
Keywords:
Depends on:
Blocks:
 
Reported: 2019-08-14 08:48 UTC by OwenJia
Modified: 2019-11-24 19:46 UTC (History)
0 users

See Also:
Package list:
Runtime testing required: ---

Attachments
emerge --info (emerge.info.xz,6.86 KB, application/x-xz)
2019-08-14 08:48 UTC, OwenJia 		Details
app-emulation/crun-0.7 (crun-0.7.ebuild,653 bytes, text/plain)
2019-08-14 13:14 UTC, OwenJia 		Details
View All Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.
Description OwenJia 2019-08-14 08:48:24 UTC 
Created attachment 586778 [details]
emerge --info

Steps to Reproduce:
1. upgrade systemd 243_rc1-r2
2. run podman

Actual Results:
# podman run -it --rm alpine
Error: container_linux.go:345: starting container process caused "process_linux.go:281: applying cgroup configuration for process caused \"mountpoint for devices not found\""
: OCI runtime error

Expected Results:  
Container should start


FYI:
$ systemctl --version
systemd 243 (243)
+PAM -AUDIT -SELINUX +IMA +APPARMOR +SMACK -SYSVINIT +UTMP -LIBCRYPTSETUP +GCRYPT +GNUTLS +ACL -XZ +LZ4 +SECCOMP +BLKID -ELFUTILS +KMOD +IDN2 -IDN +PCRE2 default-hierarchy=unified
Comment 1 OwenJia 2019-08-14 13:14:00 UTC 
Created attachment 586786 [details]
app-emulation/crun-0.7

Workaround:
using crun runtime instead.

1. install crun:
  emerge -av crun 
2. change runtime
  add `runtime ="/usr/bin/crun"` to /etc/containers/libpod.conf
Comment 2 Zac Medico gentoo-dev 2019-08-21 19:54:38 UTC 
I guess we could change the runc dependency to something like this:

  || ( >=app-emulation/runc-1.0.0_rc6 app-emulation/crun )

However, then libpod would probably fail if runc is not installed and /etc/containers/libpod.conf is not configured with runtime = "crun".
Comment 3 Giuseppe Scrivano 2019-11-07 19:10:53 UTC 
by default on Fedora we are using crun when the system is configured to use cgroups v2 (unified hierarchy)
Comment 4 Larry the Git Cow gentoo-dev 2019-11-24 19:46:34 UTC 
The bug has been closed via the following commit(s):

https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=69fa809444d7ca0ecc63519e76790d2a321c9936

commit 69fa809444d7ca0ecc63519e76790d2a321c9936
Author:     Matthias Dahl <matthias.dahl@binary-island.eu>
AuthorDate: 2019-11-24 08:07:28 +0000
Commit:     Zac Medico <zmedico@gentoo.org>
CommitDate: 2019-11-24 19:46:25 +0000

    app-emulation/libpod: Add missing seccomp.json and crun runtime dep
    
    seccomp.json needs to be installed in /usr/share/containers and will
    be used by libpod as well as buildah. Without it, some containers
    will not work due to seccomp usage that is otherwise blocked.
    
    Fedora has switched to crun as the default container runtime. At the
    moment it is the only runtime that supports CGroup v2 which in-turn
    greatly helps with rootless mode. Support crun as an alternative to
    the runc dependency.
    
    Closes: https://bugs.gentoo.org/692118
    Closes: https://github.com/gentoo/gentoo/pull/13743
    Package-Manager: Portage-2.3.79, Repoman-2.3.18
    Signed-off-by: Matthias Dahl <matthias.dahl@binary-island.eu>
    Signed-off-by: Zac Medico <zmedico@gentoo.org>

 app-emulation/libpod/{libpod-1.6.3.ebuild => libpod-1.6.3-r1.ebuild} | 5 ++++-
 1 file changed, 4 insertions(+), 1 deletion(-)