| kata-irc-bot | <christophe> FYI, regarding issue #722, got that late on Friday: ```~# /usr/local/bin/kata-runtime version kata-runtime : 2.3.0-alpha2 commit : b63675c5e3b6681d017b9887d9834d3494550bdb-dirty OCI specs: 1.0.2-dev ~# podman ps --runtime=/usr/local/bin/kata-runtime WARN[0000] Conmon at /usr/libexec/podman/conmon invalid: outdated conmon version CONTAINER ID IMAGE COMMAND CREATED STATUS PORTS NAMES ~# podman run | 08:13 |
|---|---|---|
| kata-irc-bot | --runtime=/usr/local/bin/kata-runtime fedora WARN[0000] Conmon at /usr/libexec/podman/conmon invalid: outdated conmon version Error: OCI runtime error: Could not create the sandbox cgroup: cgroups: cgroup mountpoint does not exist``` | 08:13 |
| kata-irc-bot | <christophe> The work branch is here: https://github.com/c3d/kata-containers/commits/issue/722-podman. | 09:33 |
| kata-irc-bot | <christophe> Interestingly, cgroups v2 support has been improved a couple of weeks ago in `containerd/cgroups` : https://github.com/containerd/cgroups/tree/v1.0.2/v2 | 09:35 |
| *** Wow is now known as Guest3269 | 09:42 | |
| kata-irc-bot | <samuel.ortiz> Hey @christophe Did you send a PR for the API fix (ListProcesses)? | 13:37 |
| kata-irc-bot | <christophe> The underlying issue is https://github.com/kata-containers/kata-containers/issues/722. One step of it is about `ListProcesses`, but it's just one step along the way. So I'm not sure I understand your question :slightly_smiling_face: | 13:50 |
| kata-irc-bot | <christophe> … in the sense that `ListProcesses` was only removed because it was not being used, so the commit that restores it is because it is used again. | 13:53 |
| kata-irc-bot | <christophe> Of note, this is not a PR yet, more an RFC. We discussed with @dgibson an alternate approach, which is to create a wrapper around shim-v2, which might fly better in 1. Keeping the runtime smaller 2. Be able to "reroute" the RPC for future confidential containers work (`runk` style for anything that happens inside the trusted domain) | 13:54 |
| kata-irc-bot | <christophe> @samuel.ortiz Does that make more sense? | 13:57 |
| kata-irc-bot | <samuel.ortiz> So restoring that endpoint is one step, and then there's cgroups related issues as well? | 14:38 |
| kata-irc-bot | <christophe> No, cgroups is the old behaviour on Fedora. | 14:38 |
| kata-irc-bot | <christophe> But it just so happens that there is a new version, so I am trying to check if I can fix that independently | 14:38 |
| kata-irc-bot | <christophe> (new version of container/cgroups) | 14:39 |
| kata-irc-bot | <christophe> For podman, it's restoring multiple subcommands in the CLI, which implies restoring a couple of endpoints in the API as well. | 14:40 |
| kata-irc-bot | <christophe> Again, I am not sure this is the right approach, but I want to have a comparison point. So I may keep that as a frequently rebased branch for a while, and maybe bring the topic up at the arch committee meeting to discuss what we really want. | 14:41 |
Generated by irclog2html.py 2.17.2 by Marius Gedminas - find it at https://mg.pov.lt/irclog2html/!