Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

overlay: use xattrs perms with network FSs #1028

Merged
merged 3 commits into from Sep 30, 2021
Merged

overlay: use xattrs perms with network FSs #1028

merged 3 commits into from Sep 30, 2021

Conversation

giuseppe
Copy link
Member

when running in a user namespace on a network file system, automatically switch on the permission xattrs feature so that users
won't have to tweak their storage.conf file with difficult to guess options.

The list of remote file systems was taken from coreutils stat:

https://git.savannah.gnu.org/gitweb/?p=coreutils.git;a=blob;f=src/stat.c;h=0c34501e34410b9096edf377654b9ff27fe9fa24;hb=HEAD#l260

Also fix an issue with "silly renames" on NFS, more details in the commit log.

Signed-off-by: Giuseppe Scrivano gscrivan@redhat.com

@giuseppe giuseppe marked this pull request as draft September 29, 2021 11:19
@giuseppe giuseppe marked this pull request as ready for review September 29, 2021 11:23
flouthoc
flouthoc reviewed Sep 29, 2021
View reviewed changes
store.go Outdated Show resolved Hide resolved
rhatdan
rhatdan reviewed Sep 29, 2021
View reviewed changes
drivers/overlay/overlay.go Outdated Show resolved Hide resolved
@rhatdan
Copy link
Member

rhatdan commented Sep 29, 2021

We can see if the Warnf is too agravating, or is easy enough to fix.

@giuseppe giuseppe force-pushed the nfs-auto-xattrs branch 2 times, most recently from 8fb0a8e to 0651ee6 Compare September 30, 2021 07:40
@giuseppe
drivers: add a bunch of new file systems
30239a3 
Signed-off-by: Giuseppe Scrivano <gscrivan@redhat.com>
@giuseppe
store: retry RemoveAll on EBUSY
bfaebaf 
when running on NFS, a RemoveAll could cause EBUSY because of some
unlinked files that are still kept open and "silly renamed" to
.nfs$ID.

These files could be kept open by conmon and the issue is addressed
by: containers/conmon#300

Before failing, attempt a few more times.

Signed-off-by: Giuseppe Scrivano <gscrivan@redhat.com>
@giuseppe
overlay: use xattrs perms with network FSs
175c8db 
when running in a user namespace on a network file system,
automatically switch on the permission xattrs feature so that users
won't have to tweak their storage.conf file with difficult to guess
options.

The list of remote file systems was taken from coreutils stat:

https://git.savannah.gnu.org/gitweb/?p=coreutils.git;a=blob;f=src/stat.c;h=0c34501e34410b9096edf377654b9ff27fe9fa24;hb=HEAD#l260

Signed-off-by: Giuseppe Scrivano <gscrivan@redhat.com>
rhatdan
rhatdan approved these changes Sep 30, 2021
View reviewed changes
Copy link
Member

@rhatdan rhatdan left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM

@rhatdan
Copy link
Member

rhatdan commented Sep 30, 2021

@flouthoc @saschagrunert @nalind @TomSweeneyRedHat @ashley-cui @umohnani8 PTAL

@flouthoc
Copy link
Collaborator

LGTM, Restarted failing test but not sure if it was a flake.

@rhatdan rhatdan merged commit 658854f into containers:main Sep 30, 2021
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@rhatdan rhatdan rhatdan approved these changes

@flouthoc flouthoc flouthoc approved these changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

None yet
3 participants
@giuseppe @rhatdan @flouthoc