New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Update containerd to v1.6.10 #6458
Comments
By the way, I don't know if it's already documented somewhere, but it would be interesting to know more about the process that leads to a tag in Git for the containerd "fork" at https://github.com/k3s-io/containerd/tags. |
It's manual, and involves rebasing our patches to add registry rewrites and a couple other things. |
I expect containerd to be updated to 1.6.9 in the near future.
$ sudo $(which k3s) crictl version
Version: 0.1.0
RuntimeName: containerd
RuntimeVersion: v1.6.8-k3s1
RuntimeApiVersion: v1
$ sudo $(which k3s) crictl pull quay.io/pulp/galaxy:4.6.2
E1115 15:40:14.338598 2355381 remote_image.go:242] "PullImage from image service failed" err="rpc error: code = Unknown desc = failed to pull and unpack image \"quay.io/pulp/galaxy:4.6.2\": failed to extract layer sha256:db4e88ec5915e6d2ca0aaab9198f8dc4e2eb40285da4d9e751f853cef1315964: operation not permitted: unknown" image="quay.io/pulp/galaxy:4.6.2"
FATA[0010] pulling image: rpc error: code = Unknown desc = failed to pull and unpack image "quay.io/pulp/galaxy:4.6.2": failed to extract layer sha256:db4e88ec5915e6d2ca0aaab9198f8dc4e2eb40285da4d9e751f853cef1315964: operation not permitted: unknown
$ sudo $(which k3s) crictl pull pulp/pulp-galaxy-ng:latest
E1115 15:40:57.810207 2355556 remote_image.go:242] "PullImage from image service failed" err="rpc error: code = Unknown desc = failed to pull and unpack image \"docker.io/pulp/pulp-galaxy-ng:latest\": failed to extract layer sha256:a3b8450d21451a6808b1f3ca7390772b12554abfb223273830ce6ca1e19b1fb1: operation not permitted: unknown" image="pulp/pulp-galaxy-ng:latest"
FATA[0010] pulling image: rpc error: code = Unknown desc = failed to pull and unpack image "docker.io/pulp/pulp-galaxy-ng:latest": failed to extract layer sha256:a3b8450d21451a6808b1f3ca7390772b12554abfb223273830ce6ca1e19b1fb1: operation not permitted: unknown |
I can confirm that the upgrade to containerd v1.6.9 fixed the issue in MicroK8s. |
I haven't seen any reports of this issue in the wild, other than the sparse conversation here. I don't think anyone really uses the native snapshotter unless they have absolutely no other choice, as its performance is (as far as I know) pretty poor. We certainly don't test it on any regular basis. |
Validated on commit a07bb55Environment DetailsInfrastructure
Node(s) CPU architecture, OS, and Version:
Cluster Configuration:
Testing Steps
Validation Results:
Additional context / logs:
|
For the record, related commit: 6462a31. |
containerd has recently be released at version 1.6.9: see https://github.com/containerd/containerd/releases/tag/v1.6.9.
Apart from the good practice of using the latest release, the reason why I'm raising this up is that v1.6.9 contains a fix related to the native snapshotter. Which happens to be the snapshotter to use apparently when running on ZFS, as per the conversation at the bottom of #3980.
See canonical/microk8s#3499 for more details about the issue with the native snapshotter, which I raised for Microk8s but very probably applies to k3s as well (I haven't tested in practice).
The text was updated successfully, but these errors were encountered: