Skip to content

[release-1.39] createPlatformContainer: drop MS_REMOUNT|MS_BIND #6089

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 1 commit into from
Mar 26, 2025
Merged

[release-1.39] createPlatformContainer: drop MS_REMOUNT|MS_BIND #6089

merged 1 commit into from
Mar 26, 2025

Conversation

openshift-cherrypick-robot
Copy link

This is an automated cherry-pick of #6088

/assign nalind

"chroot" isolation should no longer require the "--no-pivot" flag be specified in order to function on "image mode" systems.

@nalind
createPlatformContainer: drop MS_REMOUNT|MS_BIND
f560c45 
When attempting to change the mount propagation of the old root
directory tree before unmounting it, it's enough that we pass the
requested propagation flags.

In particular, MS_REC is the only flag that is supposed to be allowed to
be specified along with a mount propagation flag, but in practice it was
only triggering an error some of the time, and CI wasn't one of those
times.

The added test mounts the root filesystem as an overlay and then runs
buildah as a rootless user on top of that, which is more comparable to a
root-on-composefs configuration, which manages to trigger the error.

Signed-off-by: Nalin Dahyabhai <[email protected]>
@openshift-cherrypick-robot openshift-cherrypick-robot mentioned this pull request Mar 26, 2025
Merged
@nalind
Copy link
Member

nalind commented Mar 26, 2025

/approve

@openshift-ci OpenShift CI
Copy link
Contributor

openshift-ci bot commented Mar 26, 2025

[APPROVALNOTIFIER] This PR is APPROVED

This pull-request has been approved by: nalind, openshift-cherrypick-robot

The full list of commands accepted by this bot can be found here.

The pull request process is described here

Needs approval from an approver in each of these files:

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment

@nalind
Copy link
Member

nalind commented Mar 26, 2025

/lgtm

@openshift-ci openshift-ci bot added the lgtm label Mar 26, 2025
@openshift-merge-bot openshift-merge-bot bot merged commit c637c8e into containers:release-1.39 Mar 26, 2025
33 checks passed
TomSweeneyRedHat added a commit to TomSweeneyRedHat/buildah that referenced this pull request Mar 26, 2025
@TomSweeneyRedHat
[release-1.39] Fix mount flags for image mode
47788af 
Create Bulidah v1.39.4 in order to get the fix from containers#6089
into that version of the release.  This will fix a mount flags issue
that @nalind discovered and squashed.  This is an important fix for
Image Mode in RHEL 9.6 and 10.0.

Fixes: https://issues.redhat.com/browse/RHEL-85114, https://issues.redhat.com/browse/RHEL-85115

Signed-off-by: tomsweeneyredhat <[email protected]>
TomSweeneyRedHat added a commit to TomSweeneyRedHat/buildah that referenced this pull request Mar 26, 2025
@TomSweeneyRedHat
[release-1.39] Bump to Buildah v1.39.4
bd456d4 
Create Bulidah v1.39.4 in order to get the fix from containers#6089
into that version of the release.  This will fix a mount flags issue
that @nalind discovered and squashed.  This is an important fix for
Image Mode in RHEL 9.6 and 10.0.

Fixes: https://issues.redhat.com/browse/RHEL-85114, https://issues.redhat.com/browse/RHEL-85115

Signed-off-by: tomsweeneyredhat <[email protected]>
This was referenced Mar 26, 2025
Closed
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees

@nalind nalind

Labels
approved lgtm
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@openshift-cherrypick-robot @nalind