-
Notifications
You must be signed in to change notification settings - Fork 15
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
github: switch to using 24.04 on CI runners #178
Conversation
Signed-off-by: Simon Deziel <simon.deziel@canonical.com>
Signed-off-by: Simon Deziel <simon.deziel@canonical.com>
d1933cc
to
c66db78
Compare
@mihalicyn the
Too bad I didn't try those 24.04 images earlier :) |
c66db78
to
f54c858
Compare
Please can we also keep testing in 22.04 |
tests/interception
Outdated
@@ -112,6 +112,14 @@ if hasNeededAPIExtension container_syscall_intercept_finit_module; then | |||
# upload module file into the container | |||
lxc file push "${MODULE_PATH}" "c1/root/" | |||
|
|||
# deal with zstd compressed .ko |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Could you expand comment here to explain what "deal with" means in this context and why its needed.
It makes sense of course but I think we should not just multiply by 2 our CI usage, right? ATM, a (daily) test run consumes ~9h of CI. Should we do:
|
035b6f9
to
cfaab1c
Compare
After a suggestion from @mihalicyn I ran the
Inside the container, it seems all the tooling is already built to support
Anyway, for now my workaround of |
12d4546
to
6db1ea9
Compare
https://bugs.launchpad.net/ubuntu/+source/needrestart/+bug/2067800 Signed-off-by: Simon Deziel <simon.deziel@canonical.com>
…uests https://bugs.launchpad.net/ubuntu/+source/linux/+bug/2028568 If the module is not decompressed ahead of `insmod`, loading it will be denied: ``` + lxc exec c1 -- insmod /root/nf_nat_ftp.ko.zst insmod: ERROR: could not insert module /root/nf_nat_ftp.ko.zst: Operation not permitted + lxc config set c1 linux.kernel_modules.load=ondemand + lxc restart c1 -f + lxc exec c1 -- insmod /root/nf_nat_ftp.ko.zst insmod: ERROR: could not insert module /root/nf_nat_ftp.ko.zst: Operation not permitted + lxc config set c1 linux.kernel_modules=nf_nat_ftp + lxc restart c1 -f + lxc exec c1 -- insmod /root/nf_nat_ftp.ko.zst insmod: ERROR: could not insert module /root/nf_nat_ftp.ko.zst: Operation not permitted + cleanup ``` Signed-off-by: Simon Deziel <simon.deziel@canonical.com>
6db1ea9
to
486f3c3
Compare
@tomponline I tweaked the matrix to have 22.04 and 24.04 tested where I felt it was most important. Let me know if you wanted more coverage than this. ATM it clocks at ~11.25 hours of CI. There are a few workarounds needed but I'll keep an eye on them and drop them ASAP. |
…ng pivot_root https://bugs.launchpad.net/bugs/2067900 canonical/lxd#13389 Signed-off-by: Simon Deziel <simon.deziel@canonical.com>
…4.04 (!= 5.0/edge) Signed-off-by: Simon Deziel <simon.deziel@canonical.com>
486f3c3
to
ac4de35
Compare
Yep go with that. |
@mihalicyn had the (clever) idea of trying to fool the The way to fool the tool was to have
For the time being, I'll keep the existing workaround of doing ahead of time manual decompression ( Thanks Aleks, I learned a ton while looking into this with you and trying to workaround the issue! |
Current issues with the PR:
tests/cluster
fails on 24.04 due to the kernel temporarily missingfan
support (https://bugs.launchpad.net/ubuntu/+source/linux/+bug/2064508)tests/docker
required a local workaround Apparmor rule to allowpivot_root
(Ubuntu 24.04 AppArmor breaks pivot_root inside LXD containers lxd#13389)tests/interception
fail likely due to having.ko.zst
compressed (working on a potential fix)tests/storage-vm zfs
fails due tozfs
missing the rounding fix by @MggMugginstests/tpm
is failing due to overly long path (patch to be merged/backported, @hamistao is aware of it)