-
Notifications
You must be signed in to change notification settings - Fork 2k
Remove MountFlags=slave
from systemd unit definitions
#3029
Conversation
Signed-off-by: Ilya Dmitrichenko <errordeveloper@gmail.com>
fd6c91b
to
b773db0
Compare
MountFlags=slave
from systemd service unit definitionsMountFlags=slave
from systemd unit definitions
Thanks @errordeveloper -- Can you elaborate a bit on your use case? e.g. some steps to reproduce that don't work without this patch. My notion of how this ties together is fairly hazy. If |
@nathanleclaire what I'm working on is a thing that makes Kubernetes deployment very easy. Here is the project itself: https://github.com/weaveworks/weave-kubernetes-anywhere And here is the Docker Machine example: https://github.com/weaveworks/weave-kubernetes-anywhere/tree/master/examples/docker-machine Feel free to look at the real thing, the failure surfaced for me on DigitalOcean, and seemed extremely obscure for a few hours. The code that actually fails is in Here is the basics test that fails:
|
It would be helpful to know when and why |
Without the flag, the host-side /dev/* can be unexpectedly unmounted. |
FYI, this commit introduced the flag |
Yeah, I think we need to err on the side of sticking with Docker upstream here, I'd be willing to consider proposals to customize turning these types of features on/off during provisioning, however it's a slippery slope so we need to be careful about what kind of customization we enable (supporting on all provisioners etc. is difficult). |
I think there should be a more explicit way to fix the issue with |
Remove |
I've submitted this change to Docker upstream, how is it mean to propagate to Machine? |
Probably the mounts and unmounts operations on the host will effect the containers. |
@zhulinhong not that, I mean moby/moby#22806 has been merged, so the question is if I still need to make a PR to this repo or what? |
No need, thx a lot. It's configurable, I can change the config if I need. |
I think we'll still need it, to ensure the upstream changes aren't over-written to be excluded, if you'd like to re-open. |
Ok, that's what I was wondering, i.e. whether I should copy upstream On Wed, 8 Jun 2016, 00:49 Nathan LeClaire, notifications@github.com wrote:
|
Ah, yes, let's stick as closely as possible to upstream please. |
@errordeveloper @nathanleclaire This PR is still needed- the systemd units from machine overwrite the ones from upstream, so this is still setting this flag. |
This prevents one from using mount propagation flags in Docker v1.10 (see moby/moby#19625).