You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Since #21523 podman runs conmon with args --exit-dir and --persist-dir. After calling conmon it removes exit-dir/ctr-id and persist-dir/ctr-id/oom files. However, the persist-dir/ctr-id directory and the persist-dir/ctr-id/exit file remain undeleted. Over time, this leads to file system overflow.
Steps to reproduce the issue
Steps to reproduce the issue
Calculate number of persist dirs
Run, stop and remove any container
Calculate number of persist dirs - it will be increased by 1
# ls /run/libpod/persist/ | wc -w && podman run --rm alpine; ls /run/libpod/persist/ | wc -w
9
10
Describe the results you received
Describe the results you received
Describe the results you expected
Podman should remove all artefacts including persist-dir to not pollute FS.
podman info output
host:
arch: amd64buildahVersion: 1.36.0cgroupControllers:
- cpuset
- cpu
- io
- memory
- hugetlb
- pids
- rdma
- misccgroupManager: systemdcgroupVersion: v2conmon:
package: conmon-2.1.12-1.el9.x86_64path: /usr/bin/conmonversion: 'conmon version 2.1.12, commit: 7ba5bd6c81ff2c10e07aee8c4281d12a2878fa12'cpuUtilization:
idlePercent: 99.06systemPercent: 0.28userPercent: 0.67cpus: 2databaseBackend: sqlitedistribution:
distribution: centosversion: "9"eventLogger: journaldfreeLocks: 2048hostname: dmitryidMappings:
gidmap: nulluidmap: nullkernel: 5.14.0-447.el9.x86_64linkmode: dynamiclogDriver: journaldmemFree: 2507890688memTotal: 3736653824networkBackend: netavarknetworkBackendInfo:
backend: netavarkdns:
package: aardvark-dns-1.9.0-1.el9.x86_64path: /usr/libexec/podman/aardvark-dnsversion: aardvark-dns 1.9.0package: netavark-1.11.0-1.el9.x86_64path: /usr/libexec/podman/netavarkversion: netavark 1.11.0ociRuntime:
name: crunpackage: crun-1.15-1.el9.x86_64path: /usr/bin/crunversion: |- crun version 1.15 commit: e6eacaf4034e84185fd8780ac9262bbf57082278 rundir: /run/user/0/crun spec: 1.0.0 +SYSTEMD +SELINUX +APPARMOR +CAP +SECCOMP +EBPF +CRIU +YAJLos: linuxpasta:
executable: /usr/bin/pastapackage: passt-0^20231204.gb86afe3-1.el9.x86_64version: | pasta 0^20231204.gb86afe3-1.el9.x86_64 Copyright Red Hat GNU General Public License, version 2 or later <https://www.gnu.org/licenses/old-licenses/gpl-2.0.html> This is free software: you are free to change and redistribute it. There is NO WARRANTY, to the extent permitted by law.remoteSocket:
exists: falsepath: /run/podman/podman.sockrootlessNetworkCmd: pastasecurity:
apparmorEnabled: falsecapabilities: CAP_CHOWN,CAP_DAC_OVERRIDE,CAP_FOWNER,CAP_FSETID,CAP_KILL,CAP_NET_BIND_SERVICE,CAP_SETFCAP,CAP_SETGID,CAP_SETPCAP,CAP_SETUID,CAP_SYS_CHROOTrootless: falseseccompEnabled: trueseccompProfilePath: /usr/share/containers/seccomp.jsonselinuxEnabled: trueserviceIsRemote: falseslirp4netns:
executable: /usr/bin/slirp4netnspackage: slirp4netns-1.3.1-1.el9.x86_64version: |- slirp4netns version 1.3.1 commit: e5e368c4f5db6ae75c2fce786e31eef9da6bf236 libslirp: 4.4.0 SLIRP_CONFIG_VERSION_MAX: 3 libseccomp: 2.5.2swapFree: 0swapTotal: 0uptime: 8h 43m 8.00s (Approximately 0.33 days)variant: ""plugins:
authorization: nulllog:
- k8s-file
- none
- passthrough
- journaldnetwork:
- bridge
- macvlan
- ipvlanvolume:
- localregistries:
search:
- registry.access.redhat.com
- registry.redhat.io
- docker.iostore:
configFile: /etc/containers/storage.confcontainerStore:
number: 0paused: 0running: 0stopped: 0graphDriverName: overlaygraphOptions:
overlay.mountopt: nodev,metacopy=ongraphRoot: /var/lib/containers/storagegraphRootAllocated: 40165670912graphRootUsed: 1532129280graphStatus:
Backing Filesystem: extfsNative Overlay Diff: "false"Supports d_type: "true"Supports shifting: "false"Supports volatile: "true"Using metacopy: "true"imageCopyTmpDir: /var/tmpimageStore:
number: 1runRoot: /run/containers/storagetransientStore: falsevolumePath: /var/lib/containers/storage/volumesversion:
APIVersion: 5.1.0Built: 1717411100BuiltTime: Mon Jun 3 10:38:20 2024GitCommit: ""GoVersion: go1.22.3 (Red Hat 1.22.3-2.el9)Os: linuxOsArch: linux/amd64Version: 5.1.0
Podman in a container
No
Privileged Or Rootless
None
Upstream Latest Release
No
Additional environment details
No response
Additional information
No response
The text was updated successfully, but these errors were encountered:
Issue Description
Since #21523 podman runs conmon with args
--exit-dir
and--persist-dir
. After callingconmon
it removes exit-dir/ctr-id and persist-dir/ctr-id/oom files. However, the persist-dir/ctr-id directory and the persist-dir/ctr-id/exit file remain undeleted. Over time, this leads to file system overflow.Steps to reproduce the issue
Steps to reproduce the issue
Describe the results you received
Describe the results you received
Describe the results you expected
Podman should remove all artefacts including persist-dir to not pollute FS.
podman info output
Podman in a container
No
Privileged Or Rootless
None
Upstream Latest Release
No
Additional environment details
No response
Additional information
No response
The text was updated successfully, but these errors were encountered: