Cédric Jeanneret cjeanner

## neutron_api.json
[
    {
        "Id": "42b81ddb73b0b28729204246ffe2a1e78c686d0ab6f14ff59af71c2b002e7ad8",
        "Created": "2020-04-21T08:05:13.823439382Z",
        "Path": "dumb-init",
        "Args": [
            "--single-child",
            "--",
            "kolla_start"
        ],

## podman-after-reboot.txt
CONTAINER ID  IMAGE                                                                                                              COMMAND               CREATED         STATUS                     PORTS  NAMES
5d02a6d418ed  docker.io/tripleomaster/centos-binary-nova-compute:7ceee1c6f53708ae931585783195fc8645aa604a_15482392               dumb-init --singl...  13 minutes ago  Created                           nova_cellv2_discover_hosts
9e494b9e905b  docker.io/tripleomaster/centos-binary-neutron-openvswitch-agent:7ceee1c6f53708ae931585783195fc8645aa604a_15482392  dumb-init --singl...  14 minutes ago  Up Less than a second ago         neutron_ovs_agent
9d1da525316f  docker.io/tripleomaster/centos-binary-neutron-l3-agent:7ceee1c6f53708ae931585783195fc8645aa604a_15482392           dumb-init --singl...  14 minutes ago  Up Less than a second ago         neutron_l3_agent
d2b5db94b155  docker.io/tripleomaster/centos-binary-neutron-metadata-agent:7ceee1c6f53708ae931585783195fc8645aa604a_15482392     dumb-init --singl...  1

## podman-before-reboot.txt
CONTAINER ID  IMAGE                                                                                                              COMMAND               CREATED         STATUS                     PORTS  NAMES
5d02a6d418ed  docker.io/tripleomaster/centos-binary-nova-compute:7ceee1c6f53708ae931585783195fc8645aa604a_15482392               dumb-init --singl...  9 minutes ago   Exited (0) 9 minutes ago          nova_cellv2_discover_hosts
9e494b9e905b  docker.io/tripleomaster/centos-binary-neutron-openvswitch-agent:7ceee1c6f53708ae931585783195fc8645aa604a_15482392  dumb-init --singl...  10 minutes ago  Up 10 minutes ago                 neutron_ovs_agent
9d1da525316f  docker.io/tripleomaster/centos-binary-neutron-l3-agent:7ceee1c6f53708ae931585783195fc8645aa604a_15482392           dumb-init --singl...  10 minutes ago  Up 10 minutes ago                 neutron_l3_agent
d2b5db94b155  docker.io/tripleomaster/centos-binary-neutron-metadata-agent:7ceee1c6f53708ae931585783195fc8645aa604a_15482392     dumb-init --singl...  1

## tmp.te

module tmp 1.0;

require {
	type svirt_tcg_t;
	type container_share_t;
  type container_runtime_t;
  class process sigchld;
	class file { entrypoint execute getattr open read };
	class dir read;

## rocky.yaml
---
tripleo_version: rocky
containerized_undercloud: yes
rhos_release_version: 14

---
deploy_undercloud: yes
vms:
  - name: undercloud
    cpu: 12

## foo
-bash-4.2# podman --log-level=debug pull 192.168.24.1:8787/tripleomaster/centos-binary-heat-engine:current-tripleo-updated-20181002154658
DEBU[0000] [graphdriver] trying provided driver "overlay"
DEBU[0000] overlay: override_kernelcheck=true
DEBU[0000] overlay test mount with multiple lowers succeeded
DEBU[0000] backingFs=extfs, projectQuotaSupported=false, useNativeDiff=true
INFO[0000] Found CNI network podman (type=bridge) at /etc/cni/net.d/87-podman-bridge.conflist
DEBU[0000] Initializing boltdb state at /var/lib/containers/storage/libpod/bolt_state.db
DEBU[0000] Set libpod namespace to ""
DEBU[0000] parsed reference into "[overlay@/var/lib/containers/storage+/var/run/containers/storage:overlay.override_kernel_check=true]192.168.24.1:8787/tripleomaster/centos-binary-heat-engine
:current-tripleo-updated-20181002154658"

## TODO
[root@undercloud ~]# podman run --rm --user root -ti --security-opt label=disable -v /var/lib/containers:/var/lib/containers:rw -v /etc/containers:/etc/containers:ro -v /usr/bin:/usr/bin:ro -v /dev/shm:/dev/shm:rw -v /usr/libexec/podman/conmon:/usr/libexec/podman/conmon:ro -v /usr/lib64/libseccomp.so.2:/usr/lib64/libseccomp.so.2:ro -v /usr/lib64/libseccomp.so.2.3.1:/usr/lib64/libseccomp.so.2.3.1:ro  docker.io/tripleomaster/centos-binary-neutron-server:965941f1e62cef16967e7a7cd6d98263e52acb62_0989b280 /bin/bash
()[root@f79e547c44ef /]# podman ps
ERRO[0000] 'overlay' is not supported over xfs at "/var/lib/containers/storage/overlay"
error creating libpod runtime: kernel does not support overlay fs: 'overlay' is not supported over xfs at "/var/lib/containers/storage/overlay": backing file system is unsupported for this graph driver
()[root@f79e547c44ef /]#


## podman-list.txt
CONTAINER ID   IMAGE                                                                                                               COMMAND                  CREATED          STATUS                      PORTS   NAMES                                         IS INFRA
88d30d241d7f   docker.io/tripleomaster/centos-binary-nova-api:1e2db34c7fabe8591b3a84edaf92e313016caaaa_9e598812                    /usr/bin/bootstrap_...   10 minutes ago   Exited (0) 10 minutes ago           nova_online_migrations                        false
1e32a2fa2c0d   docker.io/tripleomaster/centos-binary-ironic-api:1e2db34c7fabe8591b3a84edaf92e313016caaaa_9e598812                  /usr/bin/bootstrap_...   10 minutes ago   Exited (0) 10 minutes ago           ironic_online_migrations                      false
ce94f8ec6469   docker.io/tripleomaster/centos-binary-nova-api:1e2db34c7fabe8591b3a84edaf92e313016caaaa_9e598812                    /usr/bin/bootstrap_...   11 minutes ago   Exited (0) 10 minutes ago           nova_api_discover_hosts

## Dockerfile
FROM centos:latest
RUN yum update -y && \
    yum install -y atomic-registries \
      btrfs-progs-devel \
      conmon \
      containernetworking-cni \
      device-mapper-devel \
      git \
      glib2-devel \
      glibc-devel \

## default.md

      
              1 file
            
          
              0 forks
            
          
              0 comments
            
          
              0 stars
            
          
                cjeanner
                / default.md
            
            
              Created
              August 28, 2018 13:03
            
              
                podman.diff
              
          
    diff --git a/common/deploy-steps-tasks.yaml b/common/deploy-steps-tasks.yaml
index 5b41317d9..ac7c85325 100644
--- a/common/deploy-steps-tasks.yaml
+++ b/common/deploy-steps-tasks.yaml
@@ -100,7 +100,7 @@
file:
path: /var/lib/kolla/config_files
state: directory


       setype: svirt_sandbox_file_t


setype: container_var_lib_t
	[
	{
	"Id": "42b81ddb73b0b28729204246ffe2a1e78c686d0ab6f14ff59af71c2b002e7ad8",
	"Created": "2020-04-21T08:05:13.823439382Z",
	"Path": "dumb-init",
	"Args": [
	"--single-child",
	"--",
	"kolla_start"
	],
	CONTAINER ID IMAGE COMMAND CREATED STATUS PORTS NAMES
	5d02a6d418ed docker.io/tripleomaster/centos-binary-nova-compute:7ceee1c6f53708ae931585783195fc8645aa604a_15482392 dumb-init --singl... 13 minutes ago Created nova_cellv2_discover_hosts
	9e494b9e905b docker.io/tripleomaster/centos-binary-neutron-openvswitch-agent:7ceee1c6f53708ae931585783195fc8645aa604a_15482392 dumb-init --singl... 14 minutes ago Up Less than a second ago neutron_ovs_agent
	9d1da525316f docker.io/tripleomaster/centos-binary-neutron-l3-agent:7ceee1c6f53708ae931585783195fc8645aa604a_15482392 dumb-init --singl... 14 minutes ago Up Less than a second ago neutron_l3_agent
	d2b5db94b155 docker.io/tripleomaster/centos-binary-neutron-metadata-agent:7ceee1c6f53708ae931585783195fc8645aa604a_15482392 dumb-init --singl... 1

	module tmp 1.0;

	require {
	type svirt_tcg_t;
	type container_share_t;
	type container_runtime_t;
	class process sigchld;
	class file { entrypoint execute getattr open read };
	class dir read;
	---
	tripleo_version: rocky
	containerized_undercloud: yes
	rhos_release_version: 14

	---
	deploy_undercloud: yes
	vms:
	- name: undercloud
	cpu: 12
	-bash-4.2# podman --log-level=debug pull 192.168.24.1:8787/tripleomaster/centos-binary-heat-engine:current-tripleo-updated-20181002154658
	DEBU[0000] [graphdriver] trying provided driver "overlay"
	DEBU[0000] overlay: override_kernelcheck=true
	DEBU[0000] overlay test mount with multiple lowers succeeded
	DEBU[0000] backingFs=extfs, projectQuotaSupported=false, useNativeDiff=true
	INFO[0000] Found CNI network podman (type=bridge) at /etc/cni/net.d/87-podman-bridge.conflist
	DEBU[0000] Initializing boltdb state at /var/lib/containers/storage/libpod/bolt_state.db
	DEBU[0000] Set libpod namespace to ""
	DEBU[0000] parsed reference into "[overlay@/var/lib/containers/storage+/var/run/containers/storage:overlay.override_kernel_check=true]192.168.24.1:8787/tripleomaster/centos-binary-heat-engine
	:current-tripleo-updated-20181002154658"
	[root@undercloud ~]# podman run --rm --user root -ti --security-opt label=disable -v /var/lib/containers:/var/lib/containers:rw -v /etc/containers:/etc/containers:ro -v /usr/bin:/usr/bin:ro -v /dev/shm:/dev/shm:rw -v /usr/libexec/podman/conmon:/usr/libexec/podman/conmon:ro -v /usr/lib64/libseccomp.so.2:/usr/lib64/libseccomp.so.2:ro -v /usr/lib64/libseccomp.so.2.3.1:/usr/lib64/libseccomp.so.2.3.1:ro docker.io/tripleomaster/centos-binary-neutron-server:965941f1e62cef16967e7a7cd6d98263e52acb62_0989b280 /bin/bash
	()[root@f79e547c44ef /]# podman ps
	ERRO[0000] 'overlay' is not supported over xfs at "/var/lib/containers/storage/overlay"
	error creating libpod runtime: kernel does not support overlay fs: 'overlay' is not supported over xfs at "/var/lib/containers/storage/overlay": backing file system is unsupported for this graph driver
	()[root@f79e547c44ef /]#
	CONTAINER ID IMAGE COMMAND CREATED STATUS PORTS NAMES IS INFRA
	88d30d241d7f docker.io/tripleomaster/centos-binary-nova-api:1e2db34c7fabe8591b3a84edaf92e313016caaaa_9e598812 /usr/bin/bootstrap_... 10 minutes ago Exited (0) 10 minutes ago nova_online_migrations false
	1e32a2fa2c0d docker.io/tripleomaster/centos-binary-ironic-api:1e2db34c7fabe8591b3a84edaf92e313016caaaa_9e598812 /usr/bin/bootstrap_... 10 minutes ago Exited (0) 10 minutes ago ironic_online_migrations false
	ce94f8ec6469 docker.io/tripleomaster/centos-binary-nova-api:1e2db34c7fabe8591b3a84edaf92e313016caaaa_9e598812 /usr/bin/bootstrap_... 11 minutes ago Exited (0) 10 minutes ago nova_api_discover_hosts
	FROM centos:latest
	RUN yum update -y && \
	yum install -y atomic-registries \
	btrfs-progs-devel \
	conmon \
	containernetworking-cni \
	device-mapper-devel \
	git \
	glib2-devel \
	glibc-devel \