Aleksa Sarai changed bug 1222450
What Removed Added
Flags needinfo?(asarai@suse.com) needinfo?(fbui@suse.com)

Comment # 10 on bug 1222450 from Aleksa Sarai 
(In reply to Franck Bui from comment #8)
> (In reply to Aleksa Sarai from comment #5)
> > This seems like a systemd issue to me. Why is a TransientUnit with all of
> > the relevant restrictions applied not sufficient to get systemd to enable
> > the needed controllers?
> 
> Which transient unit ?
> 
> Are you meaning that `podman run` creates a transient unit with some memory
> constraints set ?
> 
> I can't find any trace of it when running `podman run ...`

runc creates transient units based on the user configuration[1] and it seems
that crun does too[2]. I just tried to start some containers using runc and it
seems that the TransientUnit we configure isn't sufficient? `podman run`
(without sudo) cannot create cgroups by itself so it must be contacting systemd
to create the cgroups with a TransientUnit.

What command can I run to get information about existing TransientUnits?

(As an aside I don't know why we ship crun at all -- runc is the runtime that
we support in general in SLES, and I don't get why we would ship a second
runtime just for openSUSE and just for podman.)

[1]:
https://github.com/opencontainers/runc/blob/main/libcontainer/cgroups/systemd/v2.go
[2]:
https://github.com/containers/crun/blob/e6a1ef18c5f313b0b6c4e4ee85688f80ff355315/src/libcrun/cgroup-systemd.c#L1037

You are receiving this mail because: