查看问题详情

跳转到注释跳转到历史
编号项目分类查看权限报告日期最后更新
0000314Anolis OS 8* OTHERSpublic2021-10-11 15:532021-11-22 15:47
报告员shanxifanshi 分派给yunqi-zwt  
优先级normal严重性minor出现频率always
状态 assigned处理状况open 
平台aarch64操作系统Anolis OS操作系统版本8
标题0000314: anolis 8.2 anck 4.19内核,kata-container启动失败
描述anolis 8.2 anck 4.19内核,使用 kata-container作为运行时,containerd启动失败,有如下报错信息“ctr: Failed to check if grpc server is working: rpc error: code = DeadlineExceeded desc = timed out connecting to vsock 52903762:1024: unknown”

鲲鹏和飞腾机器存在同样问题

[root@l57f12085 ~]# ctr run --runtime io.containerd.run.kata.v2 -t --rm docker.io/library/busybox:latest hello sh
ctr: Failed to check if grpc server is working: rpc error: code = DeadlineExceeded desc = timed out connecting to vsock 52903762:1024: unknown

[root@l57f12085 log]# tail -10 messages
Oct 11 21:51:12 l57f12085 kvm[1629413]: 0 guests now active
Oct 11 21:51:12 l57f12085 kata[1629383]: time="2021-10-11T21:51:12.51272705+08:00" level=warning msg="failed to cleanup netns" error="failed to get netns /var/run/netns/cnitest-2dfc4755-4f4f-9787-f823-78e6fa3e343c: failed to Statfs \"/var/run/netns/cnitest-2dfc4755-4f4f-9787-f823-78e6fa3e343c\": no such file or directory" name=containerd-shim-v2 path=/var/run/netns/cnitest-2dfc4755-4f4f-9787-f823-78e6fa3e343c pid=1629383 sandbox=hello source=katautils
Oct 11 21:51:12 l57f12085 containerd[1627233]: time="2021-10-11T21:51:12.512727050+08:00" level=warning msg="failed to cleanup netns" error="failed to get netns /var/run/netns/cnitest-2dfc4755-4f4f-9787-f823-78e6fa3e343c: failed to Statfs \"/var/run/netns/cnitest-2dfc4755-4f4f-9787-f823-78e6fa3e343c\": no such file or directory" name=containerd-shim-v2 path=/var/run/netns/cnitest-2dfc4755-4f4f-9787-f823-78e6fa3e343c pid=1629383 sandbox=hello source=katautils
Oct 11 21:51:12 l57f12085 containerd[1627233]: time="2021-10-11T21:51:12.595452480+08:00" level=info msg="shim disconnected" id=hello
Oct 11 21:51:12 l57f12085 containerd[1627233]: time="2021-10-11T21:51:12.596345470+08:00" level=error msg="copy shim log" error="read /proc/self/fd/12: file already closed"
问题重现步骤
内核信息:
4.19.91-24.8.an8.aarch64

操作系统信息:
# cat /etc/os-release
NAME="Anolis OS"
VERSION="8.2"
ID="anolis"
ID_LIKE="rhel fedora centos"
VERSION_ID="8.2"
PLATFORM_ID="platform:an8"
PRETTY_NAME="Anolis OS 8.2"
ANSI_COLOR="0;31"
HOME_URL="https://openanolis.cn/"

重现步骤:
初始设置
sed -i "s/^enabled=0/enabled=1/" /etc/yum.repos.d/AnolisOS-Plus.repo
yum install -y wget network-scripts
yum remove -y buildah podman
sudo bash -c su ## 切换到root用户允许
sed -i "s/^IPV6INIT=yes/IPV6INIT=no/" /etc/sysconfig/network-scripts/ifcfg-*
sed -i "s/^IPV6_AUTOCONF=yes/IPV6_AUTOCONF=no/" /etc/sysconfig/network-scripts/ifcfg-*

# 避免本地安装了冲突版本的 buildah,podman
yum remove -y buildah podman

# 安装containerd
yum install -y yum-utils
yum-config-manager --add-repo https://mirrors.aliyun.com/docker-ce/linux/centos/docker-ce.repo
sed -i 's/$releasever/8Server/' /etc/yum.repos.d/docker-ce.repo
yum install -y containerd.io --enablerepo='docker-ce-stable'

# 启动containerd deamon
service containerd start

# 安装kata-containers(virt:plus会提供4.2.0版本的qemu-kvm-core包,4.2.0以上版本的qemu包才会提供virtiofs,kata启动依赖于virtiofs)
sudo yum module reset virt
sudo yum module enable virt:plus
sudo yum module install virt:plus/common
yum install -y kata-containers --enablerepo=Plus --releasever=8.2

下载 guest os 到目标机器的 /var/cache/kata-containers/, 譬如下载 https://codeup.openanolis.cn/codeup/projects/kata-guestos/blob/643aa3c801043776dc0a77ba064f51fc057f0b4b/arm/vmlinux-5.10.25-85 到 /var/cache/kata-containers/

cd /var/cache/kata-containers/
wget https://codeup.openanolis.cn/codeup/projects/kata-guestos/blob/643aa3c801043776dc0a77ba064f51fc057f0b4b/arm/vmlinux-5.10.25-85

然后,执行下述命令设置软连接即可
ln -sf /var/cache/kata-containers/vmlinux-5.10.25-85 /var/cache/kata-containers/vmlinuz.container

预期结果:
基于 containerd 容器引擎的 Kata Containers 2.0.0 是可以启动的

实际结果:
 Kata Containers启动失败

失败时的报错信息:
[root@l57f12085 ~]# ctr run --runtime io.containerd.run.kata.v2 -t --rm docker.io/library/busybox:latest hello sh
ctr: Failed to check if grpc server is working: rpc error: code = DeadlineExceeded desc = timed out connecting to vsock 52903762:1024: unknown

[root@l57f12085 log]# tail -10 messages
Oct 11 21:51:12 l57f12085 kvm[1629413]: 0 guests now active
Oct 11 21:51:12 l57f12085 kata[1629383]: time="2021-10-11T21:51:12.51272705+08:00" level=warning msg="failed to cleanup netns" error="failed to get netns /var/run/netns/cnitest-2dfc4755-4f4f-9787-f823-78e6fa3e343c: failed to Statfs \"/var/run/netns/cnitest-2dfc4755-4f4f-9787-f823-78e6fa3e343c\": no such file or directory" name=containerd-shim-v2 path=/var/run/netns/cnitest-2dfc4755-4f4f-9787-f823-78e6fa3e343c pid=1629383 sandbox=hello source=katautils
Oct 11 21:51:12 l57f12085 containerd[1627233]: time="2021-10-11T21:51:12.512727050+08:00" level=warning msg="failed to cleanup netns" error="failed to get netns /var/run/netns/cnitest-2dfc4755-4f4f-9787-f823-78e6fa3e343c: failed to Statfs \"/var/run/netns/cnitest-2dfc4755-4f4f-9787-f823-78e6fa3e343c\": no such file or directory" name=containerd-shim-v2 path=/var/run/netns/cnitest-2dfc4755-4f4f-9787-f823-78e6fa3e343c pid=1629383 sandbox=hello source=katautils
Oct 11 21:51:12 l57f12085 containerd[1627233]: time="2021-10-11T21:51:12.595452480+08:00" level=info msg="shim disconnected" id=hello
Oct 11 21:51:12 l57f12085 containerd[1627233]: time="2021-10-11T21:51:12.596345470+08:00" level=error msg="copy shim log" error="read /proc/self/fd/12: file already closed"

标签没加标签.

活动

shanxifanshi

2021-10-11 15:53

报告者  

image.png (18,940 字节)   
image.png (18,940 字节)   
image-2.png (99,153 字节)   
image-2.png (99,153 字节)   

shanxifanshi

2021-10-11 15:56

报告者   ~0000476

启动kata container容器并进入容器里面
# 下载一个docker 镜像
ctr image pull docker.io/library/busybox:latest

# 使用 kata-runtime 作为运行时
ctr run --runtime io.containerd.run.kata.v2 -t --rm docker.io/library/busybox:latest hello sh

问题历史

日期 用户名 字段 更改
2021-10-11 15:53 shanxifanshi 新建问题
2021-10-11 15:53 shanxifanshi 添加了以下文件:: image.png
2021-10-11 15:53 shanxifanshi 添加了以下文件:: image-2.png
2021-10-11 15:56 shanxifanshi 注释已添加: 0000476
2021-11-22 15:47 jacobwang 分派给 => yunqi-zwt
2021-11-22 15:47 jacobwang 状态 新建 => 已分配
2021-11-22 15:47 jacobwang 描述已修改
2021-11-22 15:47 jacobwang 问题重现步骤已修改