New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
KVM platform doesn't seem to work #11
Comments
If I go in and disable the code in runsc to execute the hooks, I get this error everytime:
|
Hi, thanks for trying out gVisor! The KVM platform is still experimental and has some rough edges, as you've found. :) I think there are actually two issues here:
It looks like you have debug logging enabled. If you look in the log directory, there should be several files with close timestamps and suffixes like "create, "gofer", "boot", "start", etc. These are go together with a single run. Could you upload a set of these logs from a run with the second error you posted? Thanks! |
Thanks for reporting it! In addition to logs, please also post the docker command you have used. |
@fvoznika i've updated the PR to include the command, sorry about that! |
I got a whole new set of errors that the one I originally indicated this time (again, I have the hook code disabled). The |
Thanks for logs, this looks similar to failures I've seen before. We'll look in it. What CPU model is this running on? Could you paste one of the processor blocks from |
Sure! It's a bit of an older machine running Ubuntu 16.04:
|
iwankgb has provided more logs in #25. |
I gave it another try on another device:
Now getting following error in majority (4 out of 5) of cases (detailed logs available at: https://critical.today/files/create_failed_atom.tar.gz):
In 1 out of 5 cases I was getting address space conflict error (detailed logs available at: https://critical.today/files/address_space_atom.tar.gz) |
I think the common thread here is that the physical address size on these CPUs is only 36 bits. (The Core is pretty old, and it seems newer Atoms support VT-x but still have a small physical address size?) We'll have to constrain the virtual hole punching or at least provide a better error here. |
I'm having issues related to KVM as well too.
VM info:
Host system is Fedora Core 28 running Virt-Manager 1.5.1 CPU Info
Any suggestions? |
After chasing down the heap reservation semantics, it looks like they've changed recently: This should either fix the issue, or may start-up fail with the message from here: Anyone able to try with a go runtime including that commit? |
I will next week.
sob., 12 maj 2018, 01:23 użytkownik Adin Scannell <notifications@github.com>
napisał:
After chasing down the heap reservation semantics, it looks like they've
changed recently:
***@***.***#diff-10660d1f0eb047497573dadfb42bd1ec
<golang/go@51ae88e#diff-10660d1f0eb047497573dadfb42bd1ec>
This should either fix the issue, or may start-up fail with the message
from here:
https://github.com/google/gvisor/blob/master/pkg/sentry/platform/kvm/physical_map.go#L127
Anyone able to try with a go runtime including that commit?
—
You are receiving this because you commented.
Reply to this email directly, view it on GitHub
<#11 (comment)>, or mute
the thread
<https://github.com/notifications/unsubscribe-auth/AA5Wfnx88bUojnyV9tupnyRRow-ZaF7nks5txh1ngaJpZM4Tv0BP>
.
--
Pozdrawiam/Regards,
Maciej Iwanowski.
|
@iwankgb Any news? |
Thanks to @iwankgb , I test the kvm on another cpu, and it just work. Seems that gvisor just not support on my old machine with 36bits physical address. |
I got some similar problems. On the bottom of #84 |
When the note Go commit is in a runtime release (Go 1.11?), this issue should be resolved for smaller physical address spaces. |
@evanphx @iwankgb @ultimoguerrero @zhang2639 Since Go 1.11 is out can one of you verify that it's fixed for you? |
@amscanne @ultimoguerrero ^ ^ |
@jshachm Can you file a separate issue? |
Use cni v0.7.0 in the integration test. Signed-off-by: Lantao Liu <lantaol@google.com>
A friendly reminder that this issue had no activity for 120 days. |
This issue has been closed due to lack of activity. |
First of all, what a cool project! I'm trying to use the kvm platform backend and running into an issue. I turned logging on and get the following:
The command run was
docker run --runtime=runsc hello-world
Docker version:
Docker version 17.12.0-ce, build c97c6d6
I guess it's trying to execute the hooks but the fs namespace has already been unbound?
The text was updated successfully, but these errors were encountered: