Skip to content

Error creating mount with source ".../hostname": broken pipe: unknown. #1765

New issue
New issue
Closed
Closed
Error creating mount with source ".../hostname": broken pipe: unknown.#1765
Labels
area: container runtimeIssue related to docker, kubernetes, OCI runtimearea: integrationIssue related to third party integrationsstale-issueThis issue has not been updated in 120 days.type: bugSomething isn't working
@fvoznika

Description

@fvoznika
fvoznika
opened on Feb 5, 2020

This error can happen running any image with kernel between 5.1 and 5.3.15, 5.4.2, or 5.5. This happens because root runs with more strict RLIMIT_MEMLOCK limit. Go 1.14 attempts to mlock thread stacks to workaround a Linux kernel bug, trips over the limit, and dies. You'll find messages like these in the gofer log:

runtime: mlock of signal stack failed: 12
runtime: increase the mlock limit (ulimit -l) or
runtime: update your kernel to 5.3.15+, 5.4.2+, or 5.5+
fatal error: mlock failed

To workaround it, add the following line to the [Service] section in /lib/systemd/system/containerd.service:

LimitMEMLOCK=infinity

Then run: systemctl daemon-reload && systemctl restart containerd

Metadata

Metadata

Assignees

No one assigned

    Labels

    area: container runtimeIssue related to docker, kubernetes, OCI runtimearea: integrationIssue related to third party integrationsstale-issueThis issue has not been updated in 120 days.type: bugSomething isn't working

    Type

    No type

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions