Create /usr/lib64/qemu-kvm with proper permissions #8433
Conversation
Workaround for moby/moby#44106 Need to create the directory upfront, otherwise it gets assigned wrong permissions when unpacked. Signed-off-by: Vasiliy Ulyanov <vulyanov@suse.de>
kubevirt-bot
added
release-note-none
kubevirt-bot
added
the
kind/build-change
|
/lgtm |
|
/approve |
|
[APPROVALNOTIFIER] This PR is APPROVED This pull-request has been approved by: rmohr The full list of commands accepted by this bot can be found here. The pull request process is described here
Needs approval from an approver in each of these files:
Approvers can indicate their approval by writing |
kubevirt-bot
added
the
approved
|
Makes sense to me. This is what I see when I inspect the layers |
|
/retest-required |
1 similar comment
|
/retest-required |
|
@vasiliy-ul: The following test failed, say
Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository. I understand the commands that are listed here. |
|
/test pull-kubevirt-e2e-k8s-1.24-sig-compute |
|
/retest-required |
1 similar comment
|
/retest-required |
|
Thanks for the fix @vasiliy-ul! Is this something that will get backported to older releases at this point? We're currently on v0.55, does this require upgrading to v0.57 once its out with your fix? |
|
@poojaghumre, this fix hasn't landed in |
|
sure, we can do that. /cherry-pick release-0.57 |
|
@rmohr: new pull request created: #8470 In response to this:
Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository. |
|
Thanks to you both for a quick backport! |
|
@vasiliy-ul can we backport this to |
|
/cherry-pick release-0.55 |
|
@vasiliy-ul: new pull request created: #8526 In response to this:
Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository. |
|
Thank you @vasiliy-ul ! |
|
Hey all, just wanted to make sure you're aware of the conclusions reached in moby/moby#44106 (moby/moby#44106 (comment) to be exact) -- essentially, permissions for 'implicit' directories are runtime-defined behavior as they are not captured in the OCI spec. Moby has been updated to behave more consistently here, but if you need that directory to be 0755, the only way to ensure it is so on a OCI image spec compliant runtime is to define it yourself (as you have done). |
|
@neersighted, thank you for looking into this issue and for making it consistent further on. |
What this PR does / why we need it:
Workaround for moby/moby#44106
Need to create the directory upfront, otherwise it gets assigned wrong permissions when unpacked.
Which issue(s) this PR fixes (optional, in
fixes #<issue number>(, fixes #<issue_number>, ...)format, will close the issue(s) when PR gets merged):Fixes #8195, fixes #8362
Special notes for your reviewer:
The same directory with qemu modules is present in the aarch64 image. Applied the workaround there as well.
Release note: