opensource/podman
1
0
Fork 0
mirror of https://github.com/containers/podman.git synced 2025-06-27 21:50:18 +08:00
Code Issues Packages Projects Releases Wiki Activity

Merge pull request #16554 from dfr/freebsd-network-errors

Browse Source 
libpod: Report network setup errors properly on FreeBSD
This commit is contained in:
OpenShift Merge Robot
2022-11-23 04:47:56 -05:00
committed by GitHub
parent 1b583a709b 504fcbbf92
commit 34cc61d167
2 changed files with 30 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files

19
libpod/container_internal_freebsd.go
View File

@ -85,6 +85,9 @@ func (c *Container) prepare() error {
wg.Wait() wg.Wait()
var createErr error var createErr error
if createNetNSErr != nil {
createErr = createNetNSErr
}
if mountStorageErr != nil { if mountStorageErr != nil {
if createErr != nil { if createErr != nil {
logrus.Errorf("Preparing container %s: %v", c.ID(), createErr) logrus.Errorf("Preparing container %s: %v", c.ID(), createErr)
@ -92,7 +95,23 @@ func (c *Container) prepare() error {
createErr = mountStorageErr createErr = mountStorageErr
} }
// Only trigger storage cleanup if mountStorage was successful.
// Otherwise, we may mess up mount counters.
if createErr != nil { if createErr != nil {
if mountStorageErr == nil {
if err := c.cleanupStorage(); err != nil {
// createErr is guaranteed non-nil, so print
// unconditionally
logrus.Errorf("Preparing container %s: %v", c.ID(), createErr)
createErr = fmt.Errorf("unmounting storage for container %s after network create failure: %w", c.ID(), err)
}
}
// It's OK to unconditionally trigger network cleanup. If the network
// isn't ready it will do nothing.
if err := c.cleanupNetwork(); err != nil {
logrus.Errorf("Preparing container %s: %v", c.ID(), createErr)
createErr = fmt.Errorf("cleaning up container %s network after setup failure: %w", c.ID(), err)
}
return createErr return createErr
} }

13
libpod/networking_freebsd.go
View File

@ -166,14 +166,23 @@ func (r *Runtime) createNetNS(ctr *Container) (n *jailNetNS, q map[string]types.
jconf.Set("allow.raw_sockets", true) jconf.Set("allow.raw_sockets", true)
jconf.Set("allow.chflags", true) jconf.Set("allow.chflags", true)
jconf.Set("securelevel", -1) jconf.Set("securelevel", -1)
if _, err := jail.Create(jconf); err != nil { j, err := jail.Create(jconf)
logrus.Debugf("Failed to create vnet jail %s for container %s", ctrNS.Name, ctr.ID()) if err != nil {
return nil, nil, fmt.Errorf("Failed to create vnet jail %s for container %s: %w", ctrNS.Name, ctr.ID(), err)
} }
logrus.Debugf("Created vnet jail %s for container %s", ctrNS.Name, ctr.ID()) logrus.Debugf("Created vnet jail %s for container %s", ctrNS.Name, ctr.ID())
var networkStatus map[string]types.StatusBlock var networkStatus map[string]types.StatusBlock
networkStatus, err = r.configureNetNS(ctr, ctrNS) networkStatus, err = r.configureNetNS(ctr, ctrNS)
if err != nil {
jconf := jail.NewConfig()
jconf.Set("persist", false)
if err := j.Set(jconf); err != nil {
// Log this error and return the error from configureNetNS
logrus.Errorf("failed to destroy vnet jail %s: %w", ctrNS.Name, err)
}
}
return ctrNS, networkStatus, err return ctrNS, networkStatus, err
} }