Your message dated Thu, 24 Nov 2022 21:05:07 +0000 with message-id <e1oyjp9-00ft4z...@fasolo.debian.org> and subject line Bug#1009376: fixed in libpod 4.3.1+ds1-4 has caused the Debian Bug report #1009376, regarding running foreign architecture containers hits the network every time and confuses future `podman run` invocations to be marked as done.
This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact ow...@bugs.debian.org immediately.) -- 1009376: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1009376 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems
--- Begin Message ---Package: podman Version: 3.4.4+ds1-1 Severity: normal When running containers for a foreign architecture, podman run will hit the networking looking for images on every invocation: ----------------8<----------------8<----------------8<----------------- terceiro@host:~$ podman run --arch=arm64 debian arch Resolved "debian" as an alias (/etc/containers/registries.conf.d/shortnames.conf) Trying to pull docker.io/library/debian:latest... Getting image source signatures Copying blob fa223d8c149d done Copying config 05e8051d05 done Writing manifest to image destination Storing signatures aarch64 terceiro@host:~$ podman run --arch=arm64 debian arch Resolved "debian" as an alias (/etc/containers/registries.conf.d/shortnames.conf) Trying to pull docker.io/library/debian:latest... Getting image source signatures Copying blob fa223d8c149d [-----------------] 0.0b / 0.0b Copying config 05e8051d05 done Writing manifest to image destination Storing signatures aarch64 ----------------8<----------------8<----------------8<----------------- This means that if I try run a foreign container while I'm offline, I can't: ----------------8<----------------8<----------------8<----------------- terceiro@host:~$ podman run --arch=arm64 debian arch Resolved "debian" as an alias (/etc/containers/registries.conf.d/shortnames.conf) Trying to pull docker.io/library/debian:latest... Error: initializing source docker://debian:latest: pinging container registry registry-1.docker.io: Get "https://registry-1.docker.io/v2/": dial tcp: lookup registry-1.docker.io on 10.0.2.3:53: dial udp 10.0.2.3:53: connect: network is unreachable ----------------8<----------------8<----------------8<----------------- Weirder than that, is that from this point on, a plain `podman run` will run the foreign container, instead of a native one (but will not hit the network, as I'm able to do that while still offline): ----------------8<----------------8<----------------8<----------------- terceiro@host:~$ podman run debian arch aarch64 ----------------8<----------------8<----------------8<----------------- To "fix" this, I have to explicitly pull the same image without any architecture request after coming online again: ----------------8<----------------8<----------------8<----------------- terceiro@host:~$ podman pull debian Trying to pull docker.io/library/debian:latest... Getting image source signatures Copying blob dbba69284b27 done Copying config d69c6cd3a2 done Writing manifest to image destination Storing signatures d69c6cd3a20d21ec91b677c3bcd10d9975f4fe67eff81afb5a09bdef5134afeb terceiro@host:~$ podman run debian arch x86_64 ----------------8<----------------8<----------------8<----------------- I have checked the version in experimental, and this bug still applies to it. -- System Information: Debian Release: bookworm/sid APT prefers testing-debug APT policy: (900, 'testing-debug'), (900, 'testing'), (500, 'unstable-debug'), (500, 'unstable'), (1, 'experimental-debug'), (1, 'experimental') Architecture: amd64 (x86_64) Kernel: Linux 5.16.0-6-amd64 (SMP w/4 CPU threads; PREEMPT) Locale: LANG=pt_BR.UTF-8, LC_CTYPE=pt_BR.UTF-8 (charmap=UTF-8), LANGUAGE=pt_BR:pt:en Shell: /bin/sh linked to /usr/bin/dash Init: systemd (via /run/systemd/system) LSM: AppArmor: enabled Versions of packages podman depends on: ii conmon 2.0.25+ds1-1.1 ii containernetworking-plugins 1.1.0+ds1-1 ii crun 0.17+dfsg-1.1 ii golang-github-containers-common 0.47.2+ds1-1 ii init-system-helpers 1.62 ii libc6 2.33-7 ii libdevmapper1.02.1 2:1.02.175-2.1 ii libgpgme11 1.16.0-1.2 ii libseccomp2 2.5.3-2 ii runc 1.1.1+ds1-1 Versions of packages podman recommends: ii buildah 1.24.1+ds1-1 ii catatonit 0.1.7-1 ii fuse-overlayfs 1.8.2-1 ii golang-github-containernetworking-plugin-dnsname 1.3.1+ds1-2 ii slirp4netns 1.0.1-2 ii tini 0.19.0-1 ii uidmap 1:4.11.1+dfsg1-2 Versions of packages podman suggests: pn containers-storage <none> ii docker-compose 1.29.2-1 ii iptables 1.8.7-1 -- no debconf information
signature.asc
Description: PGP signature
--- End Message ---
--- Begin Message ---Source: libpod Source-Version: 4.3.1+ds1-4 Done: Reinhard Tartler <siret...@tauware.de> We believe that the bug you reported is fixed in the latest version of libpod, which is due to be installed in the Debian FTP archive. A summary of the changes between this version and the previous one is attached. Thank you for reporting the bug, which will now be closed. If you have further comments please address them to 1009...@bugs.debian.org, and the maintainer will reopen the bug report if appropriate. Debian distribution maintenance software pp. Reinhard Tartler <siret...@tauware.de> (supplier of updated libpod package) (This message was generated automatically at their request; if you believe that there is a problem with it please contact the archive administrators by mailing ftpmas...@ftp-master.debian.org) -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 1.8 Date: Thu, 24 Nov 2022 15:35:49 -0500 Source: libpod Architecture: source Version: 4.3.1+ds1-4 Distribution: unstable Urgency: medium Maintainer: Debian Go Packaging Team <pkg-go-maintain...@lists.alioth.debian.org> Changed-By: Reinhard Tartler <siret...@tauware.de> Closes: 1000521 1001780 1003486 1006426 1007022 1009374 1009376 1009747 1012053 1014309 1019591 1019929 Changes: libpod (4.3.1+ds1-4) unstable; urgency=medium . * upload to unstable . libpod (4.3.1+ds1-3) experimental; urgency=medium . * debian/rules: make the previous change to build machine/qemu only on supported architecture actually work . libpod (4.3.1+ds1-2) experimental; urgency=medium . * Build machine/qemu only on amd64, arm64, fixes FTBFS . libpod (4.3.1+ds1-1) experimental; urgency=medium . * New upstream release - Add container GID to additional groups, fixes CVE-2022-2989, closes: #1019591 * Bugfix: Subordinate UID/GID ranges not fetched from libsubid, Thanks to Sam Morris <s...@robots.org.uk> for the patch, closes: #1019929 . libpod (4.2.0+ds1-3) experimental; urgency=medium . * Force using golang-go to avoid compilation failures with gcc-go * Confirmed updated components allow podman to work, thanks to Bastian Blank (Closes: #1012053), and is compiled against a containers/common that is more mindful regarding foreign-arch images (Closes: #1009376) * Confirmed fix: "starting rootless container fails with: can't get final child's PID from pipe: EOF", code change likely already in 4.1 thanks to Gabriel Filion (Closes: #1007022). * Make podman recommend 'dbus-user-session', Closes: #1009747 . libpod (4.2.0+ds1-2) experimental; urgency=medium . * tighten dependency on golang-github-opencontainers-runc-dev . libpod (4.2.0+ds1-1) experimental; urgency=medium . * New upstream release * drop patches merged upstream * add distro patch to use system 'goimports' utility * tighten dependencies * hooks/docs no longer provides section 5 manpages . libpod (4.1.1+ds1-3) experimental; urgency=medium . * reorganize dependencies for networking stack . libpod (4.1.1+ds1-2) experimental; urgency=medium . * organize GOLANG_EXCLUDES and GOLANG_TEST_EXCLUDES * add patches fix-test-TestEnvVarValue-NN.patch, fixes Test failures for !amd64, !arm64 Closes: #1014309 . libpod (4.1.1+ds1-1) experimental; urgency=medium . * New upstream release . libpod (4.1.0+ds2-2) experimental; urgency=medium . * Avoid building podman/pkg/machine/e2e on all architectures . libpod (4.1.0+ds2-1) experimental; urgency=medium . * New upstream release . libpod (4.0.3+ds1-1) experimental; urgency=medium . [ Antonio Terceiro ] * Stop installing systemd socket units under /usr/lib, Closes: #1009374 . [ Reinhard Tartler ] * New upstream release * Skip installation of podman-remote(1), Closes: #1000521 . libpod (4.0.1+ds1-3) experimental; urgency=medium . * Fix installation of systemd units . libpod (4.0.1+ds1-2) experimental; urgency=medium . * Install rootlessport, Closes: #1006426 . libpod (4.0.1+ds1-1) experimental; urgency=medium . * New upstream release . libpod (4.0.0~rc5+ds1-1) experimental; urgency=medium . * New upstream release, closes: #1003486 * Bug fix: "podman-restart missing from podman package", thanks to Jelle van der Waa (Closes: #1001780). Checksums-Sha1: ca9b1623f5a9a9e33c37913a06fa3f8230655bf0 5179 libpod_4.3.1+ds1-4.dsc 77698ceb9d050c6d64d51043144ca404e658bc09 16580 libpod_4.3.1+ds1-4.debian.tar.xz Checksums-Sha256: d94b5335ec4c78845479a444c2abb26e90e954665bf05f88ebc26b65847574be 5179 libpod_4.3.1+ds1-4.dsc 7af6464fa5ae534dc4c87272fc6d13c9cee30119c215496e3d66f9d09daed28c 16580 libpod_4.3.1+ds1-4.debian.tar.xz Files: cdea8370086c360bfc09eafff95929dd 5179 admin optional libpod_4.3.1+ds1-4.dsc 0c5bcec672844fe4539490409e6580ae 16580 admin optional libpod_4.3.1+ds1-4.debian.tar.xz -----BEGIN PGP SIGNATURE----- iQJIBAEBCgAyFiEEMN59F2OrlFLH4IJQSadpd5QoJssFAmN/1iUUHHNpcmV0YXJ0 QHRhdXdhcmUuZGUACgkQSadpd5QoJssA2BAAwq6CV1nwgqR7NPHYkfoHd5Wo47HP /lg1Nm/aeujuSpZn+DCT0VeAW2fgw8HUo5mWIeufpxWD/3ojdJRCOhwN20DJen8/ o9tLjzhxIg3VZ+0vNVggKQymvDaQCtBpe40kadDFANUKCbjbenzTKXvkQYRvjNHD 7Prnj/JQnSrRqDyzAIJ7EFsRgcFUEgEZG2tM8ieWMAOzZIeVopTt6P7cnuKlr8T7 QQF+bl8gVwdglrkyrjC6gQbwZYP+VSYfJpvbxp5Bie/aMW+N6rq8NJT1V5/tE5WP SZvyOq0HrEhNU/B+JguLOGREuRpHoRanmzoRe8YuUIydApJuvu3IjneqlGP3JLHJ TR9m03lWkzfJYJfQi9l64gKXCJ6WxdLTF16NIpyKCIf5kQySCooF/jP4xBu+zl+Y 78v/kXZxpXYO5sCBXQ9WSQ+xdGmtA0vfvdHYcSAeG8QSAeBZrl2J0G0kjaRJRdRm 6r0BzzmQQS0nucryveHVPSTR8CMooRwajVhWB1nZBr+oODrHMFp5X5JDKHqeSWYG anoj4QBFYJ2HX1rs1IRzQ3bbmBHEz7Rdflb9Wp20fjejTrfVKjBZEj8YqmJC4zv9 c2QqJbcg67cxr7tkRtnDjdRhyiWpDjm4PWc3i37INdA+TbeiFWVEFvXZgE8rh1YZ sv7PqK8U0omyX6k= =1IVQ -----END PGP SIGNATURE-----
--- End Message ---
_______________________________________________ Pkg-go-maintainers mailing list Pkg-go-maintainers@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/pkg-go-maintainers