Actions
Bug #7381
closed
Process management issues on nodes hosting LXC containers
Status:
Released
Priority:
N/A
Assignee:
Category:
System integration
Target version:
Pull Request:
Severity:
UX impact:
User visibility:
Effort required:
Priority:
0
Name check:
Fix check:
Regression:
Description
When running Rudder agents in LXC containers, the agent on the hosting node sees all the cf-execd processes (and thus kills them).
[root@localhost amousset]# ps -eo pidns,cgroup:50,pid,user,args --sort pidns | grep cf-exe 4026531836 1:name=systemd:/system.slice/rudder.service 4903 root /var/rudder/cfengine-community/bin/cf-execd 4026531836 1:name=systemd:/user.slice/user-1000.slice/session 4924 root grep --color=auto cf-exe 4026532309 10:hugetlb:/lxc/c7m2,9:perf_event:/lxc/c7m2,7:net_ 4779 root /var/rudder/cfengine-community/bin/cf-execd 4026532376 10:hugetlb:/lxc/c7m1,9:perf_event:/lxc/c7m1,7:net_ 4786 root /var/rudder/cfengine-community/bin/cf-execd [root@localhost amousset]# rudder agent run R: @@Common@@log_info@@hasPolicyServer-root@@common-root@@00@@common@@StartRun@@2015-11-06 12:55:24+00:00##e06c2cde-94ce-4ba7-8514-ac95697d2d9a@#Start e xecution R: @@Common@@result_success@@hasPolicyServer-root@@common-root@@00@@Security parameters@@None@@2015-11-06 12:55:24+00:00##e06c2cde-94ce-4ba7-8514-ac9569 7d2d9a@#The internal environment security is acceptable R: @@Common@@result_repaired@@hasPolicyServer-root@@common-root@@00@@Process checking@@None@@2015-11-06 12:55:24+00:00##e06c2cde-94ce-4ba7-8514-ac95697d 2d9a@#Warning, more than 2 cf-execd processes were detected. They have been sent a graceful termination signal. R: @@Common@@result_success@@hasPolicyServer-root@@common-root@@00@@CRON Daemon@@None@@2015-11-06 12:55:24+00:00##e06c2cde-94ce-4ba7-8514-ac95697d2d9a@# The CRON daemon is running R: @@Common@@result_success@@hasPolicyServer-root@@common-root@@00@@Binaries update@@None@@2015-11-06 12:55:24+00:00##e06c2cde-94ce-4ba7-8514-ac95697d2d 9a@#The CFengine binaries in /var/rudder/cfengine-community/bin are up to date 2015-11-06T13:55:26+0100 error: /default/doInventory/commands/'/usr/bin/curl -L -k -1 -s -f --proxy '' -o "/var/rudder/cfengine-community/rudder-serv er-uuid.txt" https://rudder/uuid'[0]: Finished command related to promiser '/usr/bin/curl -L -k -1 -s -f --proxy '' -o "/var/rudder/cfengine-community/r udder-server-uuid.txt" https://rudder/uuid' -- an error occurred, returned 6 2015-11-06T13:55:26+0100 error: /default/doInventory/commands/'/usr/bin/curl -L -k -1 -s -f --proxy '' -o "/var/rudder/cfengine-community/rudder-serv er-uuid.txt" https://rudder/uuid'[0]: Fatal CFEngine error: cf-agent aborted on defined class 'could_not_download_uuid' [root@localhost amousset]# ps -eo pidns,cgroup:50,pid,user,args --sort pidns | grep cf-exe 4026531836 1:name=systemd:/user.slice/user-1000.slice/session 5201 root grep --color=auto cf-exe 4026532309 10:hugetlb:/lxc/c7m2,9:perf_event:/lxc/c7m2,7:net_ 4779 root /var/rudder/cfengine-community/bin/cf-execd [root@localhost amousset]# rudder agent version Rudder agent 3.1.4.release (CFEngine Core 3.6.5)
Happens on Rudder 3.1.4, CentOS 6.7 and 7.
Updated by 
Updated by Jonathan CLARKE 
Updated by 
Updated by 
Updated by
Actions