Bug 1976749

Summary: When running a lot of one-off containers, podman hangs forever [rhel-8.4.0.z]
Product: Red Hat Enterprise Linux 8 Reporter: RHEL Program Management Team <pgm-rhel-tools>
Component: runcAssignee: Jindrich Novy <jnovy>
Status: CLOSED ERRATA QA Contact: Alex Jia <ajia>
Severity: medium Docs Contact:
Priority: unspecified    
Version: 8.4CC: bbaude, dornelas, dwalsh, jligon, jnovy, karel.klic, kir, lsm5, mheon, pthomas, tsweeney, umohnani, ypu
Target Milestone: betaKeywords: Triaged, ZStream
Target Release: ---   
Hardware: Unspecified   
OS: Unspecified   
Whiteboard:
Fixed In Version: runc-1.0.0-74.rc95.el8_4 or newer Doc Type: If docs needed, set a value
Doc Text:
Story Points: ---
Clone Of: 1972211 Environment:
Last Closed: 2021-08-10 13:54:32 UTC Type: ---
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:
Bug Depends On: 1972211    
Bug Blocks:    

Comment 1 Tom Sweeney 2021-07-01 15:08:35 UTC 
Kir,

Giuseppe believes this is runc related and has asked if you could take a look at it.
Comment 2 Kir Kolyshkin 2021-07-01 23:18:17 UTC 
It is runc related, as stated in the original bug #1972211 (of which this one is a close). Quoting that BZ:

> There is a seccomp-related issue that can cause such behavior. The bug appeared in rc93 and was fixed in rc94 by https://github.com/opencontainers/runc/pull/2871/commits/7b3e0bcf2907c29e67eb49fb7ef6c03ea6456d45

I will be happy to backport the above patch to whatever codebase -- but I'm not sure where are the sources for container-tools:rhel8 repo. @jnovy maybe you can point me to the repo/codebase?
Comment 3 Jindrich Novy 2021-07-02 10:10:52 UTC 
Kir, I've updated runc to rc95 in preparation of the 8.4.0.2 release. Assuming it's already fixed there?
Comment 4 Kir Kolyshkin 2021-07-07 03:01:42 UTC 
Jundrich, yes, it's fixed in rc94, rc95 and beyond.
Comment 5 Jindrich Novy 2021-07-07 07:13:30 UTC 
Thanks Kir.

Can we get QA ack please?
Comment 10 Alex Jia 2021-07-20 01:00:26 UTC 
This bug has been verified on runc-1.0.0-74.rc95.module+el8.4.0+11690+cf1301f4.

https://bugzilla.redhat.com/show_bug.cgi?id=1972211#c19
Comment 14 errata-xmlrpc 2021-08-10 13:54:32 UTC 
Since the problem described in this bug report should be
resolved in a recent advisory, it has been closed with a
resolution of ERRATA.

For information on the advisory (container-tools:rhel8 security, bug fix, and enhancement update), and where to find the updated
files, follow the link below.

If the solution does not work for you, open a new bug report.

https://access.redhat.com/errata/RHBA-2021:3070