Tom Parrott comments

Results 1094 comments of


                                            Tom Parrott

BPF syscall mediation is too limited for snapd

Thanks @mihalicyn very insightful stuff.

Check VMs filesystem volume for concurrent read/writes during live migration

Consider also this comment https://github.com/canonical/lxd/issues/12526#issuecomment-2031776802

fdb is not remove inside from unprivileged container

@mihalicyn is this something we would expect not to be possible from inside an unprivileged container?

fdb is not remove inside from unprivileged container

OK thanks for confirmation.

lxd-ci: Debug why `tests/network-ovn` peering test fails on GHA runners but succeeds locally

@simondeziel how do I get the test scripts to stop destroying the env when i run it manually? I need to the env left in the same state as it...

lxd-ci: Debug why `tests/network-ovn` peering test fails on GHA runners but succeeds locally

Here's something funny, running `sudo tcpdump -nn -i lxdbr0` (which switches the bridge into promiscuous mode) makes it work, and exiting tcpdump breaks it again :)

lxd-ci: Debug why `tests/network-ovn` peering test fails on GHA runners but succeeds locally

`lxc network set lxdbr0 ipv4.nat=false` fixes it.

lxd-ci: Debug why `tests/network-ovn` peering test fails on GHA runners but succeeds locally

Considering whether we should alter the SNAT rule such that it only applied to traffic leaving the bridge via a non-bridge interface, e.g. ``` nft add rule inet lxd pstrt.lxdbr0...

lxd-ci: Debug why `tests/network-ovn` peering test fails on GHA runners but succeeds locally

I dont know why other people's forks keep closing this.

Disconnecting cluster member from network and then moving ceph based instance doesn't stop the instance on disconnected member

> We should investigate whether this is causing 2 concurrent mappings of the same ceph volume on two members, which could cause data corruption. As well as investigate when/how the...