kolla

TechDebt: non-root user does not work with kuryr container

Bug #1594673 reported by Hui Kang on 2016-06-21

This bug affects 1 person

Affects		Status	Importance	Assigned to	Milestone
	kolla	Expired	Undecided	Unassigned	kolla rocky-2 "rocky"

Bug Description

kuryr container requires root user in the container for two reasons

- Kuryr currently requires root privilege to operate [1].
- In addition, not all container drops root, e.g., nova-libvirt [2]. These containers have to operate on some host directory like kuryr.

As things get improved, we need to fix this to enable non-root user in the kuryr container.

[1] https://github.com/openstack/kuryr/blob/794a9444e0f5d7552b6ba322e81c6b3778c25253/README.rst#running-kuryr
[2] https://github.com/openstack/kolla/blob/master/docker/nova/nova-libvirt/Dockerfile.j2#L1

Swapnil Kulkarni (coolsvap-deactivatedaccount) on 2016-06-21

Changed in kolla:
assignee:	nobody → Hui Kang (huikang27)
importance:	Undecided → High
milestone:	none → newton-2
status:	New → Confirmed

Swapnil Kulkarni (coolsvap-deactivatedaccount) on 2016-07-20

Changed in kolla:
milestone:	newton-2 → newton-3

Swapnil Kulkarni (coolsvap-deactivatedaccount) on 2016-08-31

Changed in kolla:
milestone:	newton-3 → newton-rc1

zhubingbing (zhubingbing) on 2016-09-18

Changed in kolla:
milestone:	newton-rc1 → newton-rc2

Steven Dake (sdake) on 2016-10-12

Changed in kolla:
importance:	High → Medium

Steven Dake (sdake) on 2016-10-12

Changed in kolla:
milestone:	newton-rc2 → ocata-1

Jeffrey Zhang (jeffrey4l) on 2016-11-18

Changed in kolla:
milestone:	ocata-1 → ocata-2

Jeffrey Zhang (jeffrey4l) on 2016-12-16

Changed in kolla:
milestone:	ocata-2 → ocata-3

Jeffrey Zhang (jeffrey4l) on 2017-01-29

Changed in kolla:
milestone:	ocata-3 → ocata-rc1

Jeffrey Zhang (jeffrey4l) on 2017-02-16

Changed in kolla:
milestone:	ocata-rc1 → pike-1

Jeffrey Zhang (jeffrey4l) on 2017-06-14

Changed in kolla:
milestone:	pike-2 → pike-3

Jeffrey Zhang (jeffrey4l) on 2017-07-30

Changed in kolla:
milestone:	pike-3 → pike-rc1

Eduardo Gonzalez (egonzalez90) on 2017-09-06

Changed in kolla:
milestone:	pike-rc1 → queens-1

Jeffrey Zhang (jeffrey4l) on 2017-12-11

Changed in kolla:
milestone:	queens-2 → queens-3

Jeffrey Zhang (jeffrey4l) on 2018-02-04

Changed in kolla:
milestone:	queens-3 → queens-rc1

Jeffrey Zhang (jeffrey4l) on 2018-03-05

Changed in kolla:
milestone:	queens-rc1 → queens-rc2

Jeffrey Zhang (jeffrey4l) on 2018-03-05

Changed in kolla:
milestone:	queens-rc2 → rocky-1

Revision history for this message

Jeffrey Zhang (jeffrey4l) wrote on 2018-04-19: Cleanup EOL bug report

This is an automated cleanup. This bug report has been closed because it
is older than 18 months and there is no open code change to fix this.
After this time it is unlikely that the circumstances which lead to
the observed issue can be reproduced.

If you can reproduce the bug, please:
* reopen the bug report (set to status "New")
* AND add the detailed steps to reproduce the issue (if applicable)
* AND leave a comment "CONFIRMED FOR: <RELEASE_NAME>"
Only still supported release names are valid (OCATA, PIKE, QUEENS, ROCKY, ROCKY).
Valid example: CONFIRMED FOR: OCATA

Changed in kolla:
assignee:	Hui Kang (huikang27) → nobody
importance:	Medium → Undecided
status:	Confirmed → Expired

Report a bug

This report contains Public information

Everyone can see this information.

You are

Subscribing...

Edit bug mail

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.