Skip to content

Draft: Check and fix for podman network_backend consistency when embedding containers (HMS-8783)#1365

Draft
thozza wants to merge 4 commits intoosbuild:mainfrom
thozza:el9-podman-network_backend-fix
Draft

Draft: Check and fix for podman network_backend consistency when embedding containers (HMS-8783)#1365
thozza wants to merge 4 commits intoosbuild:mainfrom
thozza:el9-podman-network_backend-fix

Conversation

@thozza
Copy link
Member

@thozza thozza commented Mar 27, 2025

WIP

@thozza thozza requested review from a team and achilleas-k as code owners March 27, 2025 13:13
@thozza thozza requested review from mvo5 and schuellerf March 27, 2025 13:13
@thozza thozza force-pushed the el9-podman-network_backend-fix branch from 0cf9369 to 551bc50 Compare March 27, 2025 13:18
achilleas-k
achilleas-k previously approved these changes Mar 27, 2025
View reviewed changes
Copy link
Member

@achilleas-k achilleas-k left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Really nice! Thank.

The last commit message is a bit too long. Can you make it shorter?

@thozza thozza marked this pull request as draft March 27, 2025 13:38
@thozza
Copy link
Member Author

thozza commented Mar 27, 2025

Really nice! Thank.

The last commit message is a bit too long. Can you make it shorter?

Will do.

I hoped that GH will mark this PR as a Draft. 😇 My plan is first to see where the consistency check fails, before pushing any fix for RHEL-9.

@thozza thozza force-pushed the el9-podman-network_backend-fix branch 2 times, most recently from d27bc35 to 4b9ecd5 Compare March 28, 2025 15:44
@thozza thozza force-pushed the el9-podman-network_backend-fix branch from 4b9ecd5 to d647bc5 Compare April 8, 2025 11:13
thozza added 4 commits April 8, 2025 13:30
@thozza
Test/manifest/all-customizations: install jq
345e7c1 
It turns out that jq is not installed by default on RHEL-8 images and
therefore no checks were run on RHEL-8. Also extend the check script to
fail in case jq is not installed, to prevent it from silently passing.

Signed-off-by: Tomáš Hozza <thozza@redhat.com>
@thozza
Test/manifests/all-customizations: check container embedding
6d560a8 
Extend the `all-customizations.json` config to embed a container in
the image.

Extend the `base-host-check.sh` to verify that a container image is
present on the booted system in case it was specified in the BP.

Explicitly install podman, which is required by the check.

Signed-off-by: Tomáš Hozza <thozza@redhat.com>
@thozza
Test/manifests: check podman network_backend consistency
4f2a3ca 
When embedding containers into images, certain versions of podman
may consider them as a sign of system upgrade or migration and may
fall back to using `cni` network_backend for backward compatibility
even though it should use its default. Since we embed containers as
root, this manifests as different network_backend being used for
rootfull and rootless podman.

Add a check to verify that the network_backend is the same for rootfull
and rootless podman when embedding container into the image.

More information in:
https://docs.podman.io/en/v4.2/markdown/podman-network.1.html

Signed-off-by: Tomáš Hozza <thozza@redhat.com>
@thozza
Test/base-host-check.sh: don't use global config var in check funct…
341bda0 
…ions

Be consistent and don't rely on the global `config` variable in check
functions and instead use a local `config_file` variable and error if
not config is provided to the check function.

Signed-off-by: Tomáš Hozza <thozza@redhat.com>
@thozza thozza force-pushed the el9-podman-network_backend-fix branch from d647bc5 to 341bda0 Compare April 8, 2025 11:31
@github-actions
Copy link

github-actions bot commented May 9, 2025

This PR is stale because it has been open 30 days with no activity. Remove "Stale" label or comment or this will be closed in 7 days.

@github-actions github-actions bot added the Stale label May 9, 2025
@thozza thozza removed the Stale label May 12, 2025
@achilleas-k
Copy link
Member

achilleas-k commented May 12, 2025
edited
Loading

Do we still want this?

EDIT: Nvm, noticed you un-staled it.

@github-actions
Copy link

github-actions bot commented Jun 12, 2025

This PR is stale because it had no activity for the past 30 days. Remove the "Stale" label or add a comment, otherwise this PR will be closed in 7 days.

@github-actions github-actions bot added the Stale label Jun 12, 2025
@thozza thozza removed the Stale label Jun 16, 2025
@thozza thozza changed the title Draft: Check and fix for podman network_backend consistency when embedding containers Draft: Check and fix for podman network_backend consistency when embedding containers (HMS-8783) Jul 3, 2025
@github-actions
Copy link

github-actions bot commented Aug 3, 2025

This PR is stale because it had no activity for the past 30 days. Remove the "Stale" label or add a comment, otherwise this PR will be closed in 7 days.

@github-actions github-actions bot added the Stale label Aug 3, 2025
@achilleas-k
Copy link
Member

achilleas-k commented Aug 6, 2025

boop

@github-actions github-actions bot removed the Stale label Aug 7, 2025
@github-actions
Copy link

github-actions bot commented Sep 7, 2025

This PR is stale because it had no activity for the past 30 days. Remove the "Stale" label or add a comment, otherwise this PR will be closed in 7 days.

@github-actions github-actions bot added the Stale label Sep 7, 2025
@achilleas-k achilleas-k removed the Stale label Sep 11, 2025
@github-actions
Copy link

github-actions bot commented Oct 12, 2025

This PR is stale because it had no activity for the past 30 days. Remove the "Stale" label or add a comment, otherwise this PR will be closed in 7 days.

@github-actions github-actions bot added the Stale label Oct 12, 2025
@thozza thozza removed request for mvo5 and schuellerf October 13, 2025 06:21
@thozza thozza removed the Stale label Oct 13, 2025
@github-actions
Copy link

github-actions bot commented Nov 13, 2025

This PR is stale because it had no activity for the past 30 days. Remove the "Stale" label or add a comment, otherwise this PR will be closed in 7 days.

@github-actions github-actions bot added the Stale label Nov 13, 2025
@thozza thozza removed the Stale label Nov 13, 2025
@github-actions
Copy link

github-actions bot commented Dec 14, 2025

This PR is stale because it had no activity for the past 30 days. Remove the "Stale" label or add a comment, otherwise this PR will be closed in 7 days.

@github-actions github-actions bot added the Stale label Dec 14, 2025
@thozza thozza removed the Stale label Dec 19, 2025
@github-actions
Copy link

github-actions bot commented Jan 19, 2026

This PR is stale because it had no activity for the past 30 days. Remove the "Stale" label or add a comment, otherwise this PR will be closed in 7 days.

@github-actions github-actions bot added the Stale label Jan 19, 2026
@thozza thozza removed the Stale label Jan 19, 2026
@github-actions
Copy link

github-actions bot commented Feb 19, 2026

This PR is stale because it had no activity for the past 30 days. Remove the "Stale" label or add a comment, otherwise this PR will be closed in 7 days.

@github-actions github-actions bot added the Stale label Feb 19, 2026
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@achilleas-k achilleas-k achilleas-k left review comments

At least 2 approving reviews are required to merge this pull request.

Assignees

No one assigned

Labels

Stale

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@thozza @achilleas-k

Comments