Open tam512 opened 4 hours ago
Issue Number: 20416 Status: Open Recommended Components: comp:vm, comp:build, comp:gc Recommended Assignees: tajila, jasonfengj9, keithc-ca
@tajila
@ymanton Please take a look at this
Looks like the clone3
system call is blocked via seccomp. Seccomp needs to be disabled or a custom seccomp profile that allows clone3
needs to be used.
I added the following to app deploy yaml as @ymanton suggested on slack discussion and the app can restore ok
securityContext:
seccompProfile:
type: Unconfined
Can we improve the error message so users know how to fix the problem?
Test Liberty InstantOn restore on Amazon EKS.
App checkpoint image was built on
stg.icr.io/cp/olc/open-liberty-vnext:24.0.0.11-full-java21-openj9-ubi-minimal
.Restore the checkpoint app image on EKS and it fails to restore with the following errors in restore.log
Attach is restore.log with CRIU_LOG_LEVEL 4
criu4-logs.zip