search

openfoodfacts / openfoodfacts-infrastructure

Where we collaboratively plan and maintain the infrastructure of Open Food Facts
3 stars 6 forks source link

login takes 10 seconds on ovh2 containers, but are immediate on ovh1 containers #57

Open stephanegigandet opened 3 years ago

stephanegigandet commented 3 years ago

Reported by @zond on Slack: https://openfoodfacts.slack.com/archives/C028ENWMH9N/p1632302343151500 @zond points to https://github.com/systemd/systemd/issues/17866

This seems to happen on all containers hosted on ovh2, but not on containers hosted on ovh1.

e.g. when I'm on the robotoff-net container logged as root, the command "sudo su robotoff" takes 10 seconds, and this is logged in the syslog:

Sep 22 17:36:42 robotoff-net dbus-daemon[96]: [system] Activating via systemd: service name='org.freedesktop.login1' unit='dbus-org.freedesktop.login1.service' requested by ':1.8' (uid=0 pid=8207 comm="su robotoff " label="unconfined")
Sep 22 17:36:42 robotoff-net systemd[1]: Starting Load Kernel Module drm...
Sep 22 17:36:42 robotoff-net systemd[1]: modprobe@drm.service: Succeeded.
Sep 22 17:36:42 robotoff-net systemd[1]: Finished Load Kernel Module drm.
Sep 22 17:36:42 robotoff-net systemd[1]: Starting User Login Management...
Sep 22 17:36:42 robotoff-net systemd[8209]: systemd-logind.service: Failed to set up mount namespacing: /run/systemd/unit-root/proc: Permission denied
Sep 22 17:36:42 robotoff-net systemd[8209]: systemd-logind.service: Failed at step NAMESPACE spawning /lib/systemd/systemd-logind: Permission denied
Sep 22 17:36:42 robotoff-net systemd[1]: systemd-logind.service: Main process exited, code=exited, status=226/NAMESPACE
Sep 22 17:36:42 robotoff-net systemd[1]: systemd-logind.service: Failed with result 'exit-code'.
Sep 22 17:36:42 robotoff-net systemd[1]: Failed to start User Login Management.
Sep 22 17:36:42 robotoff-net systemd[1]: systemd-logind.service: Scheduled restart job, restart counter is at 1.
Sep 22 17:36:42 robotoff-net systemd[1]: Stopped User Login Management.
Sep 22 17:36:42 robotoff-net systemd[1]: Starting Load Kernel Module drm...
Sep 22 17:36:42 robotoff-net systemd[1]: modprobe@drm.service: Succeeded.
Sep 22 17:36:42 robotoff-net systemd[1]: Finished Load Kernel Module drm.
Sep 22 17:36:42 robotoff-net systemd[1]: Starting User Login Management...
Sep 22 17:36:42 robotoff-net systemd[8213]: systemd-logind.service: Failed to set up mount namespacing: /run/systemd/unit-root/proc: Permission denied
Sep 22 17:36:42 robotoff-net systemd[8213]: systemd-logind.service: Failed at step NAMESPACE spawning /lib/systemd/systemd-logind: Permission denied
Sep 22 17:36:42 robotoff-net systemd[1]: systemd-logind.service: Main process exited, code=exited, status=226/NAMESPACE
Sep 22 17:36:42 robotoff-net systemd[1]: systemd-logind.service: Failed with result 'exit-code'.
Sep 22 17:36:42 robotoff-net systemd[1]: Failed to start User Login Management.
Sep 22 17:36:42 robotoff-net systemd[1]: systemd-logind.service: Scheduled restart job, restart counter is at 2.
Sep 22 17:36:42 robotoff-net systemd[1]: Stopped User Login Management.
Sep 22 17:36:42 robotoff-net systemd[1]: Starting Load Kernel Module drm...
Sep 22 17:36:42 robotoff-net systemd[1]: modprobe@drm.service: Succeeded.
Sep 22 17:36:42 robotoff-net systemd[1]: Finished Load Kernel Module drm.
Sep 22 17:36:42 robotoff-net systemd[1]: Starting User Login Management...
Sep 22 17:36:42 robotoff-net systemd[8217]: systemd-logind.service: Failed to set up mount namespacing: /run/systemd/unit-root/proc: Permission denied
Sep 22 17:36:42 robotoff-net systemd[8217]: systemd-logind.service: Failed at step NAMESPACE spawning /lib/systemd/systemd-logind: Permission denied
Sep 22 17:36:42 robotoff-net systemd[1]: systemd-logind.service: Main process exited, code=exited, status=226/NAMESPACE
Sep 22 17:36:42 robotoff-net systemd[1]: systemd-logind.service: Failed with result 'exit-code'.
Sep 22 17:36:42 robotoff-net systemd[1]: Failed to start User Login Management.
Sep 22 17:36:42 robotoff-net systemd[1]: systemd-logind.service: Scheduled restart job, restart counter is at 3.
Sep 22 17:36:42 robotoff-net systemd[1]: Stopped User Login Management.
Sep 22 17:36:42 robotoff-net systemd[1]: Starting Load Kernel Module drm...
Sep 22 17:36:42 robotoff-net systemd[1]: modprobe@drm.service: Succeeded.
Sep 22 17:36:42 robotoff-net systemd[1]: Finished Load Kernel Module drm.
Sep 22 17:36:42 robotoff-net systemd[1]: Starting User Login Management...
Sep 22 17:36:42 robotoff-net systemd[8221]: systemd-logind.service: Failed to set up mount namespacing: /run/systemd/unit-root/proc: Permission denied
Sep 22 17:36:42 robotoff-net systemd[8221]: systemd-logind.service: Failed at step NAMESPACE spawning /lib/systemd/systemd-logind: Permission denied
Sep 22 17:36:42 robotoff-net systemd[1]: systemd-logind.service: Main process exited, code=exited, status=226/NAMESPACE
Sep 22 17:36:42 robotoff-net systemd[1]: systemd-logind.service: Failed with result 'exit-code'.
Sep 22 17:36:42 robotoff-net systemd[1]: Failed to start User Login Management.
Sep 22 17:36:42 robotoff-net systemd[1]: systemd-logind.service: Scheduled restart job, restart counter is at 4.
Sep 22 17:36:42 robotoff-net systemd[1]: Stopped User Login Management.
Sep 22 17:36:42 robotoff-net systemd[1]: Starting Load Kernel Module drm...
Sep 22 17:36:42 robotoff-net systemd[1]: modprobe@drm.service: Succeeded.
Sep 22 17:36:42 robotoff-net systemd[1]: Finished Load Kernel Module drm.
Sep 22 17:36:42 robotoff-net systemd[1]: Starting User Login Management...
Sep 22 17:36:42 robotoff-net systemd[8225]: systemd-logind.service: Failed to set up mount namespacing: /run/systemd/unit-root/proc: Permission denied
Sep 22 17:36:42 robotoff-net systemd[8225]: systemd-logind.service: Failed at step NAMESPACE spawning /lib/systemd/systemd-logind: Permission denied
Sep 22 17:36:42 robotoff-net systemd[1]: systemd-logind.service: Main process exited, code=exited, status=226/NAMESPACE
Sep 22 17:36:42 robotoff-net systemd[1]: systemd-logind.service: Failed with result 'exit-code'.
Sep 22 17:36:42 robotoff-net systemd[1]: Failed to start User Login Management.
Sep 22 17:36:42 robotoff-net systemd[1]: systemd-logind.service: Scheduled restart job, restart counter is at 5.
Sep 22 17:36:42 robotoff-net systemd[1]: Stopped User Login Management.
Sep 22 17:36:42 robotoff-net systemd[1]: modprobe@drm.service: Start request repeated too quickly.
Sep 22 17:36:42 robotoff-net systemd[1]: modprobe@drm.service: Failed with result 'start-limit-hit'.
Sep 22 17:36:42 robotoff-net systemd[1]: Failed to start Load Kernel Module drm.
Sep 22 17:36:42 robotoff-net systemd[1]: systemd-logind.service: Start request repeated too quickly.
Sep 22 17:36:42 robotoff-net systemd[1]: systemd-logind.service: Failed with result 'exit-code'.
Sep 22 17:36:42 robotoff-net systemd[1]: Failed to start User Login Management.
stephanegigandet commented 3 years ago

The slow login issue seem to disappear when features: keyctl=1,nesting=1 is activated for the container.