[lxc-users] Hint for CentOS 7 guests in Debian stretch with KAISER/KPTI kernel
Christoph Lechleitner
christoph.lechleitner at iteg.at
Sun Jan 21 13:45:48 UTC 2018
Am 20.01.18 um 13:17 schrieb Harald Dunkel:
> On 01/11/18 17:19, Christoph Lechleitner wrote:
>> Hi everybody!
>>
>> After this cost me an afternoon I thought I should share the solution
>> here ;-)
>>
>> We are running multiple LXC hosts with Debian jessie resp. stretch,
>> using sysv-init over systemd in the host system.
>>
>> 99% of the guest systems are Debian too, but we also have guests with
>> CentOS 6 and 7 (one each) for development.
>>
>> After upgrading the host system from Debian Jessie (with kernel 4.0.x
>> from jessie-backports) to Debian stretch with kernel 4.9.65-3+deb9u2
>> (includes KAISER patches AKA KPTI against meltdown), our CentOS 7 guest
>> were half broken.
>>
>
> I have a similar setup. My suggestion:
>
> If systemd is not installed on the host, then you should consider to
> install the cgmanager package, together with a backport of lxc 2.0.9.
> I cannot recommend to add cgroup to your /etc/fstab.
Can you elaborate please`
LXC 2.0.9 would mean using something from Debian testing on our
production servers, I don't do that lightly.
What's the problem with satisfying stupid CentOS 7 with a cgroup mount?
That proposal is actually linked on Debian's wiki page on LXC btw.
Why cgroupmanager?
It is actually deprecated ac. https://linuxcontainers.org/
Regards, Christoph
More information about the lxc-users
mailing list