Weekly status for the week of the 30th September to the 6th of October.
Introduction
This past week has seen the addition of a code of conduct and security policy for LXD. We have also continued with the internal code re-organisation to accommodate virtual machine support. There have also been several other small changes; a bug preventing MTUs >1500 on bridged and p2p devices has been fixed, iptables modules no longer need to be loaded if you are not using the firewall feature, and image expiration date can now be modified.
LXD 3.18 then got released with all of those included.
On the LXC side, a new config option lxc.autodev.tmpfs.size
has been added allowing the tmpfs size to be increased (or decreased) from the default 500KB size. This allows fixing problems caused by syslog consuming all space in the auto generated tmpfs mount in rare specific circumstances. There have also been improvements on detecting parent process death to avoid certain edge cases that will cause the pdeath signal to be missed.
Contribute to LXD
Ever wanted to contribute to LXD but not sure where to start?
We’ve recently gone through some effort to properly tag issues suitable for new contributors on Github: https://github.com/lxc/lxd/labels/Easy
You can also find a slightly longer, more detailed list here: LXD Contribution
LXD used to offer arm64
builds on Travis-CI
Travis-CI announced today that you can now run your builds on arm64
.
This is the first of hopefully many more additional architectures for Travis jobs.
This feature is using a reworked infrastructure to run Travis jobs which is backed by LXD and was setup in collaboration with the LXD team.
It’s making use of unprivileged containers, a strict set of limits applied to containers, pre-built custom images and advanced features like system call interception.
The end result is instances that are running within 2-3s from being requested, running with no virtualization overhead and having the ability to use unused CPU resources on the system when not under load.
Learn more here: https://blog.travis-ci.com/2019-10-07-multi-cpu-architecture-support
Upcoming events
- Open Source Summit - Europe - Lyon
- Linux Security Summit - Europe - Lyon
Ongoing projects
The list below is feature or refactoring work which will span several weeks/months and can’t be tied directly to a single Github issue or pull request.
- Virtual machine support
- Rework of internal LXD storage handling
- Distrobuilder 1.0 release
- Various kernel work
- Stable release work for LXC, LXCFS and LXD
Upstream changes
The items listed below are highlights of the work which happened upstream over the past week and which will be included in the next release.
LXD
- Switch to fully standalone events package
- #6220 Allow modification of image expiration field
- Add security policy and code of conduct
- doc: Update remaining reference to readthedocs
- lxd/networks: Don’t needlessly flush iptables
- Fix event handling
- lxd/devices/nic: Set MTU on both side of veth
LXC
- start: handle setting pdeath signal in new pidns
- Add config parameter for /dev tmpfs size
- Autoconf 2.69 conformance
- Fix lxc-update-config in network.address
- start: pidfds obviously start - like any fd - at 0
LXCFS
- Nothing to report this week
Distrobuilder
- Nothing to report this week
Distribution work
This section is used to track the work done in downstream Linux distributions to ship the latest LXC, LXD and LXCFS as well as work to get various software to work properly inside containers.
Ubuntu
- Uploaded LXCFS 3.0.4 to eoan.
Snap
- Bumped ZFS to 0.8.2
- Bumped CRIU to 3.13
- Added a new
lxcfs.loadavg
configuration option - Updated to LXD 3.18