etc/systemd.d/vz: fix setup for cgroup-v2Invert if condition. We should return (skip mounting) when cgroup is
already mounted not when cgroup is not mounted.
https://jira.vzint.dev/browse/PSBM-149975
Signed-off-by: Pavel Tikhomirov <ptikhomirov@virtuozzo.com>
etc/systemd.d/vz: add setup for cgroup-v2If systemd is started on cgroup-v2, we need to switch to cgroup-v2 in
vzctl too, to be able to start containers on it.
https://jira.vzint.dev/browse/PSBM-149975
Signed-off-by: Pavel Tikhomirov <ptikhomirov@virtuozzo.com>
vzlist: Remove netfilter support #PSBM-128388The kernel counterpart of this feature has been dropped in VHS9
Signed-off-by: Aleksandr Leskin <aleksandr.leskin@virtuozzo.com>
conf: set fs.sile-max parameter into a big applicable value #PSBM-144917Previously we tried to set it to "unlimited" writing a very big
value - 2^64-1, but in RHEL9 the kernel does not set max possible value
for the sysctl upon this request, but complains and returns an error.
In kernel maximum value for this sysctl is:
'#define LONG_MAX ((long)(~0UL >> 1))'
(gdb) p (long)(~0UL >> 1)
$4 = 2147483647
Signed-off-by: Aleksandr Leskin <aleksandr.leskin@virtuo...
Remove --iptable parameter supportThe kernel counterpart has been removed so simply remove the user
interface as it's now defunct.
https://jira.sw.ru/browse/PSBM-128388
Remove support --netfilter optionThis feature has been dropped from VZ9 kernel so remove the userspace
interface.
https://jira.sw.ru/browse/PSBM-128388
Load vz-related modules on service start #PSBM-139428In VHI scenario vzctl is missing from the server initially, and only
installed when CT role is configured for the host. This leads to vz
modules being absent on service startup until the next reboot. Lets
check if modules are missing, and load them if necessary.
Signed-off-by: Pavel Vokhmyanin <pvokhmyanin@virtuozzo.com>
Merge pull request #152 in OVZ/vzctl from ~ALEKSANDR.LESKIN/vzctl:PSBM-138606 to master* commit '303fcc4bd4e72baba4dbe06cbfb76c6b4a50f8da':
enlarge vzctl parameters for compacting disk #PSBM-138606
Merge pull request #149 in OVZ/vzctl from ~WORKND/vzctl:master to master* commit 'dcfd8e4ac976a7552cad0e6b83a70576e7998f9a':
Add support of vztactl #PSBM-136514
Merge pull request #148 in OVZ/vzctl from dsilakov/vzeventservice-1640023106796 to master* commit '111a33b966d1e3da690a44e5dbbe2abfa2c82dc7':
/var/run -> /run in vzevent.service Ok for vz7 as well, the same as https://src.openvz.org/projects/OVZ/repos/prl-disp-service/pull-requests/2174/overview
/var/run -> /run in vzevent.serviceOk for vz7 as well, the same as https://src.openvz.org/projects/OVZ/repos/prl-disp-service/pull-requests/2174/overview
Merge pull request #147 in OVZ/vzctl from ~PTIKHOMIROV/vzctl:user-beancounters-ignore-enodev to master* commit '0cc91828afc022f2dd783fe7c0155df941d6eab0':
user_beancounters.py: ignore cgroup directory removal after open
user_beancounters.py: ignore cgroup directory removal after openPreviousely we only ignored ENOENT, but when cgroup file is opened and
cgroup directory containing this file is removed we still can't read
from file and get ENODEV instead of ENOENT.
https://jira.sw.ru/browse/PSBM-136969
Signed-off-by: Pavel Tikhomirov <ptikhomirov@virtuozzo.com>
Merge pull request #146 in OVZ/vzctl from ~PTIKHOMIROV/vzctl:vz-cgroup-dummy to master* commit '36afea45c989afd081407cb71a955eb897b1cb0a':
Add vz-cgroup-dummy.service to forbid systemd to remove container cgroups
Add vz-cgroup-dummy.service to forbid systemd to remove container cgroupsSee systemd:unit_realize_cgroup_now():target_mask influence on cgroup
removal for more info.
v2: make comment in service file look better
https://jira.sw.ru/browse/PSBM-136411
Signed-off-by: Pavel Tikhomirov <ptikhomirov@virtuozzo.com>