Failing to upgrade 15.7.2 => 15.8.1 in LXC container

keesbakker · February 4, 2023, 5:19pm

Hi,

My GitLab server is running in a LXC container. I am using it like this for the last four, five years. I have done a regular update which always worked like a charm.

But now, going from 15.7.2 to 15.8.1 it fails with an error that it has no permission to set “kernel.sem” through sysctl.

Does anyone have a workaround for this?

keesbakker · February 4, 2023, 7:02pm

Here is a bit of logging

  * gitlab_sysctl[kernel.sem] action create
    * directory[create /etc/sysctl.d for kernel.sem] action create (up to date)
    * file[create /opt/gitlab/embedded/etc/90-omnibus-gitlab-kernel.sem.conf kernel.sem] action create[2023-02-03T15:39:29+01:00] I
NFO: file[create /opt/gitlab/embedded/etc/90-omnibus-gitlab-kernel.sem.conf kernel.sem] backed up to /opt/gitlab/embedded/cookbooks
/cache/backup/opt/gitlab/embedded/etc/90-omnibus-gitlab-kernel.sem.conf.chef-20230203153929.686041
[2023-02-03T15:39:29+01:00] INFO: file[create /opt/gitlab/embedded/etc/90-omnibus-gitlab-kernel.sem.conf kernel.sem] updated file c
ontents /opt/gitlab/embedded/etc/90-omnibus-gitlab-kernel.sem.conf

      - update content in file /opt/gitlab/embedded/etc/90-omnibus-gitlab-kernel.sem.conf from 09a346 to 3b0a60
      --- /opt/gitlab/embedded/etc/90-omnibus-gitlab-kernel.sem.conf	2020-04-29 14:46:59.868307978 +0200
      +++ /opt/gitlab/embedded/etc/.chef-90-omnibus-gitlab-kernel20230203-13672-k9m46a.sem.conf	2023-02-03 15:39:29.684515440 +0100
      @@ -1 +1 @@
      -kernel.sem = 250 32000 32 262
      +kernel.sem = 250 32000 32 275
    * link[/etc/sysctl.d/90-omnibus-gitlab-kernel.sem.conf] action create (up to date)
    * execute[load sysctl conf kernel.sem] action nothing (skipped due to action :nothing)
[2023-02-03T15:39:29+01:00] INFO: file[create /opt/gitlab/embedded/etc/90-omnibus-gitlab-kernel.sem.conf kernel.sem] sending run ac
tion to execute[load sysctl conf kernel.sem] (delayed)
    * execute[load sysctl conf kernel.sem] action run
      [execute] sysctl: permission denied on key "kernel.sem"
      
      ================================================================================
      Error executing action `run` on resource 'execute[load sysctl conf kernel.sem]'
      ================================================================================
      
      Mixlib::ShellOut::ShellCommandFailed
      ------------------------------------
      Expected process to exit with [0], but received '255'
      ---- Begin output of sysctl -e -p /opt/gitlab/embedded/etc/90-omnibus-gitlab-kernel.sem.conf ----
      STDOUT: 
      STDERR: sysctl: permission denied on key "kernel.sem"
      ---- End output of sysctl -e -p /opt/gitlab/embedded/etc/90-omnibus-gitlab-kernel.sem.conf ----
      Ran sysctl -e -p /opt/gitlab/embedded/etc/90-omnibus-gitlab-kernel.sem.conf returned 255

keesbakker · February 4, 2023, 7:15pm

See also Failing to upgrade 15.7.2 => 15.8.1 in LXC container (#7427) · Issues · GitLab.org / omnibus-gitlab · GitLab