Skip to content

Bug: Linux file perms + localhost access #133

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
odyslam opened this issue May 6, 2025 · 7 comments
Open

Bug: Linux file perms + localhost access #133

odyslam opened this issue May 6, 2025 · 7 comments

Comments

@odyslam
Copy link

odyslam commented May 6, 2025
edited
Loading

Two issues arise in Linux:

File permissions

Due to containers running as root in Linux, whatever files they create in the binded volumes, can't be cleaned up by the user. That means that it's impossible to run the playground, unless you manually delete these files. On MacOs, Docker Desktop automagically spawns the containers with user permissions so that issue doesn't arise.

Error: unlinkat /home/ubuntu/.playground/devnet/data_validator/validators/logs/validator.log: permission denied

Attempted Fixes:

  • Add a user field in every service of the docker compose with the uid and guid of the user who runs the go binary. It made services crash.
  • rm -rf $HOME/.playground after every run. Works, but it's a workaround.
  • Haven't found anything other that is elegant. Probably the elegant solution is to use Named Volumes instead of Binded Volumes and delete them in Stop(). Could have a performance hit on the spin up/down of the sandbox.
  • Another idea would be to pass the user as an env variable and then run the binaries as that user, which could maybe solve it, but I haven't attempted that.

host.docker doesn't seem to work on linux.

I see that the final docker compose has the extra flags that are needed to make it work on Linux, as per Stack Overflow, but so far this hasn't worked for us. Haven't spent huge amount of time in debugging it, probably using host network mode would solve it.
@ferranbt
Copy link
Collaborator

ferranbt commented May 7, 2025

Related to #87

@ferranbt ferranbt mentioned this issue May 7, 2025
Open
@ferranbt
Copy link
Collaborator

ferranbt commented May 7, 2025

Validated in #136

@ferranbt
Copy link
Collaborator

ferranbt commented May 7, 2025

host.docker doesn't seem to work on linux.

Which part is this? Is this the host.docker.internal DNS entry?

@odyslam
Copy link
Author

odyslam commented May 7, 2025

@ferranbt yes, basically using an external block builder was not possible on a linux machine

@makemake-kbo
Copy link

To add more context, we had a builder listening on 0.0.0.0:9551, with external builder set to http://host.docker.internal:9551. we encountered a client error on rollup-boost indicating that it couldnt access the external builder. we could also not see any gossip or blocks on the external builder too.

we also tried to point it at the docker0 network device at 172.17.0.1 (so external builder 172.17.0.1:9551) with the same effect.

@ferranbt
Copy link
Collaborator

ferranbt commented May 9, 2025

To add more context, we had a builder listening on 0.0.0.0:9551, with external builder set to http://host.docker.internal:9551. we encountered a client error on rollup-boost indicating that it couldnt access the external builder. we could also not see any gossip or blocks on the external builder too.

But is this a problem with the example? or with the playground?

@makemake-kbo
Copy link

makemake-kbo commented May 19, 2025
edited
Loading

But is this a problem with the example? or with the playground?

seems like a playground thing. Unless im missing something the only way to use the external builder flag as is, is with host.docker.internal which is only a docker desktop thing

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
3 participants
@odyslam @ferranbt @makemake-kbo