This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
FAQ
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 

Full-stack monitoring of stand alone Podman container using --read-only=True option

Go to solution
gilles_tabary
Mentor

‎25 Mar 2024 01:54 PM

Hello.

Did any one successfully full-stack monitored stand alone Podman (no platform) containers running with --read-only=True option ?

/usr/bin/podman run ...  --read-only=True ...

I have a Linux RHEL host, OneAgent'ed in full-stack mode with Podman container monitoring enabled, running many containers, Ociruntime == crun and Podman version officially supported. But none of my containers are deep monitored. It turns out the use of "--read-only=True" option kind of blocks / disable full-stack monitoring.

FYI, on the same host, I deep-monitored sucessfully a container Podman / Tomcat / hello world example.

Any experience with this option ?

Regards.

0 Kudos
Reply
5 REPLIES 5

Go to solution
ChadTurner
DynaMight Legend
DynaMight Legend

‎28 Mar 2024 03:30 PM

That makes sense as read only will just be reading metrics (Half Stack and Discovery mode) You will need write permissions for Full Stack since it actively injects the JS into your application header. 

-Chad
0 Kudos
Reply

Go to solution
gilles_tabary
Mentor
In response to ChadTurner

‎28 Mar 2024 03:39 PM

Hello. Thanks for feedback.

With --read-only=True option I get infra only. Not even "Half Stack". Object is reported as non monitored or having to be restarted.

Also, different (speculative) understanding here : does OneAgent injects on the fly its libraries into the Podman container, so full-stack could work ? Which would require inner-container FS to be writable ?

0 Kudos
Reply

Go to solution
ChadTurner
DynaMight Legend
DynaMight Legend
In response to gilles_tabary

‎28 Mar 2024 03:45 PM

Infra is Halfstack 🙂 

-Chad
0 Kudos
Reply

Go to solution
gilles_tabary
Mentor
In response to ChadTurner

‎28 Mar 2024 03:49 PM

Thanks. Did not know this one.

0 Kudos
Reply

Go to solution
gilles_tabary
Mentor

‎28 Mar 2024 03:47 PM

More insight for the discussion. Starting with OneAgent 1.277.165.20231024-150054+ bellow hack lead to full-stack monitoring working fine even
- with ociruntime == runc (== the default) 
- with podman run ... --read-only=True ...

# In /etc/containers/containers.conf
...
   "LD_PRELOAD=/lib64/liboneagentproc.so",
...
volumes=[
   “/lib64/liboneagentproc.so: /lib64/liboneagentproc.so:ro”,
   "/opt/dynatrace/oneagent/agent:/opt/dynatrace/oneagent/agent:ro",
...
0 Kudos
Reply
Ask a question

Featured Posts