Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

fix: disable selinux label when mounting the volume for the playground #457

Merged
merged 1 commit into from
Mar 7, 2024
Merged

fix: disable selinux label when mounting the volume for the playground #457

merged 1 commit into from
Mar 7, 2024

Conversation

jeffmaury
Copy link
Contributor

Fixes #456

What does this PR do?

Change options while starting the playground server

Screenshot / video of UI

N/A

What issues does this PR fix or reference?

#456

How to test this PR?

Start the playground for a model on Linux or MacOS applehv

@jeffmaury jeffmaury requested a review from a team as a code owner March 7, 2024 12:41
@jeffmaury jeffmaury requested review from benoitf, feloy and axel7083 March 7, 2024 12:41
axel7083
axel7083 reviewed Mar 7, 2024
View reviewed changes
packages/backend/src/managers/playground.ts
@@ -212,6 +212,7 @@ export class PlayGroundManager {
Type: 'bind',
},
],
SecurityOpt: [DISABLE_SELINUX_LABEL_SECURITY_OPTION],
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

What are the implication of this security option ? Why does it is required ? I cannot really understand the link with applehv from the documentation https://docs.podman.io/en/v4.6.1/markdown/options/security-opt.html

Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

The volumes are not readable if this option is not set on Linux and applehv. Inspired from containers/podman#3683

Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

So we might want to include this option on windows or we don't care ?

Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

It is set for all platforms, I prefer to have a single general flow

axel7083
axel7083 approved these changes Mar 7, 2024
View reviewed changes
Copy link
Contributor

@axel7083 axel7083 left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM

@jeffmaury jeffmaury merged commit e66da3d into containers:main Mar 7, 2024
4 checks passed
@jeffmaury jeffmaury deleted the GH-456 branch March 7, 2024 15:53
@axel7083 axel7083 mentioned this pull request Mar 12, 2024
Merged
mhdawson pushed a commit to mhdawson/podman-desktop-extension-ai-lab that referenced this pull request Nov 22, 2024
@rhatdan
Merge pull request containers#457 from benoitf/fix-intel-instructions
ff57e9e 
chore: handle some AVX flags properly on certain Intel CPUs
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@axel7083 axel7083 axel7083 approved these changes

@benoitf benoitf Awaiting requested review from benoitf benoitf was automatically assigned from projectatomic/ai-studio-reviewers

@feloy feloy Awaiting requested review from feloy feloy was automatically assigned from projectatomic/ai-studio-reviewers

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

Playground cannot start on Linux and MacOS applehv
2 participants
@jeffmaury @axel7083