Picked up and categorized subjectively from https://github.com/docker/docker/issues. Comments and pull requests are welcome.
β¬ = Open (maybe not up-to-date, please check the link by yourself!)
π³ = Mostly resolved (ditto, plus subjective)
β = Resolved
| Issue | Abstract | Impact | Reproducibility | Cause | Solution | Notes |
|---|---|---|---|---|---|---|
| β #783 | Cannot access to a directory due to a permission error | π Medium | π Easy | Expected AUFS behavior. dirperm1 mount option fixes this issue. |
Update the kernel (AUFS >= 2008xxxx?) and Docker daemon (>= 1.7) | Confirm: `docker info |
| β #18180 | A process becomes a zombie and hangs up | π± High | π± Hard(multiprocessor) π Easy(uniprocessor) |
Compatibility between the kernel and AUFS | Update the kernel (AUFS >= 20160111) | Java apps and MongoDB are known to be affected |
| π³ #20199 | fcntl(F_SETFL, O_APPEND) is ignored and hence data can be corrupted |
π± High | π Easy | AUFS bug | Update the kernel (AUFS >= 20160301) | Dovecot is known to be affected |
| β¬ #20240 | Weird permission even though dirperm1 is enabled |
π Medium | π± Hard | Unanalyzed | None | |
| β¬ AUFS ML 2016-03-08 | Hang up related to O_DIRECT |
π± High | π Easy | Unanalyzed | None | Percona is known to be affected |
| β¬ #24309 | Unable to remove files previously committed | π± High | π Easy | Unanalyzed | This article seems related, but perhaps slightly different(Japanese) |
Non-bug issues:
- AUFS is not available in the mainline kernelοΌOnly a few distros (Ubuntu, Boot2Docker, ..) support AUFS, but even for Ubuntu, Canonical says "AUFS will disappear".
- No support for extended attributes ("xattrs"), and might not ever get support (#1070, #8460).
rename(2)is not fully supported #25409
| Issue | Abstract | Impact | Reproducibility | Cause | Solution | Notes |
|---|---|---|---|---|---|---|
| β #10180 | RPMDB corruption | π± High | π Medium | Expected overlay behavior | Use yum-{utils,plugins-ovl}-1.1.31-33.el7 (included in RHEL 7.2) or later. Kernel patch is also available. | Linux 4.6 or later prints human-friendly dmesg |
| β #12080 | Cannot use UNIX domain sockets | π Medium | π Easy | Overlay Bug | Use Linux 4.7-rc4 or later | |
| π³ #12327 | pip fails | π± High | π Easy | Overlay Bug | Use Linux 4.5 or later | |
| β #19082 | Weird behavior after removing the current directory | π Low | π Easy | Overlay Bug | Use Linux 4.5 or later | |
| β¬ #19647, coreos/bugs#1095 | Untar fails intermittently | π± High | π± Hard | Overlay Bug | None | Analysis is in progress in coreos/bugs#1095 |
| β¬ #19758 | Daemon hangs up after frequent docker run |
π± High | π± Hard | Unanalyzed (Overlay bug related to the number of processors?) | None | |
| β¬ #20640 | Container cannot be started | π Medium | π± Hard | Unanalyzed | None | Possibly identical to #16902 |
| β #20950 | /dev/console: operation not permitted | π± High | π Easy | Kernel Bug | Use recent Linux kernels | |
| π³ #21555 | docker build fails intermittently |
π± High | π± Hard | DiffDriver bug | Resolved in Overlay2 by design. Patch available for overlay1 | |
| β #24913 | permissions broken after chown | π Medium | π Easy | Overlay Bug | Use Linux 4.6 or later | |
| π³ #25244 | opaque flag not reset after directory copy up | π Medium | π Easy | Overlay Bug | None but patch is available | npm is known to be affected |
| β machine#3327 | chmod fails with EPERM | π Low | π Easy | Overlay Bug | Use Linux 4.5 or later |
Non-bug issues:
- π± High inode usage (resolved in overlay2, which will be available in Docker 1.12)
- Red Hat says OverlayFS is Tech Preview
rename(2)is not fully supported #25409
| Issue | Abstract | Impact | Reproducibility | Cause | Solution | Notes |
|---|---|---|---|---|---|---|
| β #19073 | sendfile(2) can be unkillable |
π Low | π Easy | BtrFS bug | None | Not likely to happen in production, but needs consideration for public PaaS |
| β¬ #20080 | cgroups kmem limit leads crash and data corruption | π± High | π Easy? | Btrfs bug | Avoid kmem limit configuration? |
Non-bug issues:
- Slow #10161
- No page sharing (e.g. same DLLs are loaded redundantly) http://comments.gmane.org/gmane.comp.sysutils.docker.devel/1384
- Docker says BtrFS is Experimental. Red Hat says BtrFS is Tech Preview.
| Issue | Abstract | Impact | Reproducibility | Cause | Solution | Notes |
|---|---|---|---|---|---|---|
| β #20153 | Some operations fail due to EBUSY |
π Medium | π Medium | Daemon bug | Update Docker daemon |
Non-bug issues:
- Docker says ZFS is not recommended for production.
| Issue | Abstract | Impact | Reproducibility | Cause | Solution | Notes |
|---|---|---|---|---|---|---|
| β #4036 | Mount fails | π± High | π Easy | udev sync disabled | Use a Docker daemon binary which supports udev sync | Confirm: `docker info |
| β¬ #20401 | Infinite βmount/remountβ loop, which makes the system unresponsive | π± High | π± High | Unanalyzed (perhaps related to XFS) | None |
Non-bug issues:
- Slow #10161
- No page sharing (e.g. same DLLs are loaded redundantly) http://comments.gmane.org/gmane.comp.sysutils.docker.devel/1384
- dmcgowan/dsdbench: Docker Storage Driver Benchmarks and Tests
It totally depends on your workload, but Docker, Inc. says AUFS and Devicemapper (direct-lvm) are "production-ready".
Although not listed in the above table, VFS driver is also attractive for its robustness.
Links:
- https://jpetazzo.github.io/assets/2015-03-03-not-so-deep-dive-into-docker-storage-drivers.html#1
- http://www.projectatomic.io/docs/filesystems/
- https://blog.jessfraz.com/post/the-brutally-honest-guide-to-docker-graphdrivers/
You know, containers should be "immutable" and "disposable".
For persistent data and some special temporary data, you should better consider using an external volume (docker run -v).
Links:
| Issue | Abstract | Impact | Reproducibility | Cause | Solution | Notes |
|---|---|---|---|---|---|---|
| β #18776 | TCP checksums are ignored | π± High | π± Hard | Kernel bug | Use Linux 4.4 or later | blog |
| Issue | Abstract | Impact | Reproducibility | Cause | Solution | Notes |
|---|---|---|---|---|---|---|
| β¬ #19209 | GELF driver saturates CPU | π± High | π Easy | |||
| β #18057,#20600 | cat /dev/zero leads to out of memory |
π± High | π Easy | logger's stdio handling issue | Use Docker 1.13 or later (or just disable the logging) | Related: #21181 |
| β¬ #22497 | container cannot be stopped if many logs are being printed | π± High | π± Hard | logger's stdio handling issue | ||
| β #22502 | logging blocks the container | π± High | π Easy | logger's stdio handling issue | Use Docker 1.11 or later | affected versions: 1.10.0 |
| Issue | Abstract | Impact | Reproducibility | Cause | Solution | Notes |
|---|---|---|---|---|---|---|
| β #17720 | Docker daemon 1.9 serious performance issue | π± High | π± Hard | ? | Use Docker 1.10 | |
| β #20670 | /dev/pts unmounted on the HOST when you are using -v /dev:/dev (After that you can no longer open SSH nor xterm) |
π± High | π Easy | daemon bug related to mount namespace | Use Docker 1.11.1. (Or Spawn the docker daemon from systemd. Or do not use -v /dev:/dev) |
|
| β #20836 | Daemon hangs up after frequent docker run |
π± High | π± Hard | Daemon bug | Use Docker 1.11.1 |
Non-bug issues:
docker psis sometimes slow due to lock: #19328