Hi folks,
my LXCs don't start anymore:
# lxc-start -P /data1/lxc -n jessie1 -F
lxc-start: cgroups/cgfs.c: do_setup_cgroup_limits: 2037 No such file or
directory - Error setting devices.deny to a for jessie1
lxc-start: start.c: lxc_spawn: 1236 Failed to setup the devices cgroup for
container "jessie1".
lxc-start: start.c: __lxc_start: 1346 Failed to spawn container "jessie1".
lxc-start: tools/lxc_start.c: main: 366 The container failed to start.
lxc-start: tools/lxc_start.c: main: 370 Additional information can be obtained
by setting the --logfile and --logpriority options.
All lights are on green:
# lxc-checkconfig
Kernel configuration not found at /proc/config.gz; searching...
Kernel configuration found at /boot/config-4.9.0-0.bpo.2-amd64
--- Namespaces ---
Namespaces: enabled
Utsname namespace: enabled
Ipc namespace: enabled
Pid namespace: enabled
User namespace: enabled
Network namespace: enabled
--- Control groups ---
Cgroup: enabled
Cgroup clone_children flag: enabled
Cgroup device: enabled
Cgroup sched: enabled
Cgroup cpu account: enabled
Cgroup memory controller: enabled
Cgroup cpuset: enabled
--- Misc ---
Veth pair device: enabled
Macvlan: enabled
Vlan: enabled
Bridges: enabled
Advanced netfilter: enabled
CONFIG_NF_NAT_IPV4: enabled
CONFIG_NF_NAT_IPV6: enabled
CONFIG_IP_NF_TARGET_MASQUERADE: enabled
CONFIG_IP6_NF_TARGET_MASQUERADE: enabled
CONFIG_NETFILTER_XT_TARGET_CHECKSUM: enabled
FUSE (for use with lxcfs): enabled
--- Checkpoint/Restore ---
checkpoint restore: enabled
CONFIG_FHANDLE: enabled
CONFIG_EVENTFD: enabled
CONFIG_EPOLL: enabled
CONFIG_UNIX_DIAG: enabled
CONFIG_INET_DIAG: enabled
CONFIG_PACKET_DIAG: enabled
CONFIG_NETLINK_DIAG: enabled
File capabilities: enabled
Note : Before booting a new kernel, you can check its configuration
usage : CONFIG=/path/to/config /usr/bin/lxc-checkconfig
lxc is version 1:2.0.7-2~bpo8+1 backported to Debian 8.
Detailed log is attached, of course. Every helpful comment is highly
appreciated.
Harri
lxc-start 20170511140840.893 INFO lxc_start_ui - tools/lxc_start.c:main:275 - using rcfile /data1/lxc/jessie1/config
lxc-start 20170511140840.893 WARN lxc_confile - confile.c:config_pivotdir:1910 - lxc.pivotdir is ignored. It will soon become an error.
lxc-start 20170511140840.893 WARN lxc_start - start.c:lxc_check_inherited:238 - Inherited fd: 3.
lxc-start 20170511140840.893 INFO lxc_lsm - lsm/lsm.c:lsm_init:48 - LSM security driver nop
lxc-start 20170511140840.893 INFO lxc_seccomp - seccomp.c:parse_config_v2:402 - processing: .reject_force_umount # comment this to allow umount -f; not recommended.
lxc-start 20170511140840.893 INFO lxc_seccomp - seccomp.c:parse_config_v2:567 - Adding native rule for reject_force_umount action 0.
lxc-start 20170511140840.893 INFO lxc_seccomp - seccomp.c:do_resolve_add_rule:251 - Setting Seccomp rule to reject force umounts.
lxc-start 20170511140840.893 INFO lxc_seccomp - seccomp.c:parse_config_v2:570 - Adding compat rule for reject_force_umount action 0.
lxc-start 20170511140840.893 INFO lxc_seccomp - seccomp.c:do_resolve_add_rule:251 - Setting Seccomp rule to reject force umounts.
lxc-start 20170511140840.893 INFO lxc_seccomp - seccomp.c:parse_config_v2:402 - processing: .[all].
lxc-start 20170511140840.893 INFO lxc_seccomp - seccomp.c:parse_config_v2:402 - processing: .kexec_load errno 1.
lxc-start 20170511140840.893 INFO lxc_seccomp - seccomp.c:parse_config_v2:567 - Adding native rule for kexec_load action 327681.
lxc-start 20170511140840.893 INFO lxc_seccomp - seccomp.c:parse_config_v2:570 - Adding compat rule for kexec_load action 327681.
lxc-start 20170511140840.893 INFO lxc_seccomp - seccomp.c:parse_config_v2:402 - processing: .open_by_handle_at errno 1.
lxc-start 20170511140840.893 INFO lxc_seccomp - seccomp.c:parse_config_v2:567 - Adding native rule for open_by_handle_at action 327681.
lxc-start 20170511140840.893 INFO lxc_seccomp - seccomp.c:parse_config_v2:570 - Adding compat rule for open_by_handle_at action 327681.
lxc-start 20170511140840.894 INFO lxc_seccomp - seccomp.c:parse_config_v2:402 - processing: .init_module errno 1.
lxc-start 20170511140840.894 INFO lxc_seccomp - seccomp.c:parse_config_v2:567 - Adding native rule for init_module action 327681.
lxc-start 20170511140840.894 INFO lxc_seccomp - seccomp.c:parse_config_v2:570 - Adding compat rule for init_module action 327681.
lxc-start 20170511140840.894 INFO lxc_seccomp - seccomp.c:parse_config_v2:402 - processing: .finit_module errno 1.
lxc-start 20170511140840.894 INFO lxc_seccomp - seccomp.c:parse_config_v2:567 - Adding native rule for finit_module action 327681.
lxc-start 20170511140840.894 WARN lxc_seccomp - seccomp.c:do_resolve_add_rule:270 - Seccomp: got negative for syscall: -10085: finit_module.
lxc-start 20170511140840.894 WARN lxc_seccomp - seccomp.c:do_resolve_add_rule:271 - This syscall will NOT be blacklisted.
lxc-start 20170511140840.894 INFO lxc_seccomp - seccomp.c:parse_config_v2:570 - Adding compat rule for finit_module action 327681.
lxc-start 20170511140840.894 WARN lxc_seccomp - seccomp.c:do_resolve_add_rule:270 - Seccomp: got negative for syscall: -10085: finit_module.
lxc-start 20170511140840.894 WARN lxc_seccomp - seccomp.c:do_resolve_add_rule:271 - This syscall will NOT be blacklisted.
lxc-start 20170511140840.894 INFO lxc_seccomp - seccomp.c:parse_config_v2:402 - processing: .delete_module errno 1.
lxc-start 20170511140840.894 INFO lxc_seccomp - seccomp.c:parse_config_v2:567 - Adding native rule for delete_module action 327681.
lxc-start 20170511140840.894 INFO lxc_seccomp - seccomp.c:parse_config_v2:570 - Adding compat rule for delete_module action 327681.
lxc-start 20170511140840.894 INFO lxc_seccomp - seccomp.c:parse_config_v2:580 - Merging in the compat Seccomp ctx into the main one.
lxc-start 20170511140840.894 WARN lxc_monitor - monitor.c:lxc_monitor_fifo_send:111 - Failed to open fifo to send message: No such file or directory.
lxc-start 20170511140840.894 DEBUG lxc_start - start.c:setup_signal_fd:273 - Set SIGCHLD handler with file descriptor: 6.
lxc-start 20170511140840.894 DEBUG console - console.c:lxc_console_peer_default:430 - opening /dev/tty for console peer
lxc-start 20170511140840.894 DEBUG console - console.c:lxc_console_peer_default:436 - using '/dev/tty' as console
lxc-start 20170511140840.894 DEBUG console - console.c:lxc_console_sigwinch_init:144 - 4405 got SIGWINCH fd 10
lxc-start 20170511140840.894 DEBUG console - console.c:lxc_console_winsz:71 - set winsz dstfd:7 cols:120 rows:76
lxc-start 20170511140840.894 INFO lxc_start - start.c:lxc_init:475 - Container "jessie1" is initialized.
lxc-start 20170511140840.895 DEBUG lxc_start - start.c:__lxc_start:1317 - Not dropping CAP_SYS_BOOT or watching utmp.
lxc-start 20170511140840.897 INFO lxc_conf - conf.c:instantiate_veth:2647 - Retrieved mtu 1500 from br0
lxc-start 20170511140840.897 INFO lxc_conf - conf.c:instantiate_veth:2672 - Attached 'vethGBPX99': to the bridge 'br0':
lxc-start 20170511140840.897 DEBUG lxc_conf - conf.c:instantiate_veth:2689 - instantiated veth 'vethGBPX99/veth59JIW0', index is '16'
lxc-start 20170511140840.899 INFO lxc_conf - conf.c:instantiate_veth:2647 - Retrieved mtu 1500 from br1
lxc-start 20170511140840.900 INFO lxc_conf - conf.c:instantiate_veth:2672 - Attached 'veth88WXF0': to the bridge 'br1':
lxc-start 20170511140840.900 DEBUG lxc_conf - conf.c:instantiate_veth:2689 - instantiated veth 'veth88WXF0/vethTIN4QF', index is '18'
lxc-start 20170511140840.900 INFO lxc_cgroup - cgroups/cgroup.c:cgroup_init:68 - cgroup driver cgroupfs initing for jessie1
lxc-start 20170511140840.901 INFO lxc_start - start.c:lxc_spawn:1154 - Cloned CLONE_NEWNS.
lxc-start 20170511140840.901 INFO lxc_start - start.c:lxc_spawn:1154 - Cloned CLONE_NEWPID.
lxc-start 20170511140840.901 INFO lxc_start - start.c:lxc_spawn:1154 - Cloned CLONE_NEWUTS.
lxc-start 20170511140840.901 INFO lxc_start - start.c:lxc_spawn:1154 - Cloned CLONE_NEWIPC.
lxc-start 20170511140840.901 INFO lxc_start - start.c:lxc_spawn:1154 - Cloned CLONE_NEWNET.
lxc-start 20170511140840.901 DEBUG lxc_cgfs - cgroups/cgfs.c:do_setup_cgroup_limits:2042 - cgroup 'devices.deny' set to 'a'
lxc-start 20170511140840.901 DEBUG lxc_cgfs - cgroups/cgfs.c:do_setup_cgroup_limits:2042 - cgroup 'devices.allow' set to 'c *:* m'
lxc-start 20170511140840.901 DEBUG lxc_cgfs - cgroups/cgfs.c:do_setup_cgroup_limits:2042 - cgroup 'devices.allow' set to 'b *:* m'
lxc-start 20170511140840.901 DEBUG lxc_cgfs - cgroups/cgfs.c:do_setup_cgroup_limits:2042 - cgroup 'devices.allow' set to 'c 1:3 rwm'
lxc-start 20170511140840.901 DEBUG lxc_cgfs - cgroups/cgfs.c:do_setup_cgroup_limits:2042 - cgroup 'devices.allow' set to 'c 1:5 rwm'
lxc-start 20170511140840.901 DEBUG lxc_cgfs - cgroups/cgfs.c:do_setup_cgroup_limits:2042 - cgroup 'devices.allow' set to 'c 1:7 rwm'
lxc-start 20170511140840.901 DEBUG lxc_cgfs - cgroups/cgfs.c:do_setup_cgroup_limits:2042 - cgroup 'devices.allow' set to 'c 5:0 rwm'
lxc-start 20170511140840.901 DEBUG lxc_cgfs - cgroups/cgfs.c:do_setup_cgroup_limits:2042 - cgroup 'devices.allow' set to 'c 5:1 rwm'
lxc-start 20170511140840.901 DEBUG lxc_cgfs - cgroups/cgfs.c:do_setup_cgroup_limits:2042 - cgroup 'devices.allow' set to 'c 5:2 rwm'
lxc-start 20170511140840.901 DEBUG lxc_cgfs - cgroups/cgfs.c:do_setup_cgroup_limits:2042 - cgroup 'devices.allow' set to 'c 1:8 rwm'
lxc-start 20170511140840.901 DEBUG lxc_cgfs - cgroups/cgfs.c:do_setup_cgroup_limits:2042 - cgroup 'devices.allow' set to 'c 1:9 rwm'
lxc-start 20170511140840.901 DEBUG lxc_cgfs - cgroups/cgfs.c:do_setup_cgroup_limits:2042 - cgroup 'devices.allow' set to 'c 136:* rwm'
lxc-start 20170511140840.901 DEBUG lxc_cgfs - cgroups/cgfs.c:do_setup_cgroup_limits:2042 - cgroup 'devices.allow' set to 'c 10:229 rwm'
lxc-start 20170511140840.901 DEBUG lxc_cgfs - cgroups/cgfs.c:do_setup_cgroup_limits:2042 - cgroup 'devices.allow' set to 'c 254:0 rm'
lxc-start 20170511140840.901 DEBUG lxc_cgfs - cgroups/cgfs.c:do_setup_cgroup_limits:2042 - cgroup 'devices.allow' set to 'c 10:200 rwm'
lxc-start 20170511140840.901 DEBUG lxc_cgfs - cgroups/cgfs.c:do_setup_cgroup_limits:2042 - cgroup 'devices.allow' set to 'c 10:228 rwm'
lxc-start 20170511140840.901 DEBUG lxc_cgfs - cgroups/cgfs.c:do_setup_cgroup_limits:2042 - cgroup 'devices.allow' set to 'c 10:232 rwm'
lxc-start 20170511140840.901 INFO lxc_cgfs - cgroups/cgfs.c:do_setup_cgroup_limits:2046 - cgroup has been setup
lxc-start 20170511140840.930 DEBUG lxc_conf - conf.c:lxc_assign_network:3185 - move 'veth59JIW0'/'(null)' to '4419': .
lxc-start 20170511140840.966 DEBUG lxc_conf - conf.c:lxc_assign_network:3185 - move 'vethTIN4QF'/'(null)' to '4419': .
lxc-start 20170511140840.966 DEBUG lxc_conf - conf.c:setup_rootfs:1273 - mounted '/data1/lxc/jessie1/rootfs' on '/usr/lib/x86_64-linux-gnu/lxc/rootfs'
lxc-start 20170511140840.966 INFO lxc_conf - conf.c:setup_utsname:901 - 'jessie1' hostname has been setup
lxc-start 20170511140840.998 DEBUG lxc_conf - conf.c:setup_hw_addr:2225 - mac address '00:16:fd:44:00:13' on 'eth0' has been setup
lxc-start 20170511140840.998 DEBUG lxc_conf - conf.c:setup_netdev:2452 - 'eth0' has been setup
lxc-start 20170511140841.225 DEBUG lxc_conf - conf.c:setup_hw_addr:2225 - mac address '00:16:f4:0a:b5:7f' on 'eth1' has been setup
lxc-start 20170511140841.226 DEBUG lxc_conf - conf.c:setup_netdev:2452 - 'eth1' has been setup
lxc-start 20170511140841.226 INFO lxc_conf - conf.c:setup_network:2473 - network has been setup
lxc-start 20170511140841.226 INFO lxc_conf - conf.c:mount_autodev:1130 - Mounting container /dev
lxc-start 20170511140841.227 INFO lxc_conf - conf.c:mount_autodev:1153 - Mounted tmpfs onto /usr/lib/x86_64-linux-gnu/lxc/rootfs/dev
lxc-start 20170511140841.227 INFO lxc_conf - conf.c:mount_autodev:1171 - Mounted container /dev
lxc-start 20170511140841.230 INFO lxc_conf - conf.c:mount_file_entries:1985 - mount points have been setup
lxc-start 20170511140841.231 DEBUG lxc_conf - conf.c:mount_entry:1715 - remounting /sys/fs/fuse/connections on /usr/lib/x86_64-linux-gnu/lxc/rootfs/sys/fs/fuse/connections to respect bind or remount options
lxc-start 20170511140841.231 DEBUG lxc_conf - conf.c:mount_entry:1730 - (at remount) flags for /sys/fs/fuse/connections was 4096, required extra flags are 0
lxc-start 20170511140841.231 DEBUG lxc_conf - conf.c:mount_entry:1739 - mountflags already was 4096, skipping remount
lxc-start 20170511140841.231 DEBUG lxc_conf - conf.c:mount_entry:1765 - mounted '/sys/fs/fuse/connections' on '/usr/lib/x86_64-linux-gnu/lxc/rootfs/sys/fs/fuse/connections', type 'none'
lxc-start 20170511140841.231 INFO lxc_conf - conf.c:mount_file_entries:1985 - mount points have been setup
lxc-start 20170511140841.231 INFO lxc_conf - conf.c:run_script_argv:424 - Executing script "/usr/share/lxcfs/lxc.mount.hook" for container "jessie1", config section "lxc".
lxc-start 20170511140841.483 INFO lxc_conf - conf.c:fill_autodev:1199 - Creating initial consoles under container /dev
lxc-start 20170511140841.483 INFO lxc_conf - conf.c:fill_autodev:1210 - Populating container /dev
lxc-start 20170511140841.483 INFO lxc_conf - conf.c:fill_autodev:1247 - Populated container /dev
lxc-start 20170511140841.484 INFO lxc_conf - conf.c:setup_dev_console:1495 - console has been setup
lxc-start 20170511140841.484 INFO lxc_utils - utils.c:mount_proc_if_needed:1785 - I am 1, /proc/self points to '1'
lxc-start 20170511140841.705 DEBUG lxc_conf - conf.c:setup_rootfs_pivot_root:1108 - pivot_root syscall to '/usr/lib/x86_64-linux-gnu/lxc/rootfs' successful
lxc-start 20170511140841.707 DEBUG lxc_conf - conf.c:lxc_create_tty:3429 - allocated pty '/dev/pts/0' (12/15)
lxc-start 20170511140841.707 DEBUG lxc_conf - conf.c:lxc_create_tty:3429 - allocated pty '/dev/pts/1' (16/17)
lxc-start 20170511140841.707 DEBUG lxc_conf - conf.c:lxc_create_tty:3429 - allocated pty '/dev/pts/2' (18/19)
lxc-start 20170511140841.708 DEBUG lxc_conf - conf.c:lxc_create_tty:3429 - allocated pty '/dev/pts/3' (20/21)
lxc-start 20170511140841.708 INFO lxc_conf - conf.c:lxc_create_tty:3440 - tty's configured
lxc-start 20170511140841.709 INFO lxc_conf - conf.c:setup_tty:1053 - 4 tty(s) has been setup
lxc-start 20170511140841.709 INFO lxc_conf - conf.c:setup_personality:1451 - set personality to '0x0'
lxc-start 20170511140841.709 DEBUG lxc_conf - conf.c:setup_caps:2135 - drop capability 'mac_admin' (33)
lxc-start 20170511140841.709 DEBUG lxc_conf - conf.c:setup_caps:2135 - drop capability 'mac_override' (32)
lxc-start 20170511140841.709 DEBUG lxc_conf - conf.c:setup_caps:2135 - drop capability 'sys_time' (25)
lxc-start 20170511140841.709 DEBUG lxc_conf - conf.c:setup_caps:2135 - drop capability 'sys_module' (16)
lxc-start 20170511140841.709 DEBUG lxc_conf - conf.c:setup_caps:2135 - drop capability 'sys_rawio' (17)
lxc-start 20170511140841.709 DEBUG lxc_conf - conf.c:setup_caps:2144 - capabilities have been setup
lxc-start 20170511140841.709 NOTICE lxc_conf - conf.c:lxc_setup:3977 - 'jessie1' is setup.
lxc-start 20170511140841.710 ERROR lxc_cgfs - cgroups/cgfs.c:do_setup_cgroup_limits:2037 - No such file or directory - Error setting devices.deny to a for jessie1
lxc-start 20170511140841.710 ERROR lxc_start - start.c:lxc_spawn:1236 - Failed to setup the devices cgroup for container "jessie1".
lxc-start 20170511140841.711 INFO lxc_conf - conf.c:lxc_delete_network:3005 - Interface "(null)" with index 16 already deleted or existing in different network namespace.
lxc-start 20170511140841.134 INFO lxc_conf - conf.c:lxc_delete_network:3040 - Removed interface "vethGBPX99" from host.
lxc-start 20170511140841.134 INFO lxc_conf - conf.c:lxc_delete_network:3005 - Interface "(null)" with index 18 already deleted or existing in different network namespace.
lxc-start 20170511140841.214 INFO lxc_conf - conf.c:lxc_delete_network:3040 - Removed interface "veth88WXF0" from host.
lxc-start 20170511140841.214 WARN lxc_monitor - monitor.c:lxc_monitor_fifo_send:111 - Failed to open fifo to send message: No such file or directory.
lxc-start 20170511140841.214 ERROR lxc_start - start.c:__lxc_start:1346 - Failed to spawn container "jessie1".
lxc-start 20170511140841.215 WARN lxc_monitor - monitor.c:lxc_monitor_fifo_send:111 - Failed to open fifo to send message: No such file or directory.
lxc-start 20170511140841.250 WARN lxc_monitor - monitor.c:lxc_monitor_fifo_send:111 - Failed to open fifo to send message: No such file or directory.
lxc-start 20170511140841.250 INFO lxc_conf - conf.c:run_script_argv:424 - Executing script "/usr/share/lxcfs/lxc.reboot.hook" for container "jessie1", config section "lxc".
lxc-start 20170511140841.754 ERROR lxc_start_ui - tools/lxc_start.c:main:366 - The container failed to start.
lxc-start 20170511140841.754 ERROR lxc_start_ui - tools/lxc_start.c:main:370 - Additional information can be obtained by setting the --logfile and --logpriority options.
_______________________________________________
lxc-users mailing list
[email protected]
http://lists.linuxcontainers.org/listinfo/lxc-users
