Hello,
I followed the debian documentation for lxc,(LXC - Debian Wiki) but I still have a issue. The containers install correctly but they don’t start.
I don’t know what is wrong on my lxc config.
Can you help me to troubleshooting the issue.
Thanks
lxc-checkconfig
LXC version 5.0.1
Kernel configuration not found at /proc/config.gz; searching...
Kernel configuration found at /boot/config-5.18.0-3-amd64
--- Namespaces ---
Namespaces: enabled
Utsname namespace: enabled
Ipc namespace: enabled
Pid namespace: enabled
User namespace: enabled
Network namespace: enabled
--- Control groups ---
Cgroups: enabled
Cgroup namespace: enabled
Cgroup v1 mount points:
Cgroup v2 mount points:
/sys/fs/cgroup
Cgroup v1 systemd controller: missing
Cgroup v1 freezer controller: missing
Cgroup ns_cgroup: required
Cgroup device: enabled
Cgroup sched: enabled
Cgroup cpu account: enabled
Cgroup memory controller: enabled
Cgroup cpuset: enabled
--- Misc ---
Veth pair device: enabled, not loaded
Macvlan: enabled, not loaded
Vlan: enabled, not loaded
Bridges: enabled, loaded
Advanced netfilter: enabled, loaded
CONFIG_IP_NF_TARGET_MASQUERADE: enabled, not loaded
CONFIG_IP6_NF_TARGET_MASQUERADE: enabled, not loaded
CONFIG_NETFILTER_XT_TARGET_CHECKSUM: enabled, loaded
CONFIG_NETFILTER_XT_MATCH_COMMENT: enabled, not loaded
FUSE (for use with lxcfs): enabled, loaded
--- Checkpoint/Restore ---
checkpoint restore: enabled
CONFIG_FHANDLE: enabled
CONFIG_EVENTFD: enabled
CONFIG_EPOLL: enabled
CONFIG_UNIX_DIAG: enabled
CONFIG_INET_DIAG: enabled
CONFIG_PACKET_DIAG: enabled
CONFIG_NETLINK_DIAG: enabled
File capabilities:
Note : Before booting a new kernel, you can check its configuration
usage : CONFIG=/path/to/config /bin/lxc-checkconfig
My error log…
lxc-start -n centos9 -l trace -o /dev/stderr
lxc-start centos9 20220815122746.282 INFO confile - ../src/lxc/confile.c:set_config_idmaps:2273 - Read uid map: type u nsid 0 hostid 100000 range 65536
lxc-start centos9 20220815122746.282 INFO confile - ../src/lxc/confile.c:set_config_idmaps:2273 - Read uid map: type g nsid 0 hostid 100000 range 65536
lxc-start centos9 20220815122746.282 TRACE commands - ../src/lxc/commands.c:lxc_cmd:514 - Connection refused - Command "get_init_pid" failed to connect command socket
lxc-start centos9 20220815122746.282 TRACE commands - ../src/lxc/commands.c:lxc_cmd:514 - Connection refused - Command "get_state" failed to connect command socket
lxc-start centos9 20220815122746.282 TRACE start - ../src/lxc/start.c:lxc_init_handler:738 - Created anonymous pair {4,5} of unix sockets
lxc-start centos9 20220815122746.282 TRACE commands - ../src/lxc/commands.c:lxc_server_init:2129 - Created abstract unix socket "/home/olivier/.local/share/lxc/centos9/command"
lxc-start centos9 20220815122746.282 TRACE start - ../src/lxc/start.c:lxc_init_handler:754 - Unix domain socket 6 for command server is ready
lxc-start centos9 20220815122746.282 INFO lxccontainer - ../src/lxc/lxccontainer.c:do_lxcapi_start:997 - Set process title to [lxc monitor] /home/olivier/.local/share/lxc centos9
lxc-start centos9 20220815122746.283 DEBUG lxccontainer - ../src/lxc/lxccontainer.c:wait_on_daemonized_start:858 - First child 30961 exited
lxc-start centos9 20220815122746.283 TRACE start - ../src/lxc/start.c:lxc_start:2221 - Doing lxc_start
lxc-start centos9 20220815122746.283 WARN apparmor - ../src/lxc/lsm/apparmor.c:lsm_apparmor_ops_init:1275 - Per-container AppArmor profiles are disabled because the mac_admin capability is missing
lxc-start centos9 20220815122746.283 INFO lsm - ../src/lxc/lsm/lsm.c:lsm_init_static:38 - Initialized LSM security driver AppArmor
lxc-start centos9 20220815122746.283 TRACE start - ../src/lxc/start.c:lxc_init:778 - Initialized LSM
lxc-start centos9 20220815122746.283 TRACE start - ../src/lxc/start.c:lxc_serve_state_clients:483 - Set container state to STARTING
lxc-start centos9 20220815122746.283 TRACE start - ../src/lxc/start.c:lxc_serve_state_clients:486 - No state clients registered
lxc-start centos9 20220815122746.283 TRACE start - ../src/lxc/start.c:lxc_init:784 - Set container state to "STARTING"
lxc-start centos9 20220815122746.283 TRACE start - ../src/lxc/start.c:lxc_init:840 - Set environment variables
lxc-start centos9 20220815122746.283 TRACE start - ../src/lxc/start.c:lxc_init:845 - Ran pre-start hooks
lxc-start centos9 20220815122746.283 TRACE start - ../src/lxc/start.c:setup_signal_fd:370 - Created signal file descriptor 8
lxc-start centos9 20220815122746.283 TRACE start - ../src/lxc/start.c:lxc_init:858 - Set up signal fd
lxc-start centos9 20220815122746.283 TRACE cgfsng - ../src/lxc/cgroups/cgfsng.c:unpriv_systemd_create_scope:1284 - unpriv_systemd_create_scope: no systemd support
lxc-start centos9 20220815122746.283 INFO cgfsng - ../src/lxc/cgroups/cgfsng.c:unified_hierarchy_delegated:3459 - Permission denied - The cgroup.threads file is not writable, skipping unified hierarchy
lxc-start centos9 20220815122746.283 TRACE cgroup - ../src/lxc/cgroups/cgroup.c:cgroup_init:40 - Initialized cgroup driver cgfsng
lxc-start centos9 20220815122746.283 TRACE cgroup - ../src/lxc/cgroups/cgroup.c:cgroup_init:47 - Unified cgroup layout
lxc-start centos9 20220815122746.283 TRACE start - ../src/lxc/start.c:lxc_init:865 - Initialized cgroup driver
lxc-start centos9 20220815122746.283 DEBUG seccomp - ../src/lxc/seccomp.c:parse_config_v2:656 - Host native arch is [3221225534]
lxc-start centos9 20220815122746.283 TRACE seccomp - ../src/lxc/seccomp.c:get_new_ctx:470 - Added arch 2 to main seccomp context
lxc-start centos9 20220815122746.283 TRACE seccomp - ../src/lxc/seccomp.c:get_new_ctx:478 - Removed native arch from main seccomp context
lxc-start centos9 20220815122746.283 TRACE seccomp - ../src/lxc/seccomp.c:get_new_ctx:470 - Added arch 3 to main seccomp context
lxc-start centos9 20220815122746.283 TRACE seccomp - ../src/lxc/seccomp.c:get_new_ctx:478 - Removed native arch from main seccomp context
lxc-start centos9 20220815122746.283 TRACE seccomp - ../src/lxc/seccomp.c:get_new_ctx:483 - Arch 4 already present in main seccomp context
lxc-start centos9 20220815122746.283 INFO seccomp - ../src/lxc/seccomp.c:parse_config_v2:807 - Processing "reject_force_umount # comment this to allow umount -f; not recommended"
lxc-start centos9 20220815122746.283 INFO seccomp - ../src/lxc/seccomp.c:do_resolve_add_rule:524 - Set seccomp rule to reject force umounts
lxc-start centos9 20220815122746.283 INFO seccomp - ../src/lxc/seccomp.c:do_resolve_add_rule:524 - Set seccomp rule to reject force umounts
lxc-start centos9 20220815122746.283 INFO seccomp - ../src/lxc/seccomp.c:do_resolve_add_rule:524 - Set seccomp rule to reject force umounts
lxc-start centos9 20220815122746.283 INFO seccomp - ../src/lxc/seccomp.c:parse_config_v2:807 - Processing "[all]"
lxc-start centos9 20220815122746.283 INFO seccomp - ../src/lxc/seccomp.c:parse_config_v2:807 - Processing "kexec_load errno 1"
lxc-start centos9 20220815122746.283 INFO seccomp - ../src/lxc/seccomp.c:do_resolve_add_rule:564 - Adding native rule for syscall[246:kexec_load] action[327681:errno] arch[0]
lxc-start centos9 20220815122746.283 INFO seccomp - ../src/lxc/seccomp.c:do_resolve_add_rule:564 - Adding compat rule for syscall[246:kexec_load] action[327681:errno] arch[1073741827]
lxc-start centos9 20220815122746.283 INFO seccomp - ../src/lxc/seccomp.c:do_resolve_add_rule:564 - Adding compat rule for syscall[246:kexec_load] action[327681:errno] arch[1073741886]
lxc-start centos9 20220815122746.283 INFO seccomp - ../src/lxc/seccomp.c:parse_config_v2:807 - Processing "open_by_handle_at errno 1"
lxc-start centos9 20220815122746.283 INFO seccomp - ../src/lxc/seccomp.c:do_resolve_add_rule:564 - Adding native rule for syscall[304:open_by_handle_at] action[327681:errno] arch[0]
lxc-start centos9 20220815122746.283 INFO seccomp - ../src/lxc/seccomp.c:do_resolve_add_rule:564 - Adding compat rule for syscall[304:open_by_handle_at] action[327681:errno] arch[1073741827]
lxc-start centos9 20220815122746.283 INFO seccomp - ../src/lxc/seccomp.c:do_resolve_add_rule:564 - Adding compat rule for syscall[304:open_by_handle_at] action[327681:errno] arch[1073741886]
lxc-start centos9 20220815122746.283 INFO seccomp - ../src/lxc/seccomp.c:parse_config_v2:807 - Processing "init_module errno 1"
lxc-start centos9 20220815122746.283 INFO seccomp - ../src/lxc/seccomp.c:do_resolve_add_rule:564 - Adding native rule for syscall[175:init_module] action[327681:errno] arch[0]
lxc-start centos9 20220815122746.283 INFO seccomp - ../src/lxc/seccomp.c:do_resolve_add_rule:564 - Adding compat rule for syscall[175:init_module] action[327681:errno] arch[1073741827]
lxc-start centos9 20220815122746.283 INFO seccomp - ../src/lxc/seccomp.c:do_resolve_add_rule:564 - Adding compat rule for syscall[175:init_module] action[327681:errno] arch[1073741886]
lxc-start centos9 20220815122746.283 INFO seccomp - ../src/lxc/seccomp.c:parse_config_v2:807 - Processing "finit_module errno 1"
lxc-start centos9 20220815122746.283 INFO seccomp - ../src/lxc/seccomp.c:do_resolve_add_rule:564 - Adding native rule for syscall[313:finit_module] action[327681:errno] arch[0]
lxc-start centos9 20220815122746.283 INFO seccomp - ../src/lxc/seccomp.c:do_resolve_add_rule:564 - Adding compat rule for syscall[313:finit_module] action[327681:errno] arch[1073741827]
lxc-start centos9 20220815122746.283 INFO seccomp - ../src/lxc/seccomp.c:do_resolve_add_rule:564 - Adding compat rule for syscall[313:finit_module] action[327681:errno] arch[1073741886]
lxc-start centos9 20220815122746.283 INFO seccomp - ../src/lxc/seccomp.c:parse_config_v2:807 - Processing "delete_module errno 1"
lxc-start centos9 20220815122746.283 INFO seccomp - ../src/lxc/seccomp.c:do_resolve_add_rule:564 - Adding native rule for syscall[176:delete_module] action[327681:errno] arch[0]
lxc-start centos9 20220815122746.283 INFO seccomp - ../src/lxc/seccomp.c:do_resolve_add_rule:564 - Adding compat rule for syscall[176:delete_module] action[327681:errno] arch[1073741827]
lxc-start centos9 20220815122746.283 INFO seccomp - ../src/lxc/seccomp.c:do_resolve_add_rule:564 - Adding compat rule for syscall[176:delete_module] action[327681:errno] arch[1073741886]
lxc-start centos9 20220815122746.283 INFO seccomp - ../src/lxc/seccomp.c:parse_config_v2:1017 - Merging compat seccomp contexts into main context
lxc-start centos9 20220815122746.283 TRACE seccomp - ../src/lxc/seccomp.c:parse_config_v2:1027 - Merged first compat seccomp context into main context
lxc-start centos9 20220815122746.283 TRACE seccomp - ../src/lxc/seccomp.c:parse_config_v2:1043 - Merged second compat seccomp context into main context
lxc-start centos9 20220815122746.283 TRACE start - ../src/lxc/start.c:lxc_init:872 - Read seccomp policy
lxc-start centos9 20220815122746.283 TRACE start - ../src/lxc/start.c:lxc_init:879 - Initialized LSM
lxc-start centos9 20220815122746.283 INFO start - ../src/lxc/start.c:lxc_init:881 - Container "centos9" is initialized
lxc-start centos9 20220815122746.283 DEBUG storage - ../src/lxc/storage/storage.c:get_storage_by_name:209 - Detected rootfs type "dir"
lxc-start centos9 20220815122746.283 TRACE conf - ../src/lxc/conf.c:lxc_rootfs_init:555 - Not pinning because container runs in user namespace
lxc-start centos9 20220815122746.284 TRACE sync - ../src/lxc/sync.c:lxc_sync_init:139 - Initialized synchronization infrastructure
lxc-start centos9 20220815122746.284 TRACE start - ../src/lxc/start.c:lxc_spawn:1742 - Cloned child process 30963
lxc-start centos9 20220815122746.284 TRACE start - ../src/lxc/start.c:core_scheduling:1560 - No new core scheduling domain requested
lxc-start centos9 20220815122746.284 TRACE utils - ../src/lxc/utils.c:lxc_can_use_pidfd:1822 - Kernel supports pidfds
lxc-start centos9 20220815122746.284 INFO start - ../src/lxc/start.c:lxc_spawn:1762 - Cloned CLONE_NEWUSER
lxc-start centos9 20220815122746.284 INFO start - ../src/lxc/start.c:lxc_spawn:1762 - Cloned CLONE_NEWNS
lxc-start centos9 20220815122746.284 INFO start - ../src/lxc/start.c:lxc_spawn:1762 - Cloned CLONE_NEWPID
lxc-start centos9 20220815122746.284 INFO start - ../src/lxc/start.c:lxc_spawn:1762 - Cloned CLONE_NEWUTS
lxc-start centos9 20220815122746.284 INFO start - ../src/lxc/start.c:lxc_spawn:1762 - Cloned CLONE_NEWIPC
lxc-start centos9 20220815122746.284 INFO start - ../src/lxc/start.c:lxc_spawn:1762 - Cloned CLONE_NEWCGROUP
lxc-start centos9 20220815122746.284 DEBUG start - ../src/lxc/start.c:lxc_try_preserve_namespace:139 - Preserved user namespace via fd 15 and stashed path as user:/proc/30962/fd/15
lxc-start centos9 20220815122746.284 DEBUG start - ../src/lxc/start.c:lxc_try_preserve_namespace:139 - Preserved mnt namespace via fd 16 and stashed path as mnt:/proc/30962/fd/16
lxc-start centos9 20220815122746.284 DEBUG start - ../src/lxc/start.c:lxc_try_preserve_namespace:139 - Preserved pid namespace via fd 17 and stashed path as pid:/proc/30962/fd/17
lxc-start centos9 20220815122746.284 DEBUG start - ../src/lxc/start.c:lxc_try_preserve_namespace:139 - Preserved uts namespace via fd 18 and stashed path as uts:/proc/30962/fd/18
lxc-start centos9 20220815122746.284 DEBUG start - ../src/lxc/start.c:lxc_try_preserve_namespace:139 - Preserved ipc namespace via fd 19 and stashed path as ipc:/proc/30962/fd/19
lxc-start centos9 20220815122746.284 DEBUG start - ../src/lxc/start.c:lxc_try_preserve_namespace:139 - Preserved cgroup namespace via fd 20 and stashed path as cgroup:/proc/30962/fd/20
lxc-start centos9 20220815122746.284 DEBUG conf - ../src/lxc/conf.c:idmaptool_on_path_and_privileged:3520 - The binary "/bin/newuidmap" does have the setuid bit set
lxc-start centos9 20220815122746.284 DEBUG conf - ../src/lxc/conf.c:idmaptool_on_path_and_privileged:3520 - The binary "/bin/newgidmap" does have the setuid bit set
lxc-start centos9 20220815122746.284 DEBUG conf - ../src/lxc/conf.c:lxc_map_ids:3605 - Functional newuidmap and newgidmap binary found
lxc-start centos9 20220815122746.284 TRACE sync - ../src/lxc/sync.c:lxc_sync_wait_parent:110 - Child waiting for parent with sequence startup
lxc-start centos9 20220815122746.286 TRACE conf - ../src/lxc/conf.c:lxc_map_ids:3673 - newuidmap wrote mapping "newuidmap 30963 0 100000 65536"
lxc-start centos9 20220815122746.288 TRACE conf - ../src/lxc/conf.c:lxc_map_ids:3673 - newgidmap wrote mapping "newgidmap 30963 0 100000 65536"
lxc-start centos9 20220815122746.288 TRACE sync - ../src/lxc/sync.c:lxc_sync_barrier_child:97 - Parent waking child with sequence startup and waiting with sequence configure
lxc-start centos9 20220815122746.288 INFO start - ../src/lxc/start.c:do_start:1104 - Unshared CLONE_NEWNET
lxc-start centos9 20220815122746.288 NOTICE utils - ../src/lxc/utils.c:lxc_drop_groups:1368 - Dropped supplimentary groups
lxc-start centos9 20220815122746.288 NOTICE utils - ../src/lxc/utils.c:lxc_switch_uid_gid:1344 - Switched to gid 0
lxc-start centos9 20220815122746.288 NOTICE utils - ../src/lxc/utils.c:lxc_switch_uid_gid:1353 - Switched to uid 0
lxc-start centos9 20220815122746.288 TRACE sync - ../src/lxc/sync.c:lxc_sync_wake_parent:104 - Child waking parent with sequence configure
lxc-start centos9 20220815122746.288 TRACE sync - ../src/lxc/sync.c:lxc_sync_wait_parent:110 - Child waiting for parent with sequence post-configure
lxc-start centos9 20220815122746.288 DEBUG start - ../src/lxc/start.c:lxc_try_preserve_namespace:139 - Preserved net namespace via fd 7 and stashed path as net:/proc/30962/fd/7
lxc-start centos9 20220815122746.288 WARN start - ../src/lxc/start.c:lxc_spawn:1832 - Operation not permitted - Failed to allocate new network namespace id
lxc-start centos9 20220815122746.288 TRACE sync - ../src/lxc/sync.c:lxc_sync_wake_child:122 - Parent waking child with sequence post-configure
lxc-start centos9 20220815122746.288 TRACE sync - ../src/lxc/sync.c:lxc_sync_wait_child:116 - Parent waiting for child with sequence idmapped-mounts
lxc-start centos9 20220815122746.289 TRACE conf - ../src/lxc/conf.c:turn_into_dependent_mounts:3923 - Turned all mount table entries into dependent mount
lxc-start centos9 20220815122746.289 TRACE mount_utils - ../src/lxc/mount_utils.c:can_use_mount_api:582 - Kernel supports mount api
lxc-start centos9 20220815122746.289 TRACE mount_utils - ../src/lxc/mount_utils.c:can_use_bind_mounts:607 - Kernel supports bind mounts in the new mount api
lxc-start centos9 20220815122746.289 TRACE mount_utils - ../src/lxc/mount_utils.c:move_detached_mount:328 - Attach detached mount 17 to filesystem at 15
lxc-start centos9 20220815122746.289 TRACE dir - ../src/lxc/storage/dir.c:dir_mount:196 - Mounted "/home/olivier/.local/share/lxc/centos9/rootfs" onto "/usr/lib/x86_64-linux-gnu/lxc/rootfs"
lxc-start centos9 20220815122746.289 DEBUG conf - ../src/lxc/conf.c:lxc_mount_rootfs:1436 - Mounted rootfs "/home/olivier/.local/share/lxc/centos9/rootfs" onto "/usr/lib/x86_64-linux-gnu/lxc/rootfs" with options "(null)"
lxc-start centos9 20220815122746.289 TRACE conf - ../src/lxc/conf.c:lxc_mount_rootfs:1444 - Container uses separate rootfs. Opened container's rootfs
lxc-start centos9 20220815122746.289 INFO conf - ../src/lxc/conf.c:setup_utsname:875 - Set hostname to "centos9"
lxc-start centos9 20220815122746.289 INFO conf - ../src/lxc/conf.c:mount_autodev:1219 - Preparing "/dev"
lxc-start centos9 20220815122746.289 TRACE mount_utils - ../src/lxc/mount_utils.c:__fs_prepare:177 - Finished initializing new tmpfs filesystem context 16
lxc-start centos9 20220815122746.289 TRACE mount_utils - ../src/lxc/mount_utils.c:fs_set_property:215 - Set "mode" to "0755" on filesystem context 16
lxc-start centos9 20220815122746.289 TRACE mount_utils - ../src/lxc/mount_utils.c:fs_set_property:215 - Set "size" to "500000" on filesystem context 16
lxc-start centos9 20220815122746.289 TRACE mount_utils - ../src/lxc/mount_utils.c:fs_attach:266 - Mounted 18 onto 17
lxc-start centos9 20220815122746.289 INFO conf - ../src/lxc/conf.c:mount_autodev:1280 - Prepared "/dev"
lxc-start centos9 20220815122746.289 DEBUG conf - ../src/lxc/conf.c:lxc_mount_auto_mounts:735 - Invalid argument - Tried to ensure procfs is unmounted
lxc-start centos9 20220815122746.289 TRACE conf - ../src/lxc/conf.c:lxc_mount_auto_mounts:742 - Created procfs mountpoint under 15
lxc-start centos9 20220815122746.289 DEBUG conf - ../src/lxc/conf.c:lxc_mount_auto_mounts:758 - Invalid argument - Tried to ensure sysfs is unmounted
lxc-start centos9 20220815122746.289 TRACE conf - ../src/lxc/conf.c:lxc_mount_auto_mounts:765 - Created sysfs mountpoint under 15
lxc-start centos9 20220815122746.289 TRACE conf - ../src/lxc/conf.c:lxc_mount_auto_mounts:819 - Mounted automount "proc" on "/usr/lib/x86_64-linux-gnu/lxc/rootfs/proc" read-write with flags 14
lxc-start centos9 20220815122746.289 TRACE conf - ../src/lxc/conf.c:lxc_mount_auto_mounts:819 - Mounted automount "/usr/lib/x86_64-linux-gnu/lxc/rootfs/proc/sys/net" on "/usr/lib/x86_64-linux-gnu/lxc/rootfs/proc/tty" read-write with flags 4096
lxc-start centos9 20220815122746.289 TRACE conf - ../src/lxc/conf.c:lxc_mount_auto_mounts:819 - Mounted automount "/usr/lib/x86_64-linux-gnu/lxc/rootfs/proc/sys" on "/usr/lib/x86_64-linux-gnu/lxc/rootfs/proc/sys" read-write with flags 4096
lxc-start centos9 20220815122746.289 TRACE conf - ../src/lxc/conf.c:lxc_mount_auto_mounts:817 - Remounted automount "(null)" on "/usr/lib/x86_64-linux-gnu/lxc/rootfs/proc/sys" read-only with flags 4129
lxc-start centos9 20220815122746.289 TRACE conf - ../src/lxc/conf.c:lxc_mount_auto_mounts:819 - Mounted automount "/usr/lib/x86_64-linux-gnu/lxc/rootfs/proc/tty" on "/usr/lib/x86_64-linux-gnu/lxc/rootfs/proc/sys/net" read-write with flags 8192
lxc-start centos9 20220815122746.289 TRACE conf - ../src/lxc/conf.c:lxc_mount_auto_mounts:819 - Mounted automount "/usr/lib/x86_64-linux-gnu/lxc/rootfs/proc/sysrq-trigger" on "/usr/lib/x86_64-linux-gnu/lxc/rootfs/proc/sysrq-trigger" read-write with flags 4096
lxc-start centos9 20220815122746.289 TRACE conf - ../src/lxc/conf.c:lxc_mount_auto_mounts:817 - Remounted automount "(null)" on "/usr/lib/x86_64-linux-gnu/lxc/rootfs/proc/sysrq-trigger" read-only with flags 4129
lxc-start centos9 20220815122746.289 TRACE conf - ../src/lxc/conf.c:lxc_mount_auto_mounts:819 - Mounted automount "sysfs" on "/usr/lib/x86_64-linux-gnu/lxc/rootfs/sys" read-write with flags 0
lxc-start centos9 20220815122746.289 DEBUG conf - ../src/lxc/conf.c:mount_entry:2416 - Remounting "/sys/fs/fuse/connections" on "/usr/lib/x86_64-linux-gnu/lxc/rootfs/sys/fs/fuse/connections" to respect bind or remount options
lxc-start centos9 20220815122746.289 DEBUG conf - ../src/lxc/conf.c:mount_entry:2435 - Flags for "/sys/fs/fuse/connections" were 4110, required extra flags are 14
lxc-start centos9 20220815122746.289 DEBUG conf - ../src/lxc/conf.c:mount_entry:2479 - Mounted "/sys/fs/fuse/connections" on "/usr/lib/x86_64-linux-gnu/lxc/rootfs/sys/fs/fuse/connections" with filesystem type "none"
lxc-start centos9 20220815122746.289 TRACE sync - ../src/lxc/sync.c:lxc_sync_wake_parent:104 - Child waking parent with sequence idmapped-mounts
lxc-start centos9 20220815122746.289 TRACE conf - ../src/lxc/conf.c:lxc_idmapped_mounts_child:3100 - Finished setting up idmapped mounts
lxc-start centos9 20220815122746.289 TRACE conf - ../src/lxc/conf.c:lxc_idmapped_mounts_parent:4123 - Finished receiving idmapped mount file descriptors (-9 | -9) from child
lxc-start centos9 20220815122746.289 INFO conf - ../src/lxc/conf.c:run_script_argv:337 - Executing script "/usr/share/lxcfs/lxc.mount.hook" for container "centos9", config section "lxc"
lxc-start centos9 20220815122746.289 TRACE sync - ../src/lxc/sync.c:lxc_sync_wait_child:116 - Parent waiting for child with sequence cgroup-limits
lxc-start centos9 20220815122746.327 INFO conf - ../src/lxc/conf.c:lxc_fill_autodev:1317 - Populating "/dev"
lxc-start centos9 20220815122746.327 TRACE mount_utils - ../src/lxc/mount_utils.c:move_detached_mount:328 - Attach detached mount 18 to filesystem at 19
lxc-start centos9 20220815122746.327 DEBUG conf - ../src/lxc/conf.c:lxc_fill_autodev:1401 - Bind mounted host device 14(dev/full) to 16(full)
lxc-start centos9 20220815122746.327 TRACE mount_utils - ../src/lxc/mount_utils.c:move_detached_mount:328 - Attach detached mount 18 to filesystem at 19
lxc-start centos9 20220815122746.327 DEBUG conf - ../src/lxc/conf.c:lxc_fill_autodev:1401 - Bind mounted host device 14(dev/null) to 16(null)
lxc-start centos9 20220815122746.327 TRACE mount_utils - ../src/lxc/mount_utils.c:move_detached_mount:328 - Attach detached mount 18 to filesystem at 19
lxc-start centos9 20220815122746.327 DEBUG conf - ../src/lxc/conf.c:lxc_fill_autodev:1401 - Bind mounted host device 14(dev/random) to 16(random)
lxc-start centos9 20220815122746.327 TRACE mount_utils - ../src/lxc/mount_utils.c:move_detached_mount:328 - Attach detached mount 18 to filesystem at 19
lxc-start centos9 20220815122746.327 DEBUG conf - ../src/lxc/conf.c:lxc_fill_autodev:1401 - Bind mounted host device 14(dev/tty) to 16(tty)
lxc-start centos9 20220815122746.327 TRACE mount_utils - ../src/lxc/mount_utils.c:move_detached_mount:328 - Attach detached mount 18 to filesystem at 19
lxc-start centos9 20220815122746.327 DEBUG conf - ../src/lxc/conf.c:lxc_fill_autodev:1401 - Bind mounted host device 14(dev/urandom) to 16(urandom)
lxc-start centos9 20220815122746.327 TRACE mount_utils - ../src/lxc/mount_utils.c:move_detached_mount:328 - Attach detached mount 18 to filesystem at 19
lxc-start centos9 20220815122746.327 DEBUG conf - ../src/lxc/conf.c:lxc_fill_autodev:1401 - Bind mounted host device 14(dev/zero) to 16(zero)
lxc-start centos9 20220815122746.327 INFO conf - ../src/lxc/conf.c:lxc_fill_autodev:1405 - Populated "/dev"
lxc-start centos9 20220815122746.327 INFO conf - ../src/lxc/conf.c:lxc_transient_proc:3775 - Caller's PID is 1; /proc/self points to 1
lxc-start centos9 20220815122746.327 TRACE conf - ../src/lxc/conf.c:lxc_transient_proc:3783 - Correct procfs instance mounted
lxc-start centos9 20220815122746.327 TRACE mount_utils - ../src/lxc/mount_utils.c:__fs_prepare:177 - Finished initializing new devpts filesystem context 17
lxc-start centos9 20220815122746.327 TRACE mount_utils - ../src/lxc/mount_utils.c:fs_set_property:215 - Set "source" to "devpts" on filesystem context 17
lxc-start centos9 20220815122746.327 TRACE mount_utils - ../src/lxc/mount_utils.c:fs_set_property:215 - Set "gid" to "5" on filesystem context 17
lxc-start centos9 20220815122746.327 TRACE mount_utils - ../src/lxc/mount_utils.c:fs_set_flag:227 - Set "newinstance" flag on filesystem context 17
lxc-start centos9 20220815122746.327 TRACE mount_utils - ../src/lxc/mount_utils.c:fs_set_property:215 - Set "ptmxmode" to "0666" on filesystem context 17
lxc-start centos9 20220815122746.327 TRACE mount_utils - ../src/lxc/mount_utils.c:fs_set_property:215 - Set "mode" to "0620" on filesystem context 17
lxc-start centos9 20220815122746.327 TRACE mount_utils - ../src/lxc/mount_utils.c:fs_set_property:215 - Set "max" to "1028" on filesystem context 17
lxc-start centos9 20220815122746.327 TRACE conf - ../src/lxc/conf.c:lxc_setup_devpts_child:1745 - Created detached devpts mount 18
lxc-start centos9 20220815122746.327 DEBUG conf - ../src/lxc/conf.c:lxc_setup_devpts_child:1751 - Attached detached devpts mount 18 to 16/pts
lxc-start centos9 20220815122746.327 DEBUG conf - ../src/lxc/conf.c:lxc_setup_devpts_child:1837 - Created "/dev/ptmx" file as bind mount target
lxc-start centos9 20220815122746.327 TRACE mount_utils - ../src/lxc/mount_utils.c:mount_at:663 - Mounted "/proc/self/fd/19" to "/proc/self/fd/20"
lxc-start centos9 20220815122746.327 DEBUG conf - ../src/lxc/conf.c:lxc_setup_devpts_child:1844 - Bind mounted "/dev/pts/ptmx" to "/dev/ptmx"
lxc-start centos9 20220815122746.327 TRACE mount_utils - ../src/lxc/mount_utils.c:move_detached_mount:328 - Attach detached mount 22 to filesystem at 20
lxc-start centos9 20220815122746.327 TRACE conf - ../src/lxc/conf.c:lxc_setup_dev_console:2003 - Setup console "/dev/pts/0"
lxc-start centos9 20220815122746.328 DEBUG conf - ../src/lxc/conf.c:lxc_allocate_ttys:1104 - Created tty with ptx fd 20 and pty fd 21 and index 1
lxc-start centos9 20220815122746.328 DEBUG conf - ../src/lxc/conf.c:lxc_allocate_ttys:1104 - Created tty with ptx fd 22 and pty fd 23 and index 2
lxc-start centos9 20220815122746.328 DEBUG conf - ../src/lxc/conf.c:lxc_allocate_ttys:1104 - Created tty with ptx fd 24 and pty fd 25 and index 3
lxc-start centos9 20220815122746.328 DEBUG conf - ../src/lxc/conf.c:lxc_allocate_ttys:1104 - Created tty with ptx fd 26 and pty fd 27 and index 4
lxc-start centos9 20220815122746.328 INFO conf - ../src/lxc/conf.c:lxc_allocate_ttys:1109 - Finished creating 4 tty devices
lxc-start centos9 20220815122746.328 TRACE mount_utils - ../src/lxc/mount_utils.c:move_detached_mount:328 - Attach detached mount 29 to filesystem at 28
lxc-start centos9 20220815122746.328 DEBUG conf - ../src/lxc/conf.c:lxc_setup_ttys:1065 - Bind mounted "pts/1" onto "tty1"
lxc-start centos9 20220815122746.328 TRACE mount_utils - ../src/lxc/mount_utils.c:move_detached_mount:328 - Attach detached mount 29 to filesystem at 28
lxc-start centos9 20220815122746.328 DEBUG conf - ../src/lxc/conf.c:lxc_setup_ttys:1065 - Bind mounted "pts/2" onto "tty2"
lxc-start centos9 20220815122746.328 TRACE mount_utils - ../src/lxc/mount_utils.c:move_detached_mount:328 - Attach detached mount 29 to filesystem at 28
lxc-start centos9 20220815122746.328 DEBUG conf - ../src/lxc/conf.c:lxc_setup_ttys:1065 - Bind mounted "pts/3" onto "tty3"
lxc-start centos9 20220815122746.328 TRACE mount_utils - ../src/lxc/mount_utils.c:move_detached_mount:328 - Attach detached mount 29 to filesystem at 28
lxc-start centos9 20220815122746.328 DEBUG conf - ../src/lxc/conf.c:lxc_setup_ttys:1065 - Bind mounted "pts/4" onto "tty4"
lxc-start centos9 20220815122746.328 INFO conf - ../src/lxc/conf.c:lxc_setup_ttys:1072 - Finished setting up 4 /dev/tty<N> device(s)
lxc-start centos9 20220815122746.328 TRACE conf - ../src/lxc/conf.c:lxc_create_ttys:1186 - Set "container_ttys=pts/1 pts/2 pts/3 pts/4"
lxc-start centos9 20220815122746.328 TRACE conf - ../src/lxc/conf.c:lxc_pivot_root:1623 - Changed into new rootfs "/usr/lib/x86_64-linux-gnu/lxc/rootfs"
lxc-start centos9 20220815122746.328 INFO conf - ../src/lxc/conf.c:setup_personality:1917 - Set personality to "0lx0"
lxc-start centos9 20220815122746.328 DEBUG conf - ../src/lxc/conf.c:capabilities_deny:3203 - Capabilities have been setup
lxc-start centos9 20220815122746.328 NOTICE conf - ../src/lxc/conf.c:lxc_setup:4469 - The container "centos9" is set up
lxc-start centos9 20220815122746.328 TRACE apparmor - ../src/lxc/lsm/apparmor.c:__apparmor_process_label_open:403 - On-exec not supported with AppArmor
lxc-start centos9 20220815122746.328 TRACE apparmor - ../src/lxc/lsm/apparmor.c:apparmor_process_label_set_at:1170 - Changing AppArmor profile on exec not supported
lxc-start centos9 20220815122746.328 INFO apparmor - ../src/lxc/lsm/apparmor.c:apparmor_process_label_set_at:1186 - Set AppArmor label to "lxc-container-default-cgns"
lxc-start centos9 20220815122746.328 INFO apparmor - ../src/lxc/lsm/apparmor.c:apparmor_process_label_set:1231 - Changed AppArmor profile to lxc-container-default-cgns
#
# pseudo filter code start
#
# filter for arch x86_64 (3221225534)
if ($arch == 3221225534)
# filter for syscall "finit_module" (313) [priority: 65535]
if ($syscall == 313)
action ERRNO(1);
# filter for syscall "open_by_handle_at" (304) [priority: 65535]
if ($syscall == 304)
action ERRNO(1);
# filter for syscall "kexec_load" (246) [priority: 65535]
if ($syscall == 246)
action ERRNO(1);
# filter for syscall "delete_module" (176) [priority: 65535]
if ($syscall == 176)
action ERRNO(1);
# filter for syscall "init_module" (175) [priority: 65535]
if ($syscall == 175)
action ERRNO(1);
# filter for syscall "umount2" (166) [priority: 65533]
if ($syscall == 166)
if ($a1.hi32 & 0x00000000 == 0)
if ($a1.lo32 & 0x00000001 == 1)
action ERRNO(13);
# default action
action ALLOW;
# filter for arch x86 (1073741827)
if ($arch == 1073741827)
# filter for syscall "finit_module" (350) [priority: 65535]
if ($syscall == 350)
action ERRNO(1);
# filter for syscall "open_by_handle_at" (342) [priority: 65535]
if ($syscall == 342)
action ERRNO(1);
# filter for syscall "kexec_load" (283) [priority: 65535]
if ($syscall == 283)
action ERRNO(1);
# filter for syscall "delete_module" (129) [priority: 65535]
if ($syscall == 129)
action ERRNO(1);
# filter for syscall "init_module" (128) [priority: 65535]
if ($syscall == 128)
action ERRNO(1);
# filter for syscall "umount2" (52) [priority: 65534]
if ($syscall == 52)
if ($a1 & 0x00000001 == 1)
action ERRNO(13);
# default action
action ALLOW;
# filter for arch x32 (3221225534)
if ($arch == 3221225534)
# filter for syscall "kexec_load" (1073742352) [priority: 65535]
if ($syscall == 1073742352)
action ERRNO(1);
# filter for syscall "finit_module" (1073742137) [priority: 65535]
if ($syscall == 1073742137)
action ERRNO(1);
# filter for syscall "open_by_handle_at" (1073742128) [priority: 65535]
if ($syscall == 1073742128)
action ERRNO(1);
# filter for syscall "delete_module" (1073742000) [priority: 65535]
if ($syscall == 1073742000)
action ERRNO(1);
# filter for syscall "init_module" (1073741999) [priority: 65535]
if ($syscall == 1073741999)
action ERRNO(1);
# filter for syscall "umount2" (1073741990) [priority: 65534]
if ($syscall == 1073741990)
if ($a1 & 0x00000001 == 1)
action ERRNO(13);
# default action
action ALLOW;
# invalid architecture action
action KILL;
#
# pseudo filter code end
#
lxc-start centos9 20220815122746.329 TRACE sync - ../src/lxc/sync.c:lxc_sync_barrier_parent:90 - Child waking parent with sequence cgroup-limits and waiting for sequence fds
lxc-start centos9 20220815122746.329 TRACE start - ../src/lxc/start.c:lxc_spawn:1896 - Set up legacy device cgroup controller limits
lxc-start centos9 20220815122746.329 TRACE start - ../src/lxc/start.c:lxc_spawn:1902 - Set up cgroup2 device controller limits
lxc-start centos9 20220815122746.329 TRACE start - ../src/lxc/start.c:lxc_spawn:1905 - Finished setting up cgroups
lxc-start centos9 20220815122746.329 TRACE sync - ../src/lxc/sync.c:lxc_sync_wake_child:122 - Parent waking child with sequence fds
lxc-start centos9 20220815122746.329 TRACE conf - ../src/lxc/conf.c:lxc_send_devpts_to_parent:1899 - Sent devpts file descriptor 18 to parent
lxc-start centos9 20220815122746.329 TRACE conf - ../src/lxc/conf.c:__lxc_send_ttys_to_parent:1149 - Sent tty "pts/1" with ptx fd 20 and pty fd 21 to parent
lxc-start centos9 20220815122746.329 TRACE conf - ../src/lxc/conf.c:lxc_recv_devpts_from_child:1681 - Received devpts file descriptor 10 from child
lxc-start centos9 20220815122746.329 TRACE conf - ../src/lxc/conf.c:__lxc_send_ttys_to_parent:1149 - Sent tty "pts/2" with ptx fd 22 and pty fd 23 to parent
lxc-start centos9 20220815122746.329 TRACE conf - ../src/lxc/conf.c:__lxc_send_ttys_to_parent:1149 - Sent tty "pts/3" with ptx fd 24 and pty fd 25 to parent
lxc-start centos9 20220815122746.329 TRACE conf - ../src/lxc/conf.c:__lxc_send_ttys_to_parent:1149 - Sent tty "pts/4" with ptx fd 26 and pty fd 27 to parent
lxc-start centos9 20220815122746.329 TRACE conf - ../src/lxc/conf.c:__lxc_send_ttys_to_parent:1156 - Sent 4 ttys to parent
lxc-start centos9 20220815122746.329 TRACE conf - ../src/lxc/conf.c:lxc_recv_ttys_from_child:4185 - Received pty with ptx fd 21 and pty fd 22 from child
lxc-start centos9 20220815122746.329 TRACE conf - ../src/lxc/conf.c:lxc_recv_ttys_from_child:4185 - Received pty with ptx fd 23 and pty fd 24 from child
lxc-start centos9 20220815122746.329 TRACE conf - ../src/lxc/conf.c:lxc_send_console_to_parent:4213 - Sent console to parent
lxc-start centos9 20220815122746.329 TRACE conf - ../src/lxc/conf.c:lxc_recv_ttys_from_child:4185 - Received pty with ptx fd 25 and pty fd 26 from child
lxc-start centos9 20220815122746.329 TRACE conf - ../src/lxc/conf.c:lxc_sync_fds_child:4301 - Finished syncing file descriptors with parent
lxc-start centos9 20220815122746.329 TRACE conf - ../src/lxc/conf.c:lxc_recv_ttys_from_child:4185 - Received pty with ptx fd 27 and pty fd 28 from child
lxc-start centos9 20220815122746.329 TRACE sync - ../src/lxc/sync.c:lxc_sync_wait_parent:110 - Child waiting for parent with sequence ready-start
lxc-start centos9 20220815122746.329 TRACE conf - ../src/lxc/conf.c:lxc_recv_ttys_from_child:4190 - Received 4 ttys from child
lxc-start centos9 20220815122746.329 TRACE conf - ../src/lxc/conf.c:lxc_recv_console_from_child:4240 - Received console from child
lxc-start centos9 20220815122746.329 TRACE conf - ../src/lxc/conf.c:lxc_sync_fds_parent:4271 - Finished syncing file descriptors with child
lxc-start centos9 20220815122746.329 DEBUG terminal - ../src/lxc/terminal.c:lxc_terminal_peer_default:695 - No such device - The process does not have a controlling terminal
lxc-start centos9 20220815122746.329 TRACE sync - ../src/lxc/sync.c:lxc_sync_barrier_child:97 - Parent waking child with sequence ready-start and waiting with sequence restart
lxc-start centos9 20220815122746.329 NOTICE start - ../src/lxc/start.c:start:2194 - Exec'ing "test"
lxc-start centos9 20220815122746.329 TRACE confile_utils - ../src/lxc/confile_utils.c:lxc_log_configured_netdevs:223 - container has no networks configured
lxc-start centos9 20220815122746.329 NOTICE start - ../src/lxc/start.c:post_start:2205 - Started "test" with pid "30963"
lxc-start centos9 20220815122746.329 TRACE start - ../src/lxc/start.c:lxc_serve_state_socket_pair:544 - Sent container state "RUNNING" to 5
lxc-start centos9 20220815122746.329 TRACE start - ../src/lxc/start.c:lxc_serve_state_clients:483 - Set container state to RUNNING
lxc-start centos9 20220815122746.329 TRACE start - ../src/lxc/start.c:lxc_serve_state_clients:486 - No state clients registered
lxc-start centos9 20220815122746.329 TRACE lxccontainer - ../src/lxc/lxccontainer.c:wait_on_daemonized_start:882 - Container is in "RUNNING" state
lxc-start centos9 20220815122746.329 TRACE mainloop - ../src/lxc/mainloop.c:__epoll_open:493 - Created epoll instance
lxc-start centos9 20220815122746.329 TRACE mainloop - ../src/lxc/mainloop.c:__epoll_open:493 - Created epoll instance
lxc-start centos9 20220815122746.329 TRACE start - ../src/lxc/start.c:lxc_poll:626 - Mainloop is ready
lxc-start centos9 20220815122746.329 TRACE start - ../src/lxc/start.c:signal_handler:396 - Received signal ssi_signo(17) for ssi_pid(30964), si_signo(0), si_pid(0)
lxc-start centos9 20220815122746.329 NOTICE start - ../src/lxc/start.c:signal_handler:446 - Received 17 from pid 30964 instead of container init 30963
lxc-start centos9 20220815122746.330 TRACE start - ../src/lxc/start.c:signal_handler:396 - Received signal ssi_signo(17) for ssi_pid(30963), si_signo(17), si_pid(30963)
lxc-start centos9 20220815122746.330 DEBUG start - ../src/lxc/start.c:signal_handler:464 - Container init process 30963 exited
lxc-start centos9 20220815122746.330 TRACE start - ../src/lxc/start.c:lxc_poll:643 - Closed console mainloop
lxc-start centos9 20220815122746.330 TRACE start - ../src/lxc/start.c:lxc_poll:648 - Closed mainloop
lxc-start centos9 20220815122746.330 TRACE start - ../src/lxc/start.c:lxc_poll:651 - Closed signal file descriptor 8
lxc-start centos9 20220815122746.330 INFO error - ../src/lxc/error.c:lxc_error_set_and_log:31 - Child <30963> ended on error (1)
lxc-start centos9 20220815122746.330 TRACE start - ../src/lxc/start.c:lxc_expose_namespace_environment:906 - Set environment variable LXC_USER_NS=/proc/30962/fd/15
lxc-start centos9 20220815122746.330 TRACE start - ../src/lxc/start.c:lxc_expose_namespace_environment:906 - Set environment variable LXC_MNT_NS=/proc/30962/fd/16
lxc-start centos9 20220815122746.330 TRACE start - ../src/lxc/start.c:lxc_expose_namespace_environment:906 - Set environment variable LXC_PID_NS=/proc/30962/fd/17
lxc-start centos9 20220815122746.330 TRACE start - ../src/lxc/start.c:lxc_expose_namespace_environment:906 - Set environment variable LXC_UTS_NS=/proc/30962/fd/18
lxc-start centos9 20220815122746.330 TRACE start - ../src/lxc/start.c:lxc_expose_namespace_environment:906 - Set environment variable LXC_IPC_NS=/proc/30962/fd/19
lxc-start centos9 20220815122746.330 TRACE start - ../src/lxc/start.c:lxc_expose_namespace_environment:906 - Set environment variable LXC_NET_NS=/proc/30962/fd/7
lxc-start centos9 20220815122746.330 TRACE start - ../src/lxc/start.c:lxc_expose_namespace_environment:906 - Set environment variable LXC_CGROUP_NS=/proc/30962/fd/20
lxc-start centos9 20220815122746.330 DEBUG network - ../src/lxc/network.c:lxc_delete_network:4173 - Deleted network devices
lxc-start centos9 20220815122746.330 TRACE start - ../src/lxc/start.c:lxc_serve_state_clients:483 - Set container state to STOPPING
lxc-start centos9 20220815122746.330 TRACE start - ../src/lxc/start.c:lxc_serve_state_clients:486 - No state clients registered
lxc-start centos9 20220815122746.330 TRACE start - ../src/lxc/start.c:lxc_end:963 - Closed command socket
lxc-start centos9 20220815122746.330 TRACE start - ../src/lxc/start.c:lxc_end:974 - Set container state to "STOPPED"
lxc-start centos9 20220815122746.330 INFO conf - ../src/lxc/conf.c:run_script_argv:337 - Executing script "/usr/share/lxcfs/lxc.reboot.hook" for container "centos9", config section "lxc"