Previously (although I don’t know how many versions ago), I had unprivileged containers working on manjaro. I’ve followed all the arch how-to’s and searched online for a while, but, I’ve come up empty as to why all of my containers on lxd will NOT start.
Here is the debug output from one container.
lxc start test-debian --debug ✔
DEBUG [2022-05-27T20:10:20-04:00] Connecting to a local LXD over a Unix socket
DEBUG [2022-05-27T20:10:20-04:00] Sending request to LXD etag= method=GET url="http://unix.socket/1.0"
DEBUG [2022-05-27T20:10:20-04:00] Got response struct from LXD
DEBUG [2022-05-27T20:10:20-04:00]
{
"config": {},
"api_extensions": [
"storage_zfs_remove_snapshots",
"container_host_shutdown_timeout",
"container_stop_priority",
"container_syscall_filtering",
"auth_pki",
"container_last_used_at",
"etag",
"patch",
"usb_devices",
"https_allowed_credentials",
"image_compression_algorithm",
"directory_manipulation",
"container_cpu_time",
"storage_zfs_use_refquota",
"storage_lvm_mount_options",
"network",
"profile_usedby",
"container_push",
"container_exec_recording",
"certificate_update",
"container_exec_signal_handling",
"gpu_devices",
"container_image_properties",
"migration_progress",
"id_map",
"network_firewall_filtering",
"network_routes",
"storage",
"file_delete",
"file_append",
"network_dhcp_expiry",
"storage_lvm_vg_rename",
"storage_lvm_thinpool_rename",
"network_vlan",
"image_create_aliases",
"container_stateless_copy",
"container_only_migration",
"storage_zfs_clone_copy",
"unix_device_rename",
"storage_lvm_use_thinpool",
"storage_rsync_bwlimit",
"network_vxlan_interface",
"storage_btrfs_mount_options",
"entity_description",
"image_force_refresh",
"storage_lvm_lv_resizing",
"id_map_base",
"file_symlinks",
"container_push_target",
"network_vlan_physical",
"storage_images_delete",
"container_edit_metadata",
"container_snapshot_stateful_migration",
"storage_driver_ceph",
"storage_ceph_user_name",
"resource_limits",
"storage_volatile_initial_source",
"storage_ceph_force_osd_reuse",
"storage_block_filesystem_btrfs",
"resources",
"kernel_limits",
"storage_api_volume_rename",
"macaroon_authentication",
"network_sriov",
"console",
"restrict_devlxd",
"migration_pre_copy",
"infiniband",
"maas_network",
"devlxd_events",
"proxy",
"network_dhcp_gateway",
"file_get_symlink",
"network_leases",
"unix_device_hotplug",
"storage_api_local_volume_handling",
"operation_description",
"clustering",
"event_lifecycle",
"storage_api_remote_volume_handling",
"nvidia_runtime",
"container_mount_propagation",
"container_backup",
"devlxd_images",
"container_local_cross_pool_handling",
"proxy_unix",
"proxy_udp",
"clustering_join",
"proxy_tcp_udp_multi_port_handling",
"network_state",
"proxy_unix_dac_properties",
"container_protection_delete",
"unix_priv_drop",
"pprof_http",
"proxy_haproxy_protocol",
"network_hwaddr",
"proxy_nat",
"network_nat_order",
"container_full",
"candid_authentication",
"backup_compression",
"candid_config",
"nvidia_runtime_config",
"storage_api_volume_snapshots",
"storage_unmapped",
"projects",
"candid_config_key",
"network_vxlan_ttl",
"container_incremental_copy",
"usb_optional_vendorid",
"snapshot_scheduling",
"snapshot_schedule_aliases",
"container_copy_project",
"clustering_server_address",
"clustering_image_replication",
"container_protection_shift",
"snapshot_expiry",
"container_backup_override_pool",
"snapshot_expiry_creation",
"network_leases_location",
"resources_cpu_socket",
"resources_gpu",
"resources_numa",
"kernel_features",
"id_map_current",
"event_location",
"storage_api_remote_volume_snapshots",
"network_nat_address",
"container_nic_routes",
"rbac",
"cluster_internal_copy",
"seccomp_notify",
"lxc_features",
"container_nic_ipvlan",
"network_vlan_sriov",
"storage_cephfs",
"container_nic_ipfilter",
"resources_v2",
"container_exec_user_group_cwd",
"container_syscall_intercept",
"container_disk_shift",
"storage_shifted",
"resources_infiniband",
"daemon_storage",
"instances",
"image_types",
"resources_disk_sata",
"clustering_roles",
"images_expiry",
"resources_network_firmware",
"backup_compression_algorithm",
"ceph_data_pool_name",
"container_syscall_intercept_mount",
"compression_squashfs",
"container_raw_mount",
"container_nic_routed",
"container_syscall_intercept_mount_fuse",
"container_disk_ceph",
"virtual-machines",
"image_profiles",
"clustering_architecture",
"resources_disk_id",
"storage_lvm_stripes",
"vm_boot_priority",
"unix_hotplug_devices",
"api_filtering",
"instance_nic_network",
"clustering_sizing",
"firewall_driver",
"projects_limits",
"container_syscall_intercept_hugetlbfs",
"limits_hugepages",
"container_nic_routed_gateway",
"projects_restrictions",
"custom_volume_snapshot_expiry",
"volume_snapshot_scheduling",
"trust_ca_certificates",
"snapshot_disk_usage",
"clustering_edit_roles",
"container_nic_routed_host_address",
"container_nic_ipvlan_gateway",
"resources_usb_pci",
"resources_cpu_threads_numa",
"resources_cpu_core_die",
"api_os",
"container_nic_routed_host_table",
"container_nic_ipvlan_host_table",
"container_nic_ipvlan_mode",
"resources_system",
"images_push_relay",
"network_dns_search",
"container_nic_routed_limits",
"instance_nic_bridged_vlan",
"network_state_bond_bridge",
"usedby_consistency",
"custom_block_volumes",
"clustering_failure_domains",
"resources_gpu_mdev",
"console_vga_type",
"projects_limits_disk",
"network_type_macvlan",
"network_type_sriov",
"container_syscall_intercept_bpf_devices",
"network_type_ovn",
"projects_networks",
"projects_networks_restricted_uplinks",
"custom_volume_backup",
"backup_override_name",
"storage_rsync_compression",
"network_type_physical",
"network_ovn_external_subnets",
"network_ovn_nat",
"network_ovn_external_routes_remove",
"tpm_device_type",
"storage_zfs_clone_copy_rebase",
"gpu_mdev",
"resources_pci_iommu",
"resources_network_usb",
"resources_disk_address",
"network_physical_ovn_ingress_mode",
"network_ovn_dhcp",
"network_physical_routes_anycast",
"projects_limits_instances",
"network_state_vlan",
"instance_nic_bridged_port_isolation",
"instance_bulk_state_change",
"network_gvrp",
"instance_pool_move",
"gpu_sriov",
"pci_device_type",
"storage_volume_state",
"network_acl",
"migration_stateful",
"disk_state_quota",
"storage_ceph_features",
"projects_compression",
"projects_images_remote_cache_expiry",
"certificate_project",
"network_ovn_acl",
"projects_images_auto_update",
"projects_restricted_cluster_target",
"images_default_architecture",
"network_ovn_acl_defaults",
"gpu_mig",
"project_usage",
"network_bridge_acl",
"warnings",
"projects_restricted_backups_and_snapshots",
"clustering_join_token",
"clustering_description",
"server_trusted_proxy",
"clustering_update_cert",
"storage_api_project",
"server_instance_driver_operational",
"server_supported_storage_drivers",
"event_lifecycle_requestor_address",
"resources_gpu_usb",
"clustering_evacuation",
"network_ovn_nat_address",
"network_bgp",
"network_forward",
"custom_volume_refresh",
"network_counters_errors_dropped",
"metrics",
"image_source_project",
"clustering_config",
"network_peer",
"linux_sysctl",
"network_dns",
"ovn_nic_acceleration",
"certificate_self_renewal",
"instance_project_move",
"storage_volume_project_move",
"cloud_init",
"network_dns_nat",
"database_leader",
"instance_all_projects",
"clustering_groups",
"ceph_rbd_du",
"instance_get_full",
"qemu_metrics",
"gpu_mig_uuid",
"event_project",
"clustering_evacuation_live",
"instance_allow_inconsistent_copy",
"network_state_ovn",
"storage_volume_api_filtering",
"image_restrictions",
"storage_zfs_export",
"network_dns_records",
"storage_zfs_reserve_space",
"network_acl_log",
"storage_zfs_blocksize",
"metrics_cpu_seconds",
"instance_snapshot_never",
"certificate_token",
"instance_nic_routed_neighbor_probe",
"event_hub",
"agent_nic_config",
"projects_restricted_intercept",
"metrics_authentication",
"images_target_project",
"cluster_migration_inconsistent_copy",
"cluster_ovn_chassis",
"container_syscall_intercept_sched_setscheduler",
"storage_lvm_thinpool_metadata_size",
"storage_volume_state_total",
"instance_file_head",
"instances_nic_host_name",
"image_copy_profile",
"container_syscall_intercept_sysinfo",
"clustering_evacuation_mode"
],
"api_status": "stable",
"api_version": "1.0",
"auth": "trusted",
"public": false,
"auth_methods": [
"tls"
],
"environment": {
"addresses": [],
"architectures": [
"x86_64",
"i686"
],
"certificate": "-----BEGIN CERTIFICATE---------END CERTIFICATE-----\n",
"certificate_fingerprint": "",
"driver": "lxc",
"driver_version": "4.0.12",
"firewall": "nftables",
"kernel": "Linux",
"kernel_architecture": "x86_64",
"kernel_features": {
"idmapped_mounts": "true",
"netnsid_getifaddrs": "true",
"seccomp_listener": "true",
"seccomp_listener_continue": "true",
"shiftfs": "false",
"uevent_injection": "true",
"unpriv_fscaps": "true"
},
"kernel_version": "5.15.41-1-MANJARO",
"lxc_features": {
"cgroup2": "true",
"core_scheduling": "true",
"devpts_fd": "true",
"idmapped_mounts_v2": "true",
"mount_injection_file": "true",
"network_gateway_device_route": "true",
"network_ipvlan": "true",
"network_l2proxy": "true",
"network_phys_macvlan_mtu": "true",
"network_veth_router": "true",
"pidfd": "true",
"seccomp_allow_deny_syntax": "true",
"seccomp_notify": "true",
"seccomp_proxy_send_notify_fd": "true"
},
"os_name": "Manjaro Linux",
"os_version": "",
"project": "default",
"server": "lxd",
"server_clustered": false,
"server_event_mode": "full-mesh",
"server_name": "patton",
"server_pid": 2163,
"server_version": "5.1",
"storage": "btrfs",
"storage_version": "5.17",
"storage_supported_drivers": [
{
"Name": "dir",
"Version": "1",
"Remote": false
},
{
"Name": "lvm",
"Version": "2.03.15(2) (2022-02-07) / 1.02.183 (2022-02-07) / 4.45.0",
"Remote": false
},
{
"Name": "btrfs",
"Version": "5.17",
"Remote": false
}
]
}
}
DEBUG [2022-05-27T20:10:20-04:00] Sending request to LXD etag= method=GET url="http://unix.socket/1.0/instances/test-debian"
DEBUG [2022-05-27T20:10:20-04:00] Got response struct from LXD
DEBUG [2022-05-27T20:10:20-04:00]
{
"architecture": "x86_64",
"config": {
"image.architecture": "amd64",
"image.description": "Debian bullseye amd64 (20220527_05:24)",
"image.os": "Debian",
"image.release": "bullseye",
"image.serial": "20220527_05:24",
"image.type": "squashfs",
"image.variant": "default",
"volatile.base_image": "c49611cbac40c0950fbfe252ecc73579d2f5869405390bae9728ed999076e760",
"volatile.cloud-init.instance-id": "5ef07810-235c-4f0f-932b-4f43a09a2c2d",
"volatile.eth0.hwaddr": "00:16:3e:e2:9e:6c",
"volatile.idmap.base": "0",
"volatile.idmap.current": "[{\"Isuid\":true,\"Isgid\":false,\"Hostid\":100000,\"Nsid\":0,\"Maprange\":65536},{\"Isuid\":false,\"Isgid\":true,\"Hostid\":100000,\"Nsid\":0,\"Maprange\":65536}]",
"volatile.idmap.next": "[{\"Isuid\":true,\"Isgid\":false,\"Hostid\":100000,\"Nsid\":0,\"Maprange\":65536},{\"Isuid\":false,\"Isgid\":true,\"Hostid\":100000,\"Nsid\":0,\"Maprange\":65536}]",
"volatile.last_state.idmap": "[]",
"volatile.last_state.power": "STOPPED",
"volatile.uuid": "f0861de9-daf2-4565-ba13-192d014ba0a0"
},
"devices": {},
"ephemeral": false,
"profiles": [
"default"
],
"stateful": false,
"description": "",
"created_at": "2022-05-27T16:35:09.901468207Z",
"expanded_config": {
"image.architecture": "amd64",
"image.description": "Debian bullseye amd64 (20220527_05:24)",
"image.os": "Debian",
"image.release": "bullseye",
"image.serial": "20220527_05:24",
"image.type": "squashfs",
"image.variant": "default",
"volatile.base_image": "c49611cbac40c0950fbfe252ecc73579d2f5869405390bae9728ed999076e760",
"volatile.cloud-init.instance-id": "5ef07810-235c-4f0f-932b-4f43a09a2c2d",
"volatile.eth0.hwaddr": "00:16:3e:e2:9e:6c",
"volatile.idmap.base": "0",
"volatile.idmap.current": "[{\"Isuid\":true,\"Isgid\":false,\"Hostid\":100000,\"Nsid\":0,\"Maprange\":65536},{\"Isuid\":false,\"Isgid\":true,\"Hostid\":100000,\"Nsid\":0,\"Maprange\":65536}]",
"volatile.idmap.next": "[{\"Isuid\":true,\"Isgid\":false,\"Hostid\":100000,\"Nsid\":0,\"Maprange\":65536},{\"Isuid\":false,\"Isgid\":true,\"Hostid\":100000,\"Nsid\":0,\"Maprange\":65536}]",
"volatile.last_state.idmap": "[]",
"volatile.last_state.power": "STOPPED",
"volatile.uuid": "f0861de9-daf2-4565-ba13-192d014ba0a0"
},
"expanded_devices": {
"eth0": {
"name": "eth0",
"network": "lxdbr0",
"type": "nic"
},
"root": {
"path": "/",
"pool": "lxd_storpool_1",
"type": "disk"
}
},
"name": "test-debian",
"status": "Stopped",
"status_code": 102,
"last_used_at": "2022-05-27T16:35:32.751781063Z",
"location": "none",
"type": "container",
"project": "default"
}
DEBUG [2022-05-27T20:10:20-04:00] Connected to the websocket: ws://unix.socket/1.0/events
DEBUG [2022-05-27T20:10:20-04:00] Sending request to LXD etag= method=PUT url="http://unix.socket/1.0/instances/test-debian/state"
DEBUG [2022-05-27T20:10:20-04:00]
{
"action": "start",
"timeout": 0,
"force": false,
"stateful": false
}
DEBUG [2022-05-27T20:10:20-04:00] Got operation from LXD
DEBUG [2022-05-27T20:10:20-04:00]
{
"id": "3678792c-e863-4da0-ad5e-475349e64fb3",
"class": "task",
"description": "Starting instance",
"created_at": "2022-05-27T20:10:20.101713071-04:00",
"updated_at": "2022-05-27T20:10:20.101713071-04:00",
"status": "Running",
"status_code": 103,
"resources": {
"instances": [
"/1.0/instances/test-debian"
]
},
"metadata": null,
"may_cancel": false,
"err": "",
"location": "none"
}
DEBUG [2022-05-27T20:10:20-04:00] Sending request to LXD etag= method=GET url="http://unix.socket/1.0/operations/3678792c-e863-4da0-ad5e-475349e64fb3"
DEBUG [2022-05-27T20:10:20-04:00] Got response struct from LXD
DEBUG [2022-05-27T20:10:20-04:00]
{
"id": "3678792c-e863-4da0-ad5e-475349e64fb3",
"class": "task",
"description": "Starting instance",
"created_at": "2022-05-27T20:10:20.101713071-04:00",
"updated_at": "2022-05-27T20:10:20.101713071-04:00",
"status": "Running",
"status_code": 103,
"resources": {
"instances": [
"/1.0/instances/test-debian"
]
},
"metadata": null,
"may_cancel": false,
"err": "",
"location": "none"
}