I got two computers running LXD, an arch linux one and an arch linux arm one. I’m using macvlan networking on them and the containers if it matters. I’m not using privileged containers. The arch linux arm system is not using AppArmor confinement but the arch linux one is. The problem is seen on both computers.
The problem is that in the container, systemd-udev-trigger.service is failing after “Failed to write ‘add’ to ‘/sys/bus/amba/uevent’: Permission denied” is recorded in the logs. systemd-networkd doesn’t work, running
networkctl status eth0 shows it got iPv6LL or something but nothing else happens.
I can get networking with dhcpcd if I edit the service to remove the BindsTo= and After= part because otherwise starting dhcpcd will fail with dependency errors for sys-subsystem-net-devices-eth0.device: “Timed out waiting for device /sys/subsystem/net/devices/eth0”. I don’t understand this, there is no
/sys/subsystem directory on ANY of my computers.
So I guess this isn’t too bad, I can just switch to using dhcpcd.
Seems LXD and systemd in containers have minor problems all the time. systemd-journald-audit.socket always fails in the container and I got some error when updating in pacman sometimes about ACL. If someone got pointers for a solution to all this systemd+LXD problems it would be appreciated also.
BTW, I tried using security.nesting but that doesn’t fix anything.