Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

mount: /sys: permission denied.: container exited unexpectedly #12583

Closed
darman96 opened this issue Sep 26, 2021 · 8 comments
Closed

mount: /sys: permission denied.: container exited unexpectedly #12583

darman96 opened this issue Sep 26, 2021 · 8 comments
Labels
co/docker-driver Issues related to kubernetes in container kind/support Categorizes issue or PR as a support question.

Comments

@darman96
Copy link

darman96 commented Sep 26, 2021
edited

Steps to reproduce the issue:

Fresh virtual Ubuntu server hosted by Strato.
I have docker installed and ran following command:

minikube start --driver=docker --container-runtime=containerd

Fails with:

2021-09-26T19:31:14.995807552Z INFO: remounting /sys read-only 2021-09-26T19:31:14.995814418Z + mount -o remount,ro /sys 2021-09-26T19:31:15.001984066Z mount: /sys: permission denied.: container exited unexpectedly

The full log is in the attached file.
minikube-logs.txt
@afbjorklund
Copy link
Collaborator

afbjorklund commented Sep 26, 2021
edited

Is this a real VM, or kind of LXC solution ?

😄 minikube v1.23.2 auf Ubuntu 20.04 (openvz/amd64)

Nested containerization currently doesn't work, and it would be containerd-in-docker-in-openvz if it did...

See #7957 and #8167

@afbjorklund afbjorklund added co/docker-driver Issues related to kubernetes in container kind/support Categorizes issue or PR as a support question. labels Sep 26, 2021
@darman96
Copy link
Author

I guess it's a real VM but I don't know what strato uses for virtualization.

@afbjorklund
Copy link
Collaborator

afbjorklund commented Sep 26, 2021
edited

According to the Go "ps" output, it uses OpenVZ: https://openvz.org/

So it is running a container, on a shared server. Currently not supported.

(yes, "real VM" is also something of an oxymoron - it is also shared...)

We are unable to fake a Kubernetes node, from within an OpenVZ host.

@darman96
Copy link
Author

I see, thanks.

So as you mentioned in the other issue would using kubeadm be possible inside a OpenVZ container?

@afbjorklund
Copy link
Collaborator

afbjorklund commented Sep 26, 2021
edited

As long as you can make a container runtime work inside it, that should be possible (in theory).

We were eventually able to hack both docker and podman to allow it, but with systemd it's a pain...

Note: the "none" driver uses kubeadm, and it seemed to be having issues when running on OpenVZ

Something about iptables not being properly loaded or whatever, maybe it is outdated information

@darman96
Copy link
Author

I know that docker works, was using docker-compose before.

@afbjorklund
Copy link
Collaborator

afbjorklund commented Sep 26, 2021
edited

See here, for the full list of requirements: (there are some more beyond CRI, like networking)

https://kubernetes.io/docs/setup/production-environment/tools/kubeadm/install-kubeadm/

@spowelljr
Copy link
Member

Hi @darman96, we haven't heard back from you in a while, so I'm going to close this issue. But if you have more questions feel free to re-open the issue, thanks!

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
co/docker-driver Issues related to kubernetes in container kind/support Categorizes issue or PR as a support question.
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
3 participants
@darman96 @afbjorklund @spowelljr