-
Notifications
You must be signed in to change notification settings - Fork 78
Failed to mount API filesystems, freezing. #1
Comments
I managed to reproduce issue on Windows with the latest Docker Toolbox. Will investigate. |
I confirmed it too, on Ubuntu 14.04. Sometimes after running the
And sometimes, it starts alright. This is particularly weird because I don't change anything, and so I don't understand why I have the |
@nschoe That's a different issue, caused by a bug in Docker that will be fixed in 1.12.0 |
Thanks, good to know! |
The error can also be reproduced on Ubuntu 16.04. It's possible that this error happens when the Docker host runs Linux 4. |
On Ubuntu 16.04 the container starts up correctly with the addition of the following flags:
I'm guessing it could also run with a much stricter security profile. Unfortunately this is not enough to start the container in boot2docker. I'll keep investigating. |
I think I've managed to come up with a fix. I've tested it with Docker Machine + boot2docker on Linux, but it's still untested on OS X or Windows. To test the fix, follow the updated README: First run the new script |
Fix verified with Docker Toolbox on Windows 7. |
A bit more info here: I've switched to Ubuntu 16.04, and running original
I then added
I tried adding I don't understand why I've got a permission denied on |
@noidi I executed the shell script in the readme, it said that the cgroup was already mounted. |
@nschoe Did you use all the options described in the README? Here's a full command line that works for me (apart from occasional problems due to the tmpfs bug in Docker 1.11) for me both directly on a Linux host as well as on a
|
@noidi actually I have just confirmed that your commands work. I can successfully create and start a container form the solita/ubuntu-systemd image with However, and this is very strange to me, I can't have it work with docker-compose files. See here. I am pretty sure this is not a bug of yours, but I still can't explain it... If you have any idea? Thanks for your reactivity btw! |
Actually maybe it is? |
@nschoe I suspect it's the tmpfs bug biting here. I made the following changes to your
This typically gives me the following output:
As you can see,
|
If you don't care so much about having Ubuntu, and any Linux distribution with |
Connecting to Docker Beta xhyve virtual machine (host) is actually possible. Thus it seems to be possible to modify the cgroups (maybe). Here is the topic explaining how to dig inside the Docker Beta virtual machine: https://forums.docker.com/t/how-to-make-changes-to-xhyve-host/11820 |
I have now confirmed that creating systemd cgroup was possible in Docker Beta xhyve hypervisor provided Docker host. Here is the pretty screenshot: https://www.dropbox.com/s/v9ijh6y1uxo0tiw/Screenshot%202016-05-11%2023.13.01.png?dl=0 The command to enter the xhyve docker host in Docker Beta was: ~ ❯❯❯ screen ~/Library/Containers/com.docker.docker/Data/com.docker.driver.amd64-linux/tty The commands I used inside the docker host box were: docker:~# mkdir -p /sys/fs/cgroup/systemd
docker:~# mount -t cgroup cgroup -o none,name=systemd /sys/fs/cgroup/systemd Finally I ran the container as described in the README and ran another bash inside the container using: ~ ❯❯❯ docker ps -a
CONTAINER ID IMAGE COMMAND CREATED STATUS PORTS NAMES
6cf6cb029583 solita/ubuntu-systemd "/sbin/init" 27 seconds ago Up 26 seconds furious_shirley
~ ❯❯❯ docker exec -i -t 6c bash
root@6cf6cb029583:/# ps axufww
USER PID %CPU %MEM VSZ RSS TTY STAT START TIME COMMAND
root 33 0.0 0.0 18212 3216 ? Ss 20:06 0:00 bash
root 44 0.0 0.0 34424 2892 ? R+ 20:06 0:00 \_ ps axufww
root 1 0.0 0.1 36824 4652 ? Ss 20:04 0:00 /sbin/init
root 18 0.0 0.0 27904 1352 ? Ss 20:04 0:00 /lib/systemd/systemd-journald
root@6cf6cb029583:/# |
Same issue on latest centos7 after following this guide https://forums.docker.com/t/systemctl-status-is-not-working-in-my-docker-container/9075/4 |
@sirkkalap This works, but can it be scripted somehow? |
@deiga I think we might be able to support Docker for Mac by doing the setup in a privileged container instead of running commands in a host shell. Unfortunately I don't have a Mac to test on. If I manage to get the setup change working on Linux, would you be willing to try it out with Docker for Mac? |
@noidi Yeah, sure |
We've been looking into this issue (because previously disabling seccomp was not required), and may have found the cause of this; there's a pull request opened that changes the default seccomp profile and hopefully no longer requires completely disabling seccomp; moby/moby#25567 |
I am also facing this problem. |
This issue should be fixed now. Please, don't use docker run -it \
--tmpfs /run \
-v /sys/fs/cgroup:/sys/fs/cgroup:ro \
--cap-add SYS_ADMIN \
solita/centos-systemd:latest
|
I have tried to use |
when i trying to use --cap-add SYS_ADMIN, then i got following error-- |
I get freeze at startup on OS X 10.11.4. Any idea what went wrong?
The text was updated successfully, but these errors were encountered: