<div dir="ltr"><div><div><div>im hitting the sysfs mount failure due to permissions, for both privileged and unprivileged unprivileged containers<br><br></div>lxc: 1.0.7+stable~20150828-2252-0ubuntu1~trusty<br></div>kernel: 3.16.0-46<br></div>ubuntu 14.04.03<br><br><br></div><div class="gmail_extra"><br><div class="gmail_quote">On Wed, Sep 2, 2015 at 4:54 AM, KATOH Yasufumi <span dir="ltr"><<a href="mailto:karma@jazz.email.ne.jp" target="_blank">karma@jazz.email.ne.jp</a>></span> wrote:<br><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">>>> On Mon, 31 Aug 2015 13:46:01 -0400<br>
in message "Re: [lxc-users] Preparing for LXC 1.0.8"<br>
Stéphane Graber-san wrote:<br>
<br>
> On Tue, Sep 01, 2015 at 03:01:07AM +1000, overlay fs wrote:<br>
> > The bug,<br>
> ><br>
> > 'Failed to whiteout' error in Trusty with 3.19 kernel<br>
> > <a href="https://lists.linuxcontainers.org/pipermail/lxc-users/2015-August/009854.html" rel="noreferrer" target="_blank">https://lists.linuxcontainers.org/pipermail/lxc-users/2015-August/009854.html</a><br>
> > <a href="https://bugs.launchpad.net/lxc/+bug/1486073" rel="noreferrer" target="_blank">https://bugs.launchpad.net/lxc/+bug/1486073</a><br>
> > <a href="https://bugs.launchpad.net/ubuntu/+source/linux/+bug/1490267" rel="noreferrer" target="_blank">https://bugs.launchpad.net/ubuntu/+source/linux/+bug/1490267</a><br>
> ><br>
> > is present in lxc versions 1.0.7 and 1.0.8, but seems to have been resolved<br>
> > in version 1.1. While this bug is not stricly a regression in lxc-1.0.8,<br>
> > the bug was latent prior to ubuntu-14.04.3 since previous 14.04.x releases<br>
> > did not use the 3.19 kernel.<br>
<br>
:(snip)<br>
<br>
> If the whiteout problem is a kernel bug, there's little we can do, if<br>
> it's a lxc bug, then we should fix this and get the fix into the<br>
> stable-1.0 branch.<br>
<br>
I tried running lxc-1.0.7 on 3.19.8 kernel.<br>
<br>
* lxc-1.0.7 with patch:<br>
<a href="https://github.com/lxc/lxc/commit/388db0d9ebf1b24c538a68813077b7ace31db68f" rel="noreferrer" target="_blank">https://github.com/lxc/lxc/commit/388db0d9ebf1b24c538a68813077b7ace31db68f</a><br>
(The module name of 3.19 kernel is "overlay". So we need this patch.)<br>
* vanilla kernel 3.19.8 with patch:<br>
<a href="https://gist.github.com/tenforward/6be31831135ad942049d" rel="noreferrer" target="_blank">https://gist.github.com/tenforward/6be31831135ad942049d</a><br>
(This patch allow root in userns to mount overlayfs.)<br>
<br>
Unpriv overlayfs container work fine.<br>
<br>
$ uname -a<br>
Linux enterprise 3.19.8 #2 SMP PREEMPT Wed Sep 2 17:54:50 JST 2015 x86_64 GNU/Linux<br>
$ lxc-start --version<br>
1.0.7<br>
$ lxc-clone -o ct01 -n test -s -B overlayfs<br>
Created container test as snapshot of ct01<br>
$ lxc-start -n test -d<br>
$ lxc-attach -n test -- apt-get update<br>
Ign <a href="http://archive.ubuntu.com" rel="noreferrer" target="_blank">http://archive.ubuntu.com</a> trusty InRelease<br>
Ign <a href="http://security.ubuntu.com" rel="noreferrer" target="_blank">http://security.ubuntu.com</a> trusty-security InRelease<br>
Ign <a href="http://archive.ubuntu.com" rel="noreferrer" target="_blank">http://archive.ubuntu.com</a> trusty-updates InRelease<br>
:(snip)<br>
Fetched 2244 kB in 7s (320 kB/s)<br>
Reading package lists... Done<br>
<br>
I guess it is the bug of linux-lts-vivid kernel in Ubuntu.<br>
<br>
I also try running HEAD of stable-1.0(1.0.8). The behavior is the<br>
same.<br>
<br>
Thanks,<br>
KATOH Yasufumi<br>
_______________________________________________<br>
lxc-users mailing list<br>
<a href="mailto:lxc-users@lists.linuxcontainers.org">lxc-users@lists.linuxcontainers.org</a><br>
<a href="http://lists.linuxcontainers.org/listinfo/lxc-users" rel="noreferrer" target="_blank">http://lists.linuxcontainers.org/listinfo/lxc-users</a></blockquote></div><br></div>