<div dir="ltr"><div><div><div><div><div><div>The main error appears to be that /proc fails to mount (I bolded it below). Is there any way I can debug this further?<br></div><div><br>Log:<br></div><div></div><div>$ for cg in blkio  cpu  cpuacct  cpuset  devices  freezer  hugetlb  memory  net_cls  net_prio  perf_event; do sudo mkdir /sys/fs/cgroup/${cg}$(grep cpuset /proc/self/cgroup | cut -d : -f 3)/ulxc ; sudo chown vagrant:vagrant $_ ; echo $$ >> ${_}/tasks ; done<br>$ lxc-start -n test --logfile=log --logpriority=trace<br>      lxc-start 1458950691.548 INFO     lxc_start_ui - lxc_start.c:main:264 - using rcfile /home/vagrant/.local/share/lxc/test/config<br>      lxc-start 1458950691.548 INFO     lxc_utils - utils.c:get_rundir:280 - XDG_RUNTIME_DIR isn't set in the environment.<br>      lxc-start 1458950691.548 WARN     lxc_confile - confile.c:config_pivotdir:1801 - lxc.pivotdir is ignored.  It will soon become an error.<br>      lxc-start 1458950691.548 INFO     lxc_confile - confile.c:config_idmap:1437 - read uid map: type u nsid 0 hostid 100000 range 100000<br>      lxc-start 1458950691.548 INFO     lxc_confile - confile.c:config_idmap:1437 - read uid map: type g nsid 0 hostid 100000 range 100000<br>      lxc-start 1458950691.548 WARN     lxc_cgfs - cgfs.c:lxc_cgroup_get_container_info:1100 - Not attaching to cgroup cpuset unknown to /home/vagrant/.local/share/lxc test<br>      lxc-start 1458950691.548 WARN     lxc_cgfs - cgfs.c:lxc_cgroup_get_container_info:1100 - Not attaching to cgroup cpu unknown to /home/vagrant/.local/share/lxc test<br>      lxc-start 1458950691.548 WARN     lxc_cgfs - cgfs.c:lxc_cgroup_get_container_info:1100 - Not attaching to cgroup cpuacct unknown to /home/vagrant/.local/share/lxc test<br>      lxc-start 1458950691.548 WARN     lxc_cgfs - cgfs.c:lxc_cgroup_get_container_info:1100 - Not attaching to cgroup memory unknown to /home/vagrant/.local/share/lxc test<br>      lxc-start 1458950691.548 WARN     lxc_cgfs - cgfs.c:lxc_cgroup_get_container_info:1100 - Not attaching to cgroup devices unknown to /home/vagrant/.local/share/lxc test<br>      lxc-start 1458950691.548 WARN     lxc_cgfs - cgfs.c:lxc_cgroup_get_container_info:1100 - Not attaching to cgroup freezer unknown to /home/vagrant/.local/share/lxc test<br>      lxc-start 1458950691.548 WARN     lxc_cgfs - cgfs.c:lxc_cgroup_get_container_info:1100 - Not attaching to cgroup net_cls unknown to /home/vagrant/.local/share/lxc test<br>      lxc-start 1458950691.548 WARN     lxc_cgfs - cgfs.c:lxc_cgroup_get_container_info:1100 - Not attaching to cgroup blkio unknown to /home/vagrant/.local/share/lxc test<br>      lxc-start 1458950691.548 WARN     lxc_cgfs - cgfs.c:lxc_cgroup_get_container_info:1100 - Not attaching to cgroup perf_event unknown to /home/vagrant/.local/share/lxc test<br>      lxc-start 1458950691.548 WARN     lxc_cgfs - cgfs.c:lxc_cgroup_get_container_info:1100 - Not attaching to cgroup net_prio unknown to /home/vagrant/.local/share/lxc test<br>      lxc-start 1458950691.548 WARN     lxc_cgfs - cgfs.c:lxc_cgroup_get_container_info:1100 - Not attaching to cgroup hugetlb unknown to /home/vagrant/.local/share/lxc test<br>      lxc-start 1458950691.549 INFO     lxc_start - start.c:lxc_check_inherited:240 - closed inherited fd 4<br>      lxc-start 1458950691.555 INFO     lxc_container - lxccontainer.c:do_lxcapi_start:712 - Attempting to set proc title to [lxc monitor] /home/vagrant/.local/share/lxc test<br>      lxc-start 1458950691.555 ERROR    lxc_utils - utils.c:setproctitle:1455 - Invalid argument - setting cmdline failed<br>      lxc-start 1458950691.556 INFO     lxc_lsm - lsm/lsm.c:lsm_init:48 - LSM security driver AppArmor<br>      lxc-start 1458950691.556 INFO     lxc_seccomp - seccomp.c:use_seccomp:531 - Already seccomp-confined, not loading new policy<br>      lxc-start 1458950691.556 INFO     lxc_utils - utils.c:get_rundir:280 - XDG_RUNTIME_DIR isn't set in the environment.<br>      lxc-start 1458950691.556 DEBUG    lxc_start - start.c:setup_signal_fd:278 - sigchild handler set<br>      lxc-start 1458950691.556 DEBUG    lxc_console - console.c:lxc_console_peer_default:536 - no console peer<br>      lxc-start 1458950691.557 INFO     lxc_start - start.c:lxc_check_inherited:240 - closed inherited fd 4<br>      lxc-start 1458950691.559 INFO     lxc_monitor - monitor.c:lxc_monitor_sock_name:178 - using monitor sock name lxc/a35126afb628c43f//home/vagrant/.local/share/lxc<br>      lxc-start 1458950691.593 INFO     lxc_start - start.c:lxc_init:474 - 'test' is initialized<br>      lxc-start 1458950691.594 DEBUG    lxc_start - start.c:__lxc_start:1186 - Not dropping cap_sys_boot or watching utmp<br>      lxc-start 1458950691.594 INFO     lxc_start - start.c:resolve_clone_flags:883 - Cloning a new user namespace<br>      lxc-start 1458950691.594 INFO     lxc_cgroup - cgroup.c:cgroup_init:65 - cgroup driver cgroupfs initing for test<br>      lxc-start 1458950691.601 NOTICE   lxc_start - start.c:do_start:699 - switching to gid/uid 0 in new user namespace<br>      lxc-start 1458950691.602 DEBUG    lxc_conf - conf.c:setup_rootfs:1295 - mounted '/mnt/ulxc-home/.local/share/lxc/test/rootfs' on '/usr/lib/x86_64-linux-gnu/lxc'<br>      lxc-start 1458950691.602 INFO     lxc_conf - conf.c:setup_utsname:928 - 'test' hostname has been setup<br>      lxc-start 1458950691.602 INFO     lxc_conf - conf.c:mount_autodev:1157 - Mounting container /dev<br>      lxc-start 1458950691.605 INFO     lxc_conf - conf.c:mount_autodev:1179 - Mounted tmpfs onto /usr/lib/x86_64-linux-gnu/lxc/dev<br>      lxc-start 1458950691.605 INFO     lxc_conf - conf.c:mount_autodev:1197 - Mounted container /dev<br><b>      lxc-start 1458950691.607 ERROR    lxc_utils - utils.c:safe_mount:1686 - Operation not permitted - Failed to mount proc onto /usr/lib/x86_64-linux-gnu/lxc/proc<br>      lxc-start 1458950691.607 ERROR    lxc_conf - conf.c:lxc_mount_auto_mounts:828 - Operation not permitted - error mounting proc on /usr/lib/x86_64-linux-gnu/lxc/proc flags 14</b><br>      lxc-start 1458950691.607 ERROR    lxc_conf - conf.c:lxc_setup:3910 - failed to setup the automatic mounts for 'test'<br>      lxc-start 1458950691.607 ERROR    lxc_start - start.c:do_start:731 - failed to setup the container<br>      lxc-start 1458950691.607 ERROR    lxc_sync - sync.c:__sync_wait:51 - invalid sequence number 1. expected 2<br>      lxc-start 1458950691.607 INFO     lxc_utils - utils.c:get_rundir:280 - XDG_RUNTIME_DIR isn't set in the environment.<br>      lxc-start 1458950691.607 ERROR    lxc_start - start.c:__lxc_start:1213 - failed to spawn 'test'<br>      lxc-start 1458950691.607 INFO     lxc_utils - utils.c:get_rundir:280 - XDG_RUNTIME_DIR isn't set in the environment.<br>      lxc-start 1458950691.632 INFO     lxc_utils - utils.c:get_rundir:280 - XDG_RUNTIME_DIR isn't set in the environment.<br>      lxc-start 1458950691.632 WARN     lxc_commands - commands.c:lxc_cmd_rsp_recv:172 - command get_cgroup failed to receive response<br>      lxc-start 1458950691.632 WARN     lxc_cgfs - cgfs.c:lxc_cgroup_get_container_info:1100 - Not attaching to cgroup cpuset unknown to /home/vagrant/.local/share/lxc test<br>      lxc-start 1458950691.632 WARN     lxc_cgfs - cgfs.c:lxc_cgroup_get_container_info:1100 - Not attaching to cgroup cpu unknown to /home/vagrant/.local/share/lxc test<br>      lxc-start 1458950691.632 WARN     lxc_cgfs - cgfs.c:lxc_cgroup_get_container_info:1100 - Not attaching to cgroup cpuacct unknown to /home/vagrant/.local/share/lxc test<br>      lxc-start 1458950691.632 WARN     lxc_cgfs - cgfs.c:lxc_cgroup_get_container_info:1100 - Not attaching to cgroup memory unknown to /home/vagrant/.local/share/lxc test<br>      lxc-start 1458950691.632 WARN     lxc_cgfs - cgfs.c:lxc_cgroup_get_container_info:1100 - Not attaching to cgroup devices unknown to /home/vagrant/.local/share/lxc test<br>      lxc-start 1458950691.632 WARN     lxc_cgfs - cgfs.c:lxc_cgroup_get_container_info:1100 - Not attaching to cgroup freezer unknown to /home/vagrant/.local/share/lxc test<br>      lxc-start 1458950691.633 WARN     lxc_cgfs - cgfs.c:lxc_cgroup_get_container_info:1100 - Not attaching to cgroup net_cls unknown to /home/vagrant/.local/share/lxc test<br>      lxc-start 1458950691.633 WARN     lxc_cgfs - cgfs.c:lxc_cgroup_get_container_info:1100 - Not attaching to cgroup blkio unknown to /home/vagrant/.local/share/lxc test<br>      lxc-start 1458950691.633 WARN     lxc_cgfs - cgfs.c:lxc_cgroup_get_container_info:1100 - Not attaching to cgroup perf_event unknown to /home/vagrant/.local/share/lxc test<br>      lxc-start 1458950691.633 WARN     lxc_cgfs - cgfs.c:lxc_cgroup_get_container_info:1100 - Not attaching to cgroup net_prio unknown to /home/vagrant/.local/share/lxc test<br>      lxc-start 1458950691.633 WARN     lxc_cgfs - cgfs.c:lxc_cgroup_get_container_info:1100 - Not attaching to cgroup hugetlb unknown to /home/vagrant/.local/share/lxc test<br>      lxc-start 1458950696.638 ERROR    lxc_start_ui - lxc_start.c:main:344 - The container failed to start.<br>      lxc-start 1458950696.639 ERROR    lxc_start_ui - lxc_start.c:main:346 - To get more details, run the container in foreground mode.<br>      lxc-start 1458950696.640 ERROR    lxc_start_ui - lxc_start.c:main:348 - Additional information can be obtained by setting the --logfile and --logpriority options.<br><br>##############<br><br>Host:<br><ul><li>Distribution: Ubuntu 14.04</li><li>Kernels: 3.16.0-55, 3.16.0-60, 3.19.0-56</li><ul><li>It looks like the nfsd module is loaded, so maybe it's related to <a href="https://bugs.launchpad.net/ubuntu/+source/linux/+bug/1519106" target="_blank">https://bugs.launchpad.net/ubuntu/+source/linux/+bug/1519106</a> ?<br></li></ul><li>LXC version: 1.1.5, no cgmanager<br></li></ul></div></div><br></div>Privileged Container:<br></div><ul><li>Distribution: Ubuntu 12.04</li><li>LXC version: 1.1.5, no cgmanager<br></li><li>Modifications:</li><ul><li>installed backport of uidmap package</li><li>made a  cgroup owned by the user account</li><li>set uidmaps in /etc/sub{u,g}id and in ~/.config/lxc/default.conf<br></li></ul></ul></div></div><ul><li>Config:</li></ul><p>lxc.include = /usr/share/lxc/config/ubuntu.common.conf<br>lxc.rootfs = /var/lib/lxc/server_default_1457736559572_57990/rootfs<br>lxc.utsname = server_default_1457736559572_57990<br>lxc.network.type = veth<br>lxc.network.flags = up<br>lxc.network.link = virbr0<br>lxc.network.hwaddr = 00:16:3e:d7:09:5b<br>lxc.cgroup.devices.allow = b 7:* rwm<br>lxc.aa_profile=unconfined<br>lxc.cgroup.memory.limit_in_bytes=8G<br>lxc.utsname=server_default_1457736559572_57990<br>lxc.mount.entry=/sys/fs/pstore sys/fs/pstore none bind,optional 0 0<br>lxc.mount.entry=tmpfs tmp tmpfs nodev,nosuid,size=2G 0 0<br></p><p>Unprivileged Container:</p><ul><li>Distribution: Ubuntu 12.04</li><li>Config:<br></li></ul>lxc.include = /usr/share/lxc/config/ubuntu.common.conf<br>lxc.include = /usr/share/lxc/config/ubuntu.userns.conf<br>lxc.arch = x86_64<br>lxc.id_map = u 0 100000 100000<br>lxc.id_map = g 0 100000 100000<br>lxc.rootfs = /mnt/ulxc-home/.local/share/lxc/test/rootfs<br>lxc.utsname = test<br><br><br clear="all"><div><div><div><div><div><div><div><div><div><div><div dir="ltr">-Cam<br></div></div></div>
</div></div></div></div></div></div></div></div></div>