<div dir="ltr"><div class="gmail_extra"><div class="gmail_quote">On Thu, May 18, 2017 at 3:04 PM, Harald Dunkel <span dir="ltr"><<a href="mailto:harald.dunkel@aixigo.de" target="_blank">harald.dunkel@aixigo.de</a>></span> wrote:<br><blockquote class="gmail_quote" style="margin:0px 0px 0px 0.8ex;border-left:1px solid rgb(204,204,204);padding-left:1ex"><span class="gmail-">On 05/16/17 13:09, Harald Dunkel wrote:<br>
><br>
> I did serveral tests with LXC 2.0.8 on the host and systemd on the<br>
> client: Both systemd 215-17+deb8u7 (Debian 8) and systemd 230-7~bpo8+2<br>
> (Debian 8 backport) show this problem. cgroupfs-mount 1.3 is installed.<br>
><br>
> If I ditch LXC 2.x and cgroupfs-mount and use LXC 1.1.5 and /cgroup<br>
> instead, then the same systemd-based container boots without problems.<br>
><br>
> If I install cgroupfs-mount again, then the systemd-based container<br>
> still works.<br>
><br>
> If I remove /cgroup from /etc/fstab (still using cgroupfs-mount), then<br>
> the systemd-based container still works.<br>
><br>
> Of course the host was rebooted between each of these steps. Obviously<br>
> the old lxc 1.1.5 is more stable here.<br>
><br>
<br>
</span>PS:<br>
<br>
cgmanager and systemd-shim (whatever that is) were not installed,<br>
either. Installing cgmanager seems to resolve the problem. Its not<br>
in lxc's dependency list, but I wonder if this tool is a must-have?<br>
<div class="gmail-HOEnZb"><div class="gmail-h5"><br>
</div><div class="gmail-h5"><br></div></div></blockquote><div><br></div><div>I have a centos6 (upstart) with an old lxc-2.0.0.rc5 (don't ask). It can run systemd containers just fine. The requirement is that systemd cgroup must be mounted. On that system, I use libcgroup, and have this entry on /etc/cgconfig.conf</div><div><br></div><div><div>mount {</div><div><span class="gmail-Apple-tab-span" style="white-space:pre">     </span>cpuset<span class="gmail-Apple-tab-span" style="white-space:pre">        </span>= /sys/fs/cgroup/cpuset;</div><div><span class="gmail-Apple-tab-span" style="white-space:pre">       </span>cpu<span class="gmail-Apple-tab-span" style="white-space:pre">   </span>= /sys/fs/cgroup/cpu;</div><div><span class="gmail-Apple-tab-span" style="white-space:pre">  </span>cpuacct<span class="gmail-Apple-tab-span" style="white-space:pre">       </span>= /sys/fs/cgroup/cpuacct;</div><div><span class="gmail-Apple-tab-span" style="white-space:pre">      </span>memory<span class="gmail-Apple-tab-span" style="white-space:pre">        </span>= /sys/fs/cgroup/memory;</div><div><span class="gmail-Apple-tab-span" style="white-space:pre">       </span>devices<span class="gmail-Apple-tab-span" style="white-space:pre">       </span>= /sys/fs/cgroup/devices;</div><div><span class="gmail-Apple-tab-span" style="white-space:pre">      </span>freezer<span class="gmail-Apple-tab-span" style="white-space:pre">       </span>= /sys/fs/cgroup/freezer;</div><div><span class="gmail-Apple-tab-span" style="white-space:pre">      </span>net_cls<span class="gmail-Apple-tab-span" style="white-space:pre">       </span>= /sys/fs/cgroup/net_cls;</div><div><span class="gmail-Apple-tab-span" style="white-space:pre">      </span>blkio<span class="gmail-Apple-tab-span" style="white-space:pre"> </span>= /sys/fs/cgroup/blkio;</div><div><span class="gmail-Apple-tab-span" style="white-space:pre">        </span>pids<span class="gmail-Apple-tab-span" style="white-space:pre">  </span>= /sys/fs/cgroup/pids;</div><div><span class="gmail-Apple-tab-span" style="white-space:pre"> </span>perf_event<span class="gmail-Apple-tab-span" style="white-space:pre">    </span>= /sys/fs/cgroup/perf_event;</div><div><span class="gmail-Apple-tab-span" style="white-space:pre">   </span>"name=systemd"<span class="gmail-Apple-tab-span" style="white-space:pre">      </span>= /sys/fs/cgroup/systemd;</div><div>}</div><div><br></div><div>group . {</div><div><span class="gmail-Apple-tab-span" style="white-space:pre">     </span>cpuset {cgroup.clone_children=1;}</div><div><span class="gmail-Apple-tab-span" style="white-space:pre">      </span>cpu {cgroup.clone_children=1;}</div><div><span class="gmail-Apple-tab-span" style="white-space:pre"> </span>cpuacct {cgroup.clone_children=1;}</div><div><span class="gmail-Apple-tab-span" style="white-space:pre">     </span>memory {</div><div><span class="gmail-Apple-tab-span" style="white-space:pre">               </span>cgroup.clone_children=1;</div><div><span class="gmail-Apple-tab-span" style="white-space:pre">               </span>memory.use_hierarchy=1;</div><div><span class="gmail-Apple-tab-span" style="white-space:pre">        </span>}</div><div><span class="gmail-Apple-tab-span" style="white-space:pre">      </span>freezer {cgroup.clone_children=1;}</div><div><span class="gmail-Apple-tab-span" style="white-space:pre">     </span>net_cls {cgroup.clone_children=1;}</div><div><span class="gmail-Apple-tab-span" style="white-space:pre">     </span>blkio {cgroup.clone_children=1;}</div><div><span class="gmail-Apple-tab-span" style="white-space:pre">       </span>pids {cgroup.clone_children=1;}</div><div><span class="gmail-Apple-tab-span" style="white-space:pre">        </span>perf_event {cgroup.clone_children=1;}</div><div><span class="gmail-Apple-tab-span" style="white-space:pre">  </span>"name=systemd" {cgroup.clone_children=1;}</div><div>}</div></div><div><br></div></div><br></div><div class="gmail_extra">So I believe your system might work even without cgmanager, as long as you have systemd cgroup mounted on the host.</div><div class="gmail_extra"><br></div><div class="gmail_extra">-- </div><div class="gmail_extra">Fajar</div></div>