[Date Prev][Date Next] [Thread Prev][Thread Next] [Thread Index] [Date Index] [Author Index]

Re: [atomic-devel] fedora 25 - overlayfs - docker error

From: Kushal Das <mail kushaldas in>
To: Antonio Murdaca <amurdaca redhat com>
Cc: atomic-devel <atomic-devel projectatomic io>, Lokesh Mandvekar <lsm5 redhat com>
Subject: Re: [atomic-devel] fedora 25 - overlayfs - docker error
Date: Thu, 15 Sep 2016 00:50:05 +0530

On 12/09/16, Antonio Murdaca wrote:
> Updated Docker in F25 again with the latest docker-selinux commit
> https://bodhi.fedoraproject.org/updates/docker-1.12.1-12.git9a3752d.fc25
> 
Still failing, tested today.

[fedora kushal-f25 ~]$ uname -a
Linux kushal-f25.novalocal 4.8.0-0.rc5.git4.1.fc25.x86_64 #1 SMP Fri Sep
9 22:08:28 UTC 2016 x86_64 x86_64 x86_64 GNU/Linux
[fedora kushal-f25 ~]$ rpm -q docker-selinux docker selinux-policy
docker-selinux-1.12.1-12.git9a3752d.fc25.x86_64
docker-1.12.1-12.git9a3752d.fc25.x86_64
selinux-policy-3.13.1-211.fc25.noarch

$ sudo  docker run -it --rm centos:7
standard_init_linux.go:175: exec user process caused "permission denied"

>From journalctl

Sep 14 19:14:59 kushal-f25.novalocal systemd-machined[1128]: New machine 51b4d247cf2f105601eaebfc55c74b26.
Sep 14 19:14:59 kushal-f25.novalocal oci-systemd-hook[1145]: systemdhook <debug>: Skipping as container command is /bin/bash, not init or systemd
Sep 14 19:14:59 kushal-f25.novalocal systemd[1]: libcontainer-1152-systemd-test-default-dependencies.scope: Scope has no PIDs. Refusing.
Sep 14 19:14:59 kushal-f25.novalocal systemd[1]: libcontainer-1152-systemd-test-default-dependencies.scope: Scope has no PIDs. Refusing.
Sep 14 19:14:59 kushal-f25.novalocal audit[1051]: AVC avc:  denied  { entrypoint } for  pid=1051 comm="exe" path="/usr/bin/bash" dev="overlay" ino=18
Sep 14 19:14:59 kushal-f25.novalocal dockerd[880]: [73B blob data]
Sep 14 19:14:59 kushal-f25.novalocal systemd-machined[1128]: Machine 51b4d247cf2f105601eaebfc55c74b26 terminated.
Sep 14 19:14:59 kushal-f25.novalocal audit[880]: VIRT_CONTROL pid=880 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:docker_t:s0 msg='vm
Sep 14 19:14:59 kushal-f25.novalocal systemd[1]: libcontainer-1164-systemd-test-default-dependencies.scope: Scope has no PIDs. Refusing.
Sep 14 19:14:59 kushal-f25.novalocal docker[880]: time="2016-09-14T19:14:59.208938038Z" level=info msg="{Action=resize, Username=fedora, LoginUID=100
Sep 14 19:14:59 kushal-f25.novalocal systemd[1]: libcontainer-1164-systemd-test-default-dependencies.scope: Scope has no PIDs. Refusing.
Sep 14 19:14:59 kushal-f25.novalocal oci-register-machine[1173]: 2016/09/14 19:14:59 Register machine: poststop 51b4d247cf2f105601eaebfc55c74b26dcef9
Sep 14 19:14:59 kushal-f25.novalocal oci-register-machine[1173]: 2016/09/14 19:14:59 TerminateMachine failed: No machine '51b4d247cf2f105601eaebfc55c
Sep 14 19:14:59 kushal-f25.novalocal docker[880]: time="2016-09-14T19:14:59.281096569Z" level=error msg="Handler for POST /v1.24/containers/51b4d247c
Sep 14 19:14:59 kushal-f25.novalocal kernel: docker0: port 1(veth0648986) entered disabled state

Kushal
-- 
Fedora Cloud Engineer
CPython Core Developer
https://kushaldas.in
https://dgplug.org

Follow-Ups:
- Re: [atomic-devel] fedora 25 - overlayfs - docker error
  - From: Daniel J Walsh

References:
- [atomic-devel] fedora 25 - overlayfs - docker error
  - From: Dusty Mabe
- Re: [atomic-devel] fedora 25 - overlayfs - docker error
  - From: Daniel J Walsh
- Re: [atomic-devel] fedora 25 - overlayfs - docker error
  - From: Antonio Murdaca
- Re: [atomic-devel] fedora 25 - overlayfs - docker error
  - From: Kushal Das
- Re: [atomic-devel] fedora 25 - overlayfs - docker error
  - From: Antonio Murdaca
- Re: [atomic-devel] fedora 25 - overlayfs - docker error
  - From: Daniel J Walsh
- Re: [atomic-devel] fedora 25 - overlayfs - docker error
  - From: Antonio Murdaca

[Date Prev][Date Next] [Thread Prev][Thread Next] [Thread Index] [Date Index] [Author Index]