[Date Prev][Date Next] [Thread Prev][Thread Next] [Thread Index] [Date Index] [Author Index]

Re: [atomic-devel] fedora 25 - overlayfs - docker error

From: Daniel J Walsh <dwalsh redhat com>
To: Kushal Das <mail kushaldas in>, Antonio Murdaca <amurdaca redhat com>
Cc: atomic-devel <atomic-devel projectatomic io>, Lokesh Mandvekar <lsm5 redhat com>
Subject: Re: [atomic-devel] fedora 25 - overlayfs - docker error
Date: Thu, 15 Sep 2016 04:39:28 -0400


On 09/14/2016 03:20 PM, Kushal Das wrote:
> On 12/09/16, Antonio Murdaca wrote:
>> Updated Docker in F25 again with the latest docker-selinux commit
>> https://bodhi.fedoraproject.org/updates/docker-1.12.1-12.git9a3752d.fc25
>>
> Still failing, tested today.
>
> [fedora kushal-f25 ~]$ uname -a
> Linux kushal-f25.novalocal 4.8.0-0.rc5.git4.1.fc25.x86_64 #1 SMP Fri Sep
> 9 22:08:28 UTC 2016 x86_64 x86_64 x86_64 GNU/Linux
> [fedora kushal-f25 ~]$ rpm -q docker-selinux docker selinux-policy
> docker-selinux-1.12.1-12.git9a3752d.fc25.x86_64
> docker-1.12.1-12.git9a3752d.fc25.x86_64
> selinux-policy-3.13.1-211.fc25.noarch
>
> $ sudo  docker run -it --rm centos:7
> standard_init_linux.go:175: exec user process caused "permission denied"
>
> From journalctl
>
> Sep 14 19:14:59 kushal-f25.novalocal systemd-machined[1128]: New machine 51b4d247cf2f105601eaebfc55c74b26.
> Sep 14 19:14:59 kushal-f25.novalocal oci-systemd-hook[1145]: systemdhook <debug>: Skipping as container command is /bin/bash, not init or systemd
> Sep 14 19:14:59 kushal-f25.novalocal systemd[1]: libcontainer-1152-systemd-test-default-dependencies.scope: Scope has no PIDs. Refusing.
> Sep 14 19:14:59 kushal-f25.novalocal systemd[1]: libcontainer-1152-systemd-test-default-dependencies.scope: Scope has no PIDs. Refusing.
> Sep 14 19:14:59 kushal-f25.novalocal audit[1051]: AVC avc:  denied  { entrypoint } for  pid=1051 comm="exe" path="/usr/bin/bash" dev="overlay" ino=18
> Sep 14 19:14:59 kushal-f25.novalocal dockerd[880]: [73B blob data]
> Sep 14 19:14:59 kushal-f25.novalocal systemd-machined[1128]: Machine 51b4d247cf2f105601eaebfc55c74b26 terminated.
> Sep 14 19:14:59 kushal-f25.novalocal audit[880]: VIRT_CONTROL pid=880 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:docker_t:s0 msg='vm
> Sep 14 19:14:59 kushal-f25.novalocal systemd[1]: libcontainer-1164-systemd-test-default-dependencies.scope: Scope has no PIDs. Refusing.
> Sep 14 19:14:59 kushal-f25.novalocal docker[880]: time="2016-09-14T19:14:59.208938038Z" level=info msg="{Action=resize, Username=fedora, LoginUID=100
> Sep 14 19:14:59 kushal-f25.novalocal systemd[1]: libcontainer-1164-systemd-test-default-dependencies.scope: Scope has no PIDs. Refusing.
> Sep 14 19:14:59 kushal-f25.novalocal oci-register-machine[1173]: 2016/09/14 19:14:59 Register machine: poststop 51b4d247cf2f105601eaebfc55c74b26dcef9
> Sep 14 19:14:59 kushal-f25.novalocal oci-register-machine[1173]: 2016/09/14 19:14:59 TerminateMachine failed: No machine '51b4d247cf2f105601eaebfc55c
> Sep 14 19:14:59 kushal-f25.novalocal docker[880]: time="2016-09-14T19:14:59.281096569Z" level=error msg="Handler for POST /v1.24/containers/51b4d247c
> Sep 14 19:14:59 kushal-f25.novalocal kernel: docker0: port 1(veth0648986) entered disabled state
>
> Kushal
Please try with

docker-1.12.1-11.git9a3752d.fc25

References:
- [atomic-devel] fedora 25 - overlayfs - docker error
  - From: Dusty Mabe
- Re: [atomic-devel] fedora 25 - overlayfs - docker error
  - From: Daniel J Walsh
- Re: [atomic-devel] fedora 25 - overlayfs - docker error
  - From: Antonio Murdaca
- Re: [atomic-devel] fedora 25 - overlayfs - docker error
  - From: Kushal Das
- Re: [atomic-devel] fedora 25 - overlayfs - docker error
  - From: Antonio Murdaca
- Re: [atomic-devel] fedora 25 - overlayfs - docker error
  - From: Daniel J Walsh
- Re: [atomic-devel] fedora 25 - overlayfs - docker error
  - From: Antonio Murdaca
- Re: [atomic-devel] fedora 25 - overlayfs - docker error
  - From: Kushal Das

[Date Prev][Date Next] [Thread Prev][Thread Next] [Thread Index] [Date Index] [Author Index]