lxc containers fail to start in trusty with newer kernels
Bug #1317179 reported by
Seth Forshee
This bug affects 1 person
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
systemd (Ubuntu) |
Fix Released
|
Medium
|
Stéphane Graber | ||
Trusty |
Fix Released
|
Medium
|
Stéphane Graber |
Bug Description
When running a trusty userspace with a newer kernel (e.g. 3.15-rc4), attempting to start a container fails:
$ lxc-start -n p2
lxc_container: call to cgmanager_
lxc_container: Failed to create net_cls:p2
lxc_container: Error creating cgroup net_cls:p2
lxc_container: failed creating cgroups
lxc_container: failed to spawn 'p2'
Iiuc, this seems to be caused new cgroups in the kernel which aren't enabled for systemd but that lxc tries to configure anyway.
no longer affects: | lxc (Ubuntu) |
no longer affects: | lxc |
description: | updated |
To post a comment you must log in.
The variable JoinControllers in /etc/systemd/ system. cofn should include net_cls. Otherwise when newer kernel is used in trusty, users will not by default be able to use unprivileged containers.