Bug#915397: systemd-container: fails to start a container going through machines.target or machinectl

Michael Biebl biebl at debian.org
Mon Dec 3 16:14:58 GMT 2018 

Am 03.12.18 um 16:45 schrieb ed.gomez at free.fr:
>> I assume the main difference is that you are not using a Debian
>> provided
>> kernel and I do?
> 
> Yes i'm running my own compiled 4.19.5 kernel, old habit of mine to use make-kpkg builds.
> 
> I'll install the standard debian kernel and give a try on next reboot (may not happen before end of the week).
> 
> In the meantime, do you have any specific kernel setting that comes to mind that can explain this odd systemd-nspawn behavior ?

# grep CGROUP /boot/config-4.18.0-3-amd64 
CONFIG_CGROUPS=y
CONFIG_BLK_CGROUP=y
# CONFIG_DEBUG_BLK_CGROUP is not set
CONFIG_CGROUP_WRITEBACK=y
CONFIG_CGROUP_SCHED=y
CONFIG_CGROUP_PIDS=y
# CONFIG_CGROUP_RDMA is not set
CONFIG_CGROUP_FREEZER=y
# CONFIG_CGROUP_HUGETLB is not set
CONFIG_CGROUP_DEVICE=y
CONFIG_CGROUP_CPUACCT=y
CONFIG_CGROUP_PERF=y
CONFIG_CGROUP_BPF=y
# CONFIG_CGROUP_DEBUG is not set
CONFIG_SOCK_CGROUP_DATA=y
CONFIG_NETFILTER_XT_MATCH_CGROUP=m
CONFIG_NET_CLS_CGROUP=m
CONFIG_CGROUP_NET_PRIO=y
CONFIG_CGROUP_NET_CLASSID=y

See also /usr/share/doc/systemd/README.gz

# findmnt 
TARGET                                SOURCE         FSTYPE              OPTIONS
...
│ ├─/sys/fs/cgroup                    tmpfs          tmpfs               ro,nosuid,nodev,noexec,mode=755
│ │ ├─/sys/fs/cgroup/unified          cgroup2        cgroup2             rw,nosuid,nodev,noexec,relatime
│ │ ├─/sys/fs/cgroup/systemd          cgroup         cgroup              rw,nosuid,nodev,noexec,relatime,xattr,name=systemd
│ │ ├─/sys/fs/cgroup/cpu,cpuacct      cgroup         cgroup              rw,nosuid,nodev,noexec,relatime,cpu,cpuacct
│ │ ├─/sys/fs/cgroup/pids             cgroup         cgroup              rw,nosuid,nodev,noexec,relatime,pids
│ │ ├─/sys/fs/cgroup/freezer          cgroup         cgroup              rw,nosuid,nodev,noexec,relatime,freezer
│ │ ├─/sys/fs/cgroup/blkio            cgroup         cgroup              rw,nosuid,nodev,noexec,relatime,blkio
│ │ ├─/sys/fs/cgroup/memory           cgroup         cgroup              rw,nosuid,nodev,noexec,relatime,memory
│ │ ├─/sys/fs/cgroup/net_cls,net_prio cgroup         cgroup              rw,nosuid,nodev,noexec,relatime,net_cls,net_prio
│ │ ├─/sys/fs/cgroup/cpuset           cgroup         cgroup              rw,nosuid,nodev,noexec,relatime,cpuset,clone_children
│ │ ├─/sys/fs/cgroup/devices          cgroup         cgroup              rw,nosuid,nodev,noexec,relatime,devices
│ │ └─/sys/fs/cgroup/perf_event       cgroup         cgroup              rw,nosuid,nodev,noexec,relatime,perf_event

Maybe check if cgroup2 is mounted for you.

-- 
Why is it that all of the instruments seeking intelligent life in the
universe are pointed away from Earth?

-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 833 bytes
Desc: OpenPGP digital signature
URL: <http://alioth-lists.debian.net/pipermail/pkg-systemd-maintainers/attachments/20181203/91096ee3/attachment.sig>

More information about the Pkg-systemd-maintainers mailing list