Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

run container failed: cannot create sandbox: cannot read client sync file: waiting for sandbox to start: EOF: unknown. #10295

Closed
cncal opened this issue Apr 18, 2024 · 2 comments
Closed

run container failed: cannot create sandbox: cannot read client sync file: waiting for sandbox to start: EOF: unknown. #10295

cncal opened this issue Apr 18, 2024 · 2 comments
Assignees
@manninglucas
Labels
type: bug Something isn't working

Comments

@cncal
Copy link
Contributor

cncal commented Apr 18, 2024
edited
Loading

Description

I try to run a docker container with runsc runtime, but failed:

[root@cicd runsc]# docker run --runtime=runsc -it --network=host  third-part/code-server-build/ubuntu-base:v20.04-amd64 bash
docker: Error response from daemon: OCI runtime create failed: creating container: cannot create sandbox: cannot read client sync file: waiting for sandbox to start: EOF: unknown.

runsc version

runsc version release-20240311.0
spec: 1.1.0-rc.1

docker version (if using docker)

Containers: 79
 Running: 0
 Paused: 0
 Stopped: 79
Images: 484
Server Version: 18.09.5
Storage Driver: overlay2
 Backing Filesystem: extfs
 Supports d_type: true
 Native Overlay Diff: false
Logging Driver: json-file
Cgroup Driver: cgroupfs
Plugins:
 Volume: local
 Network: bridge host ipvlan macvlan null overlay
 Log: awslogs fluentd gcplogs gelf journald json-file local logentries splunk syslog
Swarm: inactive
Runtimes: runc runsc
Default Runtime: runc
Init Binary: docker-init
containerd version: bb71b10fd8f58240ca47fbb579b9d1028eea7c84
runc version: 2b18fe1d885ee5083ef9f0838fee39b62d653e30
init version: fec3683
Security Options:
 seccomp
  Profile: default
Kernel Version: 3.10.0-327.el7.x86_64
Operating System: CentOS Linux 7 (Core)
OSType: linux
Architecture: x86_64
CPUs: 64
Total Memory: 125.6GiB
Name: cicd-amd64-192-168-2-31
ID: NNAG:FIKR:QVTR:KCJJ:AAUT:7P7U:CG6M:V4KS:SO2X:64YN:MV5L:IZ6D
Docker Root Dir: /var/lib/docker
Debug Mode (client): false
Debug Mode (server): false
Registry: https://index.docker.io/v1/
Labels:
Experimental: true
Insecure Registries:
 harbor.loongnix.org
 127.0.0.0/8
Live Restore Enabled: false
Product License: Community Engine

WARNING: bridge-nf-call-iptables is disabled
WARNING: bridge-nf-call-ip6tables is disabled

uname

Linux cicd 3.10.0-327.el7.x86_64 #1 SMP Thu Nov 19 22:10:57 UTC 2015 x86_64 x86_64 x86_64 GNU/Linux

runsc debug logs (if available)

create.txt:

I0418 17:42:09.137693   37866 main.go:194] **************** gVisor ****************
I0418 17:42:09.137809   37866 main.go:195] Version release-20240311.0, go1.22.0 X:nocoverageredesign, amd64, 64 CPUs, linux, PID 37866, PPID 37865, UID 0, GID 0
D0418 17:42:09.137837   37866 main.go:196] Page size: 0x1000 (4096 bytes)
I0418 17:42:09.137860   37866 main.go:197] Args: [/usr/local/bin/runsc --platform=kvm --network=host --debug-log=/tmp/runsc/ --debug --strace --root /var/run/docker/runtime-runsc/moby --log /run/containerd/io.containerd.runtime.v1.linux/moby/02eaf66b29db68c4472a6774ba8b478c764b3273629ec7e447257c8f1ca43efd/log.json --log-format json create --bundle /run/containerd/io.containerd.runtime.v1.linux/moby/02eaf66b29db68c4472a6774ba8b478c764b3273629ec7e447257c8f1ca43efd --pid-file /run/containerd/io.containerd.runtime.v1.linux/moby/02eaf66b29db68c4472a6774ba8b478c764b3273629ec7e447257c8f1ca43efd/init.pid --console-socket /tmp/pty364179228/pty.sock 02eaf66b29db68c4472a6774ba8b478c764b3273629ec7e447257c8f1ca43efd]
I0418 17:42:09.137905   37866 config.go:395] Platform: kvm
I0418 17:42:09.137940   37866 config.go:396] RootDir: /var/run/docker/runtime-runsc/moby
I0418 17:42:09.137956   37866 config.go:397] FileAccess: exclusive / Directfs: true / Overlay: root:self
I0418 17:42:09.137978   37866 config.go:398] Network: host
I0418 17:42:09.137998   37866 config.go:400] Debug: true. Strace: true, max size: 1024, syscalls: 
D0418 17:42:09.138022   37866 config.go:412] Config.RootDir (--root): /var/run/docker/runtime-runsc/moby
D0418 17:42:09.138057   37866 config.go:412] Config.Traceback (--traceback): system
D0418 17:42:09.138084   37866 config.go:412] Config.Debug (--debug): <bool Value>
D0418 17:42:09.138100   37866 config.go:412] Config.LogFilename (--log): /run/containerd/io.containerd.runtime.v1.linux/moby/02eaf66b29db68c4472a6774ba8b478c764b3273629ec7e447257c8f1ca43efd/log.json
D0418 17:42:09.138114   37866 config.go:412] Config.LogFormat (--log-format): json
D0418 17:42:09.138127   37866 config.go:412] Config.DebugLog (--debug-log): /tmp/runsc/
D0418 17:42:09.138140   37866 config.go:412] Config.DebugToUserLog (--debug-to-user-log): <bool Value>
D0418 17:42:09.138153   37866 config.go:412] Config.DebugCommand (--debug-command): (empty)
D0418 17:42:09.138166   37866 config.go:412] Config.PanicLog (--panic-log): (empty)
D0418 17:42:09.138179   37866 config.go:412] Config.CoverageReport (--coverage-report): (empty)
D0418 17:42:09.138191   37866 config.go:412] Config.DebugLogFormat (--debug-log-format): text
D0418 17:42:09.138204   37866 config.go:412] Config.FileAccess (--file-access): <config.FileAccessType Value>
D0418 17:42:09.138218   37866 config.go:412] Config.FileAccessMounts (--file-access-mounts): <config.FileAccessType Value>
D0418 17:42:09.138231   37866 config.go:412] Config.Overlay (--overlay): <bool Value>
D0418 17:42:09.138249   37866 config.go:412] Config.Overlay2 (--overlay2): <config.Overlay2 Value>
D0418 17:42:09.138263   37866 config.go:412] Config.FSGoferHostUDS (--fsgofer-host-uds): <bool Value>
D0418 17:42:09.138278   37866 config.go:412] Config.HostUDS (--host-uds): <config.HostUDS Value>
D0418 17:42:09.138292   37866 config.go:412] Config.HostFifo (--host-fifo): <config.HostFifo Value>
D0418 17:42:09.138305   37866 config.go:412] Config.Network (--network): <config.NetworkType Value>
D0418 17:42:09.138318   37866 config.go:412] Config.EnableRaw (--net-raw): <bool Value>
D0418 17:42:09.138331   37866 config.go:412] Config.AllowPacketEndpointWrite (--TESTONLY-allow-packet-endpoint-write): <bool Value>
D0418 17:42:09.138345   37866 config.go:412] Config.HostGSO (--gso): <bool Value>
D0418 17:42:09.138358   37866 config.go:412] Config.GvisorGSO (--software-gso): <bool Value>
D0418 17:42:09.138372   37866 config.go:412] Config.GvisorGROTimeout (--gvisor-gro): <time.Duration Value>
D0418 17:42:09.138385   37866 config.go:412] Config.TXChecksumOffload (--tx-checksum-offload): <bool Value>
D0418 17:42:09.138398   37866 config.go:412] Config.RXChecksumOffload (--rx-checksum-offload): <bool Value>
D0418 17:42:09.138411   37866 config.go:412] Config.QDisc (--qdisc): <config.QueueingDiscipline Value>
D0418 17:42:09.138437   37866 config.go:412] Config.LogPackets (--log-packets): <bool Value>
D0418 17:42:09.138466   37866 config.go:412] Config.PCAP (--pcap-log): (empty)
D0418 17:42:09.138480   37866 config.go:412] Config.Platform (--platform): kvm
D0418 17:42:09.138493   37866 config.go:412] Config.PlatformDevicePath (--platform_device_path): (empty)
D0418 17:42:09.138505   37866 config.go:412] Config.MetricServer (--metric-server): (empty)
D0418 17:42:09.138519   37866 config.go:412] Config.ProfilingMetrics (--profiling-metrics): (empty)
D0418 17:42:09.138531   37866 config.go:412] Config.ProfilingMetricsLog (--profiling-metrics-log): (empty)
D0418 17:42:09.138545   37866 config.go:412] Config.ProfilingMetricsRate (--profiling-metrics-rate-us): <int Value>
D0418 17:42:09.138558   37866 config.go:412] Config.Strace (--strace): <bool Value>
D0418 17:42:09.138571   37866 config.go:412] Config.StraceSyscalls (--strace-syscalls): (empty)
D0418 17:42:09.138584   37866 config.go:412] Config.StraceLogSize (--strace-log-size): <uint Value>
D0418 17:42:09.138597   37866 config.go:412] Config.StraceEvent (--strace-event): <bool Value>
D0418 17:42:09.138610   37866 config.go:414] Config.DisableSeccomp: <bool Value>
D0418 17:42:09.138628   37866 config.go:412] Config.EnableCoreTags (--enable-core-tags): <bool Value>
D0418 17:42:09.138644   37866 config.go:412] Config.WatchdogAction (--watchdog-action): <watchdog.Action Value>
D0418 17:42:09.138658   37866 config.go:412] Config.PanicSignal (--panic-signal): <int Value>
D0418 17:42:09.138672   37866 config.go:412] Config.ProfileEnable (--profile): <bool Value>
D0418 17:42:09.138684   37866 config.go:412] Config.ProfileBlock (--profile-block): (empty)
D0418 17:42:09.138697   37866 config.go:412] Config.ProfileCPU (--profile-cpu): (empty)
D0418 17:42:09.138710   37866 config.go:412] Config.ProfileHeap (--profile-heap): (empty)
D0418 17:42:09.138722   37866 config.go:412] Config.ProfileMutex (--profile-mutex): (empty)
D0418 17:42:09.138735   37866 config.go:412] Config.TraceFile (--trace): (empty)
D0418 17:42:09.138748   37866 config.go:414] Config.RestoreFile: (empty)
D0418 17:42:09.138763   37866 config.go:412] Config.NumNetworkChannels (--num-network-channels): <int Value>
D0418 17:42:09.138777   37866 config.go:412] Config.Rootless (--rootless): <bool Value>
D0418 17:42:09.138790   37866 config.go:412] Config.AlsoLogToStderr (--alsologtostderr): <bool Value>
D0418 17:42:09.138804   37866 config.go:412] Config.ReferenceLeak (--ref-leak-mode): <refs.LeakMode Value>
D0418 17:42:09.138817   37866 config.go:412] Config.CPUNumFromQuota (--cpu-num-from-quota): <bool Value>
D0418 17:42:09.138830   37866 config.go:412] Config.AllowFlagOverride (--allow-flag-override): <bool Value>
D0418 17:42:09.138844   37866 config.go:412] Config.OCISeccomp (--oci-seccomp): <bool Value>
D0418 17:42:09.138857   37866 config.go:412] Config.IgnoreCgroups (--ignore-cgroups): <bool Value>
D0418 17:42:09.138870   37866 config.go:412] Config.SystemdCgroup (--systemd-cgroup): <bool Value>
D0418 17:42:09.138883   37866 config.go:412] Config.PodInitConfig (--pod-init-config): (empty)
D0418 17:42:09.138896   37866 config.go:412] Config.BufferPooling (--buffer-pooling): <bool Value>
D0418 17:42:09.138908   37866 config.go:412] Config.XDP (--EXPERIMENTAL-xdp): <config.XDP Value>
D0418 17:42:09.138922   37866 config.go:412] Config.AFXDPUseNeedWakeup (--EXPERIMENTAL-xdp-need-wakeup): <bool Value>
D0418 17:42:09.138935   37866 config.go:412] Config.FDLimit (--fdlimit): <int Value>
D0418 17:42:09.138951   37866 config.go:412] Config.DCache (--dcache): <int Value>
D0418 17:42:09.138964   37866 config.go:412] Config.IOUring (--iouring): <bool Value>
D0418 17:42:09.138977   37866 config.go:412] Config.DirectFS (--directfs): <bool Value>
D0418 17:42:09.138990   37866 config.go:412] Config.NVProxy (--nvproxy): <bool Value>
D0418 17:42:09.139003   37866 config.go:412] Config.NVProxyDocker (--nvproxy-docker): <bool Value>
D0418 17:42:09.139026   37866 config.go:412] Config.TPUProxy (--tpuproxy): <bool Value>
D0418 17:42:09.139067   37866 config.go:412] Config.TestOnlyAllowRunAsCurrentUserWithoutChroot (--TESTONLY-unsafe-nonroot): <bool Value>
D0418 17:42:09.139085   37866 config.go:412] Config.TestOnlyTestNameEnv (--TESTONLY-test-name-env): (empty)
D0418 17:42:09.139098   37866 config.go:412] Config.TestOnlyAFSSyscallPanic (--TESTONLY-afs-syscall-panic): <bool Value>
D0418 17:42:09.139123   37866 config.go:414] Config.explicitlySet: <map[string]struct {} Value>
D0418 17:42:09.139138   37866 config.go:412] Config.ReproduceNAT (--reproduce-nat): <bool Value>
D0418 17:42:09.139152   37866 config.go:412] Config.ReproduceNftables (--reproduce-nftables): <bool Value>
D0418 17:42:09.139165   37866 config.go:412] Config.TestOnlyAutosaveImagePath (--TESTONLY-autosave-image-path): (empty)
I0418 17:42:09.139176   37866 main.go:199] **************** gVisor ****************
W0418 17:42:09.142262   37866 specutils.go:125] noNewPrivileges ignored. PR_SET_NO_NEW_PRIVS is assumed to always be set.
D0418 17:42:09.143023   37866 specutils.go:87] Spec:
{
  "ociVersion": "1.0.1-dev",
  "process": {
    "terminal": true,
    "user": {
      "uid": 0,
      "gid": 0
    },
    "args": [
      "/init",
      "bash"
    ],
    "env": [
      "PATH=/lsiopy/bin:/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/bin",
      "HOSTNAME=cicd-amd64-192-168-2-31",
      "TERM=xterm",
      "HOME=/root",
      "LANGUAGE=en_US.UTF-8",
      "LANG=en_US.UTF-8",
      "S6_CMD_WAIT_FOR_SERVICES_MAXTIME=0",
      "S6_VERBOSITY=1",
      "S6_STAGE2_HOOK=/docker-mods",
      "VIRTUAL_ENV=/lsiopy"
    ],
    "cwd": "/",
    "oomScoreAdj": 0
  },
  "root": {
    "path": "/var/lib/docker/overlay2/657bb2dfe3f13a55fe09b3af10f21cf3eeccab435e138ec0fc000c86f2ecfb59/merged"
  },
  "hostname": "cicd-amd64-192-168-2-31",
  "mounts": [
    {
      "destination": "/proc",
      "type": "proc",
      "source": "/run/containerd/io.containerd.runtime.v1.linux/moby/02eaf66b29db68c4472a6774ba8b478c764b3273629ec7e447257c8f1ca43efd/proc",
      "options": [
        "nosuid",
        "noexec",
        "nodev"
      ]
    },
    {
      "destination": "/dev",
      "type": "tmpfs",
      "source": "/run/containerd/io.containerd.runtime.v1.linux/moby/02eaf66b29db68c4472a6774ba8b478c764b3273629ec7e447257c8f1ca43efd/tmpfs",
      "options": [
        "nosuid",
        "strictatime",
        "mode=755",
        "size=65536k"
      ]
    },
    {
      "destination": "/dev/pts",
      "type": "devpts",
      "source": "/run/containerd/io.containerd.runtime.v1.linux/moby/02eaf66b29db68c4472a6774ba8b478c764b3273629ec7e447257c8f1ca43efd/devpts",
      "options": [
        "nosuid",
        "noexec",
        "newinstance",
        "ptmxmode=0666",
        "mode=0620",
        "gid=5"
      ]
    },
    {
      "destination": "/sys",
      "type": "sysfs",
      "source": "/run/containerd/io.containerd.runtime.v1.linux/moby/02eaf66b29db68c4472a6774ba8b478c764b3273629ec7e447257c8f1ca43efd/sysfs",
      "options": [
        "nosuid",
        "noexec",
        "nodev",
        "ro"
      ]
    },
    {
      "destination": "/sys/fs/cgroup",
      "type": "cgroup",
      "source": "/run/containerd/io.containerd.runtime.v1.linux/moby/02eaf66b29db68c4472a6774ba8b478c764b3273629ec7e447257c8f1ca43efd/cgroup",
      "options": [
        "ro",
        "nosuid",
        "noexec",
        "nodev"
      ]
    },
    {
      "destination": "/dev/mqueue",
      "type": "mqueue",
      "source": "/run/containerd/io.containerd.runtime.v1.linux/moby/02eaf66b29db68c4472a6774ba8b478c764b3273629ec7e447257c8f1ca43efd/mqueue",
      "options": [
        "nosuid",
        "noexec",
        "nodev"
      ]
    },
    {
      "destination": "/etc/resolv.conf",
      "type": "bind",
      "source": "/var/lib/docker/containers/02eaf66b29db68c4472a6774ba8b478c764b3273629ec7e447257c8f1ca43efd/resolv.conf",
      "options": [
        "rbind",
        "rprivate"
      ]
    },
    {
      "destination": "/etc/hostname",
      "type": "bind",
      "source": "/var/lib/docker/containers/02eaf66b29db68c4472a6774ba8b478c764b3273629ec7e447257c8f1ca43efd/hostname",
      "options": [
        "rbind",
        "rprivate"
      ]
    },
    {
      "destination": "/etc/hosts",
      "type": "bind",
      "source": "/var/lib/docker/containers/02eaf66b29db68c4472a6774ba8b478c764b3273629ec7e447257c8f1ca43efd/hosts",
      "options": [
        "rbind",
        "rprivate"
      ]
    },
    {
      "destination": "/dev/shm",
      "type": "bind",
      "source": "/var/lib/docker/containers/02eaf66b29db68c4472a6774ba8b478c764b3273629ec7e447257c8f1ca43efd/mounts/shm",
      "options": [
        "rbind",
        "rprivate"
      ]
    }
  ],
  "linux": {
    "resources": {
      "memory": {
        "disableOOMKiller": false
      },
      "cpu": {
        "shares": 0
      },
      "pids": {
        "limit": 0
      },
      "blockIO": {
        "weight": 0
      }
    },
    "cgroupsPath": "/docker/02eaf66b29db68c4472a6774ba8b478c764b3273629ec7e447257c8f1ca43efd",
    "namespaces": [
      {
        "type": "mount"
      },
      {
        "type": "network",
        "path": "/var/run/docker/netns/default"
      },
      {
        "type": "uts"
      },
      {
        "type": "pid"
      },
      {
        "type": "ipc"
      }
    ]
  }
}
D0418 17:42:09.143139   37866 container.go:198] Create container, cid: 02eaf66b29db68c4472a6774ba8b478c764b3273629ec7e447257c8f1ca43efd, rootDir: "/var/run/docker/runtime-runsc/moby"
D0418 17:42:09.143302   37866 container.go:260] Creating new sandbox for container, cid: 02eaf66b29db68c4472a6774ba8b478c764b3273629ec7e447257c8f1ca43efd
D0418 17:42:09.143378   37866 cgroup.go:410] New cgroup for pid: self, *cgroup.cgroupV1: &{Name:/docker/02eaf66b29db68c4472a6774ba8b478c764b3273629ec7e447257c8f1ca43efd Parents:map[] Own:map[]}
D0418 17:42:09.143485   37866 cgroup.go:483] Installing cgroup path "/docker/02eaf66b29db68c4472a6774ba8b478c764b3273629ec7e447257c8f1ca43efd"
I0418 17:42:09.143666   37866 cgroup.go:511] Skipping cgroup "rdma", err: stat /sys/fs/cgroup/rdma: no such file or directory
D0418 17:42:09.143705   37866 cgroup.go:539] Creating cgroup "systemd": "/sys/fs/cgroup/systemd/docker/02eaf66b29db68c4472a6774ba8b478c764b3273629ec7e447257c8f1ca43efd"
D0418 17:42:09.143785   37866 cgroup.go:539] Creating cgroup "hugetlb": "/sys/fs/cgroup/hugetlb/docker/02eaf66b29db68c4472a6774ba8b478c764b3273629ec7e447257c8f1ca43efd"
D0418 17:42:09.143879   37866 cgroup.go:539] Creating cgroup "memory": "/sys/fs/cgroup/memory/docker/02eaf66b29db68c4472a6774ba8b478c764b3273629ec7e447257c8f1ca43efd"
I0418 17:42:09.144131   37866 cgroup.go:511] Skipping cgroup "pids", err: stat /sys/fs/cgroup/pids: no such file or directory
D0418 17:42:09.144171   37866 cgroup.go:539] Creating cgroup "cpuacct": "/sys/fs/cgroup/cpuacct/docker/02eaf66b29db68c4472a6774ba8b478c764b3273629ec7e447257c8f1ca43efd"
D0418 17:42:09.144568   37866 cgroup.go:539] Creating cgroup "perf_event": "/sys/fs/cgroup/perf_event/docker/02eaf66b29db68c4472a6774ba8b478c764b3273629ec7e447257c8f1ca43efd"
D0418 17:42:09.144638   37866 cgroup.go:539] Creating cgroup "blkio": "/sys/fs/cgroup/blkio/docker/02eaf66b29db68c4472a6774ba8b478c764b3273629ec7e447257c8f1ca43efd"
D0418 17:42:09.144762   37866 cgroup.go:539] Creating cgroup "cpu": "/sys/fs/cgroup/cpu/docker/02eaf66b29db68c4472a6774ba8b478c764b3273629ec7e447257c8f1ca43efd"
D0418 17:42:09.144797   37866 cgroup.go:539] Creating cgroup "net_cls": "/sys/fs/cgroup/net_cls/docker/02eaf66b29db68c4472a6774ba8b478c764b3273629ec7e447257c8f1ca43efd"
D0418 17:42:09.144853   37866 cgroup.go:539] Creating cgroup "cpuset": "/sys/fs/cgroup/cpuset/docker/02eaf66b29db68c4472a6774ba8b478c764b3273629ec7e447257c8f1ca43efd"
I0418 17:42:09.146551   37866 cgroup.go:511] Skipping cgroup "net_prio", err: stat /sys/fs/cgroup/net_prio: no such file or directory
D0418 17:42:09.146593   37866 cgroup.go:539] Creating cgroup "freezer": "/sys/fs/cgroup/freezer/docker/02eaf66b29db68c4472a6774ba8b478c764b3273629ec7e447257c8f1ca43efd"
D0418 17:42:09.146685   37866 cgroup.go:539] Creating cgroup "devices": "/sys/fs/cgroup/devices/docker/02eaf66b29db68c4472a6774ba8b478c764b3273629ec7e447257c8f1ca43efd"
D0418 17:42:09.146903   37866 container.go:1041] Created filestore file at "/var/lib/docker/overlay2/657bb2dfe3f13a55fe09b3af10f21cf3eeccab435e138ec0fc000c86f2ecfb59/merged/.gvisor.filestore.02eaf66b29db68c4472a6774ba8b478c764b3273629ec7e447257c8f1ca43efd" for mount source "/var/lib/docker/overlay2/657bb2dfe3f13a55fe09b3af10f21cf3eeccab435e138ec0fc000c86f2ecfb59/merged"
D0418 17:42:09.147342   37866 cgroup.go:616] Joining cgroup "/sys/fs/cgroup/memory/docker/02eaf66b29db68c4472a6774ba8b478c764b3273629ec7e447257c8f1ca43efd"
D0418 17:42:09.147379   37866 cgroup.go:116] Setting "/sys/fs/cgroup/memory/docker/02eaf66b29db68c4472a6774ba8b478c764b3273629ec7e447257c8f1ca43efd/cgroup.procs" to "0"
D0418 17:42:09.147480   37866 cgroup.go:616] Joining cgroup "/sys/fs/cgroup/pids/docker/02eaf66b29db68c4472a6774ba8b478c764b3273629ec7e447257c8f1ca43efd"
D0418 17:42:09.147502   37866 cgroup.go:116] Setting "/sys/fs/cgroup/pids/docker/02eaf66b29db68c4472a6774ba8b478c764b3273629ec7e447257c8f1ca43efd/cgroup.procs" to "0"
D0418 17:42:09.147529   37866 cgroup.go:616] Joining cgroup "/sys/fs/cgroup/cpuacct/docker/02eaf66b29db68c4472a6774ba8b478c764b3273629ec7e447257c8f1ca43efd"
D0418 17:42:09.147547   37866 cgroup.go:116] Setting "/sys/fs/cgroup/cpuacct/docker/02eaf66b29db68c4472a6774ba8b478c764b3273629ec7e447257c8f1ca43efd/cgroup.procs" to "0"
D0418 17:42:09.147607   37866 cgroup.go:616] Joining cgroup "/sys/fs/cgroup/perf_event/docker/02eaf66b29db68c4472a6774ba8b478c764b3273629ec7e447257c8f1ca43efd"
D0418 17:42:09.147629   37866 cgroup.go:116] Setting "/sys/fs/cgroup/perf_event/docker/02eaf66b29db68c4472a6774ba8b478c764b3273629ec7e447257c8f1ca43efd/cgroup.procs" to "0"
D0418 17:42:09.147683   37866 cgroup.go:616] Joining cgroup "/sys/fs/cgroup/rdma/docker/02eaf66b29db68c4472a6774ba8b478c764b3273629ec7e447257c8f1ca43efd"
D0418 17:42:09.147706   37866 cgroup.go:116] Setting "/sys/fs/cgroup/rdma/docker/02eaf66b29db68c4472a6774ba8b478c764b3273629ec7e447257c8f1ca43efd/cgroup.procs" to "0"
D0418 17:42:09.147734   37866 cgroup.go:616] Joining cgroup "/sys/fs/cgroup/systemd/docker/02eaf66b29db68c4472a6774ba8b478c764b3273629ec7e447257c8f1ca43efd"
D0418 17:42:09.147752   37866 cgroup.go:116] Setting "/sys/fs/cgroup/systemd/docker/02eaf66b29db68c4472a6774ba8b478c764b3273629ec7e447257c8f1ca43efd/cgroup.procs" to "0"
D0418 17:42:09.147797   37866 cgroup.go:616] Joining cgroup "/sys/fs/cgroup/hugetlb/docker/02eaf66b29db68c4472a6774ba8b478c764b3273629ec7e447257c8f1ca43efd"
D0418 17:42:09.147817   37866 cgroup.go:116] Setting "/sys/fs/cgroup/hugetlb/docker/02eaf66b29db68c4472a6774ba8b478c764b3273629ec7e447257c8f1ca43efd/cgroup.procs" to "0"
D0418 17:42:09.147882   37866 cgroup.go:616] Joining cgroup "/sys/fs/cgroup/cpu/docker/02eaf66b29db68c4472a6774ba8b478c764b3273629ec7e447257c8f1ca43efd"
D0418 17:42:09.147905   37866 cgroup.go:116] Setting "/sys/fs/cgroup/cpu/docker/02eaf66b29db68c4472a6774ba8b478c764b3273629ec7e447257c8f1ca43efd/cgroup.procs" to "0"
D0418 17:42:09.147948   37866 cgroup.go:616] Joining cgroup "/sys/fs/cgroup/net_cls/docker/02eaf66b29db68c4472a6774ba8b478c764b3273629ec7e447257c8f1ca43efd"
D0418 17:42:09.147967   37866 cgroup.go:116] Setting "/sys/fs/cgroup/net_cls/docker/02eaf66b29db68c4472a6774ba8b478c764b3273629ec7e447257c8f1ca43efd/cgroup.procs" to "0"
D0418 17:42:09.148013   37866 cgroup.go:616] Joining cgroup "/sys/fs/cgroup/blkio/docker/02eaf66b29db68c4472a6774ba8b478c764b3273629ec7e447257c8f1ca43efd"
D0418 17:42:09.148033   37866 cgroup.go:116] Setting "/sys/fs/cgroup/blkio/docker/02eaf66b29db68c4472a6774ba8b478c764b3273629ec7e447257c8f1ca43efd/cgroup.procs" to "0"
D0418 17:42:09.148104   37866 cgroup.go:616] Joining cgroup "/sys/fs/cgroup/net_prio/docker/02eaf66b29db68c4472a6774ba8b478c764b3273629ec7e447257c8f1ca43efd"
D0418 17:42:09.148127   37866 cgroup.go:116] Setting "/sys/fs/cgroup/net_prio/docker/02eaf66b29db68c4472a6774ba8b478c764b3273629ec7e447257c8f1ca43efd/cgroup.procs" to "0"
D0418 17:42:09.148165   37866 cgroup.go:616] Joining cgroup "/sys/fs/cgroup/freezer/docker/02eaf66b29db68c4472a6774ba8b478c764b3273629ec7e447257c8f1ca43efd"
D0418 17:42:09.148197   37866 cgroup.go:116] Setting "/sys/fs/cgroup/freezer/docker/02eaf66b29db68c4472a6774ba8b478c764b3273629ec7e447257c8f1ca43efd/cgroup.procs" to "0"
D0418 17:42:09.148241   37866 cgroup.go:616] Joining cgroup "/sys/fs/cgroup/cpuset/docker/02eaf66b29db68c4472a6774ba8b478c764b3273629ec7e447257c8f1ca43efd"
D0418 17:42:09.148261   37866 cgroup.go:116] Setting "/sys/fs/cgroup/cpuset/docker/02eaf66b29db68c4472a6774ba8b478c764b3273629ec7e447257c8f1ca43efd/cgroup.procs" to "0"
D0418 17:42:09.148311   37866 cgroup.go:616] Joining cgroup "/sys/fs/cgroup/devices/docker/02eaf66b29db68c4472a6774ba8b478c764b3273629ec7e447257c8f1ca43efd"
D0418 17:42:09.148330   37866 cgroup.go:116] Setting "/sys/fs/cgroup/devices/docker/02eaf66b29db68c4472a6774ba8b478c764b3273629ec7e447257c8f1ca43efd/cgroup.procs" to "0"
D0418 17:42:09.148786   37866 donation.go:31] Donating FD 3: "/run/containerd/io.containerd.runtime.v1.linux/moby/02eaf66b29db68c4472a6774ba8b478c764b3273629ec7e447257c8f1ca43efd/log.json"
D0418 17:42:09.148824   37866 donation.go:31] Donating FD 4: "/tmp/runsc/runsc.log.20240418-174209.148414.gofer.txt"
D0418 17:42:09.148840   37866 donation.go:31] Donating FD 5: "/run/containerd/io.containerd.runtime.v1.linux/moby/02eaf66b29db68c4472a6774ba8b478c764b3273629ec7e447257c8f1ca43efd/config.json"
D0418 17:42:09.148856   37866 donation.go:31] Donating FD 6: "|1"
D0418 17:42:09.148867   37866 donation.go:31] Donating FD 7: "gofer IO FD"
D0418 17:42:09.148879   37866 donation.go:31] Donating FD 8: "gofer IO FD"
D0418 17:42:09.148895   37866 donation.go:31] Donating FD 9: "gofer IO FD"
D0418 17:42:09.148906   37866 donation.go:31] Donating FD 10: "gofer IO FD"
D0418 17:42:09.148918   37866 donation.go:31] Donating FD 11: "gofer IO FD"
D0418 17:42:09.148929   37866 container.go:1353] Starting gofer: /proc/self/exe [runsc-gofer --log-format=json --debug-log=/tmp/runsc/ --network=host --platform=kvm --strace=true --root=/var/run/docker/runtime-runsc/moby --debug=true --log=/run/containerd/io.containerd.runtime.v1.linux/moby/02eaf66b29db68c4472a6774ba8b478c764b3273629ec7e447257c8f1ca43efd/log.json --log-fd=3 --debug-log-fd=4 gofer --bundle /run/containerd/io.containerd.runtime.v1.linux/moby/02eaf66b29db68c4472a6774ba8b478c764b3273629ec7e447257c8f1ca43efd --gofer-mount-confs=lisafs:self,lisafs:none,lisafs:none,lisafs:none,lisafs:none --spec-fd=5 --mounts-fd=6 --io-fds=7 --io-fds=8 --io-fds=9 --io-fds=10 --io-fds=11]
I0418 17:42:09.154666   37866 container.go:1357] Gofer started, PID: 37873
D0418 17:42:09.155640   37866 sandbox.go:84] Attempting to create socket file "/var/run/docker/runtime-runsc/moby/runsc-02eaf66b29db68c4472a6774ba8b478c764b3273629ec7e447257c8f1ca43efd.sock"
D0418 17:42:09.155859   37866 sandbox.go:87] Using socket file "/var/run/docker/runtime-runsc/moby/runsc-02eaf66b29db68c4472a6774ba8b478c764b3273629ec7e447257c8f1ca43efd.sock"
I0418 17:42:09.155919   37866 sandbox.go:774] Control socket path: "/var/run/docker/runtime-runsc/moby/runsc-02eaf66b29db68c4472a6774ba8b478c764b3273629ec7e447257c8f1ca43efd.sock"
I0418 17:42:09.156020   37866 sandbox.go:809] Sandbox will be started in new mount, IPC and UTS namespaces
I0418 17:42:09.156076   37866 sandbox.go:821] Sandbox will be started in a new PID namespace
I0418 17:42:09.156114   37866 sandbox.go:838] Sandbox will be started in the container's network namespace: {Type:network Path:/var/run/docker/netns/default}
I0418 17:42:09.156208   37866 sandbox.go:878] Sandbox will be started in the current user namespace
I0418 17:42:09.156399   37866 sandbox.go:890] Sandbox will be started in minimal chroot
D0418 17:42:09.156991   37866 sandbox.go:1489] Changing "/dev/pts/0" ownership to 0/0
D0418 17:42:09.158601   37866 sandbox.go:1489] Changing "/dev/pts/0" ownership to 0/0
D0418 17:42:09.158626   37866 sandbox.go:1489] Changing "/dev/pts/0" ownership to 0/0
D0418 17:42:09.159007   37866 donation.go:31] Donating FD 3: "/run/containerd/io.containerd.runtime.v1.linux/moby/02eaf66b29db68c4472a6774ba8b478c764b3273629ec7e447257c8f1ca43efd/log.json"
D0418 17:42:09.159113   37866 donation.go:31] Donating FD 4: "/tmp/runsc/runsc.log.20240418-174209.154958.boot.txt"
D0418 17:42:09.159135   37866 donation.go:31] Donating FD 5: "sandbox IO FD"
D0418 17:42:09.159149   37866 donation.go:31] Donating FD 6: "sandbox IO FD"
D0418 17:42:09.159164   37866 donation.go:31] Donating FD 7: "sandbox IO FD"
D0418 17:42:09.159202   37866 donation.go:31] Donating FD 8: "sandbox IO FD"
D0418 17:42:09.159216   37866 donation.go:31] Donating FD 9: "sandbox IO FD"
D0418 17:42:09.159234   37866 donation.go:31] Donating FD 10: "/var/lib/docker/overlay2/657bb2dfe3f13a55fe09b3af10f21cf3eeccab435e138ec0fc000c86f2ecfb59/merged/.gvisor.filestore.02eaf66b29db68c4472a6774ba8b478c764b3273629ec7e447257c8f1ca43efd"
D0418 17:42:09.159255   37866 donation.go:31] Donating FD 11: "|0"
D0418 17:42:09.159267   37866 donation.go:31] Donating FD 12: "|1"
D0418 17:42:09.159280   37866 donation.go:31] Donating FD 13: "control_server_socket"
D0418 17:42:09.159294   37866 donation.go:31] Donating FD 14: "/run/containerd/io.containerd.runtime.v1.linux/moby/02eaf66b29db68c4472a6774ba8b478c764b3273629ec7e447257c8f1ca43efd/config.json"
D0418 17:42:09.159311   37866 donation.go:31] Donating FD 15: "/dev/kvm"
D0418 17:42:09.159341   37866 donation.go:31] Donating FD 16: "/dev/pts/0"
D0418 17:42:09.159355   37866 donation.go:31] Donating FD 17: "/dev/pts/0"
D0418 17:42:09.159374   37866 donation.go:31] Donating FD 18: "/dev/pts/0"
D0418 17:42:09.159392   37866 sandbox.go:1075] Starting sandbox: /proc/self/exe [runsc-sandbox --debug=true --log=/run/containerd/io.containerd.runtime.v1.linux/moby/02eaf66b29db68c4472a6774ba8b478c764b3273629ec7e447257c8f1ca43efd/log.json --log-format=json --debug-log=/tmp/runsc/ --network=host --platform=kvm --strace=true --root=/var/run/docker/runtime-runsc/moby --log-fd=3 --debug-log-fd=4 boot --bundle=/run/containerd/io.containerd.runtime.v1.linux/moby/02eaf66b29db68c4472a6774ba8b478c764b3273629ec7e447257c8f1ca43efd --gofer-mount-confs=lisafs:self,lisafs:none,lisafs:none,lisafs:none,lisafs:none --pidns=true --apply-caps=true --setup-root --io-fds=5 --io-fds=6 --io-fds=7 --io-fds=8 --io-fds=9 --dev-io-fd=-1 --gofer-filestore-fds=10 --mounts-fd=11 --start-sync-fd=12 --controller-fd=13 --spec-fd=14 --device-fd=15 --total-host-memory 134892920832 --cpu-num 64 --total-memory 134892920832 --stdio-fds=16 --stdio-fds=17 --stdio-fds=18 02eaf66b29db68c4472a6774ba8b478c764b3273629ec7e447257c8f1ca43efd]
D0418 17:42:09.159465   37866 sandbox.go:1076] SysProcAttr: &{Chroot: Credential:<nil> Ptrace:false Setsid:true Setpgid:false Setctty:true Noctty:false Ctty:16 Foreground:false Pgid:0 Pdeathsig:signal 0 Cloneflags:0 Unshareflags:0 UidMappings:[] GidMappings:[] GidMappingsEnableSetgroups:false AmbientCaps:[] UseCgroupFD:false CgroupFD:0 PidFD:<nil>}
I0418 17:42:09.159583   37866 namespace.go:108] Applying namespace network at path "/var/run/docker/netns/default"
I0418 17:42:09.161481   37866 namespace.go:129] Restoring namespace network
I0418 17:42:09.161708   37866 sandbox.go:1104] Sandbox started, PID: 37884
D0418 17:42:09.213778   37866 sandbox.go:1186] Destroying sandbox "02eaf66b29db68c4472a6774ba8b478c764b3273629ec7e447257c8f1ca43efd"
D0418 17:42:09.213869   37866 sandbox.go:1195] Killing sandbox "02eaf66b29db68c4472a6774ba8b478c764b3273629ec7e447257c8f1ca43efd"
D0418 17:42:09.214062   37866 cgroup.go:602] Restoring cgroup "/sys/fs/cgroup/freezer"
D0418 17:42:09.214107   37866 cgroup.go:116] Setting "/sys/fs/cgroup/freezer/cgroup.procs" to "0"
D0418 17:42:09.214194   37866 cgroup.go:602] Restoring cgroup "/sys/fs/cgroup/cpuset"
D0418 17:42:09.214219   37866 cgroup.go:116] Setting "/sys/fs/cgroup/cpuset/cgroup.procs" to "0"
D0418 17:42:09.214288   37866 cgroup.go:602] Restoring cgroup "/sys/fs/cgroup/net_cls"
D0418 17:42:09.214309   37866 cgroup.go:116] Setting "/sys/fs/cgroup/net_cls/cgroup.procs" to "0"
D0418 17:42:09.214365   37866 cgroup.go:602] Restoring cgroup "/sys/fs/cgroup/cpuacct/system.slice/containerd.service"
D0418 17:42:09.214410   37866 cgroup.go:116] Setting "/sys/fs/cgroup/cpuacct/system.slice/containerd.service/cgroup.procs" to "0"
D0418 17:42:09.214482   37866 cgroup.go:602] Restoring cgroup "/sys/fs/cgroup/cpu/system.slice/containerd.service"
D0418 17:42:09.214505   37866 cgroup.go:116] Setting "/sys/fs/cgroup/cpu/system.slice/containerd.service/cgroup.procs" to "0"
D0418 17:42:09.214546   37866 cgroup.go:602] Restoring cgroup "/sys/fs/cgroup/systemd/system.slice/containerd.service"
D0418 17:42:09.214582   37866 cgroup.go:116] Setting "/sys/fs/cgroup/systemd/system.slice/containerd.service/cgroup.procs" to "0"
D0418 17:42:09.214640   37866 cgroup.go:602] Restoring cgroup "/sys/fs/cgroup/blkio/system.slice/containerd.service"
D0418 17:42:09.214661   37866 cgroup.go:116] Setting "/sys/fs/cgroup/blkio/system.slice/containerd.service/cgroup.procs" to "0"
D0418 17:42:09.214715   37866 cgroup.go:602] Restoring cgroup "/sys/fs/cgroup/perf_event"
D0418 17:42:09.214735   37866 cgroup.go:116] Setting "/sys/fs/cgroup/perf_event/cgroup.procs" to "0"
D0418 17:42:09.214786   37866 cgroup.go:602] Restoring cgroup "/sys/fs/cgroup/hugetlb"
D0418 17:42:09.214804   37866 cgroup.go:116] Setting "/sys/fs/cgroup/hugetlb/cgroup.procs" to "0"
D0418 17:42:09.214850   37866 cgroup.go:602] Restoring cgroup "/sys/fs/cgroup/memory/system.slice/containerd.service"
D0418 17:42:09.214870   37866 cgroup.go:116] Setting "/sys/fs/cgroup/memory/system.slice/containerd.service/cgroup.procs" to "0"
D0418 17:42:09.214923   37866 cgroup.go:602] Restoring cgroup "/sys/fs/cgroup/devices/system.slice/containerd.service"
D0418 17:42:09.214943   37866 cgroup.go:116] Setting "/sys/fs/cgroup/devices/system.slice/containerd.service/cgroup.procs" to "0"
D0418 17:42:09.215015   37866 container.go:795] Destroy container, cid: 02eaf66b29db68c4472a6774ba8b478c764b3273629ec7e447257c8f1ca43efd
D0418 17:42:09.215115   37866 container.go:1106] Killing gofer for container, cid: 02eaf66b29db68c4472a6774ba8b478c764b3273629ec7e447257c8f1ca43efd, PID: 37873
W0418 17:42:09.215300   37866 util.go:64] FATAL ERROR: creating container: cannot create sandbox: cannot read client sync file: waiting for sandbox to start: EOF
W0418 17:42:09.215524   37866 main.go:235] Failure to execute command, err: 1

boot.txt:

I0418 17:42:09.178482       1 main.go:194] **************** gVisor ****************
I0418 17:42:09.178573       1 main.go:195] Version release-20240311.0, go1.22.0 X:nocoverageredesign, amd64, 64 CPUs, linux, PID 1, PPID 0, UID 0, GID 0
D0418 17:42:09.178602       1 main.go:196] Page size: 0x1000 (4096 bytes)
I0418 17:42:09.178626       1 main.go:197] Args: [runsc-sandbox --debug=true --log=/run/containerd/io.containerd.runtime.v1.linux/moby/02eaf66b29db68c4472a6774ba8b478c764b3273629ec7e447257c8f1ca43efd/log.json --log-format=json --debug-log=/tmp/runsc/ --network=host --platform=kvm --strace=true --root=/var/run/docker/runtime-runsc/moby --log-fd=3 --debug-log-fd=4 boot --bundle=/run/containerd/io.containerd.runtime.v1.linux/moby/02eaf66b29db68c4472a6774ba8b478c764b3273629ec7e447257c8f1ca43efd --gofer-mount-confs=lisafs:self,lisafs:none,lisafs:none,lisafs:none,lisafs:none --pidns=true --apply-caps=true --setup-root --io-fds=5 --io-fds=6 --io-fds=7 --io-fds=8 --io-fds=9 --dev-io-fd=-1 --gofer-filestore-fds=10 --mounts-fd=11 --start-sync-fd=12 --controller-fd=13 --spec-fd=14 --device-fd=15 --total-host-memory 134892920832 --cpu-num 64 --total-memory 134892920832 --stdio-fds=16 --stdio-fds=17 --stdio-fds=18 02eaf66b29db68c4472a6774ba8b478c764b3273629ec7e447257c8f1ca43efd]
I0418 17:42:09.178688       1 config.go:395] Platform: kvm
I0418 17:42:09.178720       1 config.go:396] RootDir: /var/run/docker/runtime-runsc/moby
I0418 17:42:09.178736       1 config.go:397] FileAccess: exclusive / Directfs: true / Overlay: root:self
I0418 17:42:09.178758       1 config.go:398] Network: host
I0418 17:42:09.178777       1 config.go:400] Debug: true. Strace: true, max size: 1024, syscalls: 
D0418 17:42:09.178798       1 config.go:412] Config.RootDir (--root): /var/run/docker/runtime-runsc/moby
D0418 17:42:09.178819       1 config.go:412] Config.Traceback (--traceback): system
D0418 17:42:09.178839       1 config.go:412] Config.Debug (--debug): <bool Value>
D0418 17:42:09.178856       1 config.go:412] Config.LogFilename (--log): /run/containerd/io.containerd.runtime.v1.linux/moby/02eaf66b29db68c4472a6774ba8b478c764b3273629ec7e447257c8f1ca43efd/log.json
D0418 17:42:09.178874       1 config.go:412] Config.LogFormat (--log-format): json
D0418 17:42:09.178889       1 config.go:412] Config.DebugLog (--debug-log): /tmp/runsc/
D0418 17:42:09.178913       1 config.go:412] Config.DebugToUserLog (--debug-to-user-log): <bool Value>
D0418 17:42:09.178927       1 config.go:412] Config.DebugCommand (--debug-command): (empty)
D0418 17:42:09.178941       1 config.go:412] Config.PanicLog (--panic-log): (empty)
D0418 17:42:09.178955       1 config.go:412] Config.CoverageReport (--coverage-report): (empty)
D0418 17:42:09.178969       1 config.go:412] Config.DebugLogFormat (--debug-log-format): text
D0418 17:42:09.178983       1 config.go:412] Config.FileAccess (--file-access): <config.FileAccessType Value>
D0418 17:42:09.178997       1 config.go:412] Config.FileAccessMounts (--file-access-mounts): <config.FileAccessType Value>
D0418 17:42:09.179012       1 config.go:412] Config.Overlay (--overlay): <bool Value>
D0418 17:42:09.179029       1 config.go:412] Config.Overlay2 (--overlay2): <config.Overlay2 Value>
D0418 17:42:09.179060       1 config.go:412] Config.FSGoferHostUDS (--fsgofer-host-uds): <bool Value>
D0418 17:42:09.179087       1 config.go:412] Config.HostUDS (--host-uds): <config.HostUDS Value>
D0418 17:42:09.179102       1 config.go:412] Config.HostFifo (--host-fifo): <config.HostFifo Value>
D0418 17:42:09.179116       1 config.go:412] Config.Network (--network): <config.NetworkType Value>
D0418 17:42:09.179130       1 config.go:412] Config.EnableRaw (--net-raw): <bool Value>
D0418 17:42:09.179145       1 config.go:412] Config.AllowPacketEndpointWrite (--TESTONLY-allow-packet-endpoint-write): <bool Value>
D0418 17:42:09.179159       1 config.go:412] Config.HostGSO (--gso): <bool Value>
D0418 17:42:09.179173       1 config.go:412] Config.GvisorGSO (--software-gso): <bool Value>
D0418 17:42:09.179188       1 config.go:412] Config.GvisorGROTimeout (--gvisor-gro): <time.Duration Value>
D0418 17:42:09.179219       1 config.go:412] Config.TXChecksumOffload (--tx-checksum-offload): <bool Value>
D0418 17:42:09.179235       1 config.go:412] Config.RXChecksumOffload (--rx-checksum-offload): <bool Value>
D0418 17:42:09.179253       1 config.go:412] Config.QDisc (--qdisc): <config.QueueingDiscipline Value>
D0418 17:42:09.179268       1 config.go:412] Config.LogPackets (--log-packets): <bool Value>
D0418 17:42:09.179295       1 config.go:412] Config.PCAP (--pcap-log): (empty)
D0418 17:42:09.179309       1 config.go:412] Config.Platform (--platform): kvm
D0418 17:42:09.179323       1 config.go:412] Config.PlatformDevicePath (--platform_device_path): (empty)
D0418 17:42:09.179337       1 config.go:412] Config.MetricServer (--metric-server): (empty)
D0418 17:42:09.179351       1 config.go:412] Config.ProfilingMetrics (--profiling-metrics): (empty)
D0418 17:42:09.179364       1 config.go:412] Config.ProfilingMetricsLog (--profiling-metrics-log): (empty)
D0418 17:42:09.179378       1 config.go:412] Config.ProfilingMetricsRate (--profiling-metrics-rate-us): <int Value>
D0418 17:42:09.179392       1 config.go:412] Config.Strace (--strace): <bool Value>
D0418 17:42:09.179406       1 config.go:412] Config.StraceSyscalls (--strace-syscalls): (empty)
D0418 17:42:09.179420       1 config.go:412] Config.StraceLogSize (--strace-log-size): <uint Value>
D0418 17:42:09.179434       1 config.go:412] Config.StraceEvent (--strace-event): <bool Value>
D0418 17:42:09.179448       1 config.go:414] Config.DisableSeccomp: <bool Value>
D0418 17:42:09.179467       1 config.go:412] Config.EnableCoreTags (--enable-core-tags): <bool Value>
D0418 17:42:09.179486       1 config.go:412] Config.WatchdogAction (--watchdog-action): <watchdog.Action Value>
D0418 17:42:09.179501       1 config.go:412] Config.PanicSignal (--panic-signal): <int Value>
D0418 17:42:09.179516       1 config.go:412] Config.ProfileEnable (--profile): <bool Value>
D0418 17:42:09.179529       1 config.go:412] Config.ProfileBlock (--profile-block): (empty)
D0418 17:42:09.179543       1 config.go:412] Config.ProfileCPU (--profile-cpu): (empty)
D0418 17:42:09.179557       1 config.go:412] Config.ProfileHeap (--profile-heap): (empty)
D0418 17:42:09.179571       1 config.go:412] Config.ProfileMutex (--profile-mutex): (empty)
D0418 17:42:09.179586       1 config.go:412] Config.TraceFile (--trace): (empty)
D0418 17:42:09.179599       1 config.go:414] Config.RestoreFile: (empty)
D0418 17:42:09.179616       1 config.go:412] Config.NumNetworkChannels (--num-network-channels): <int Value>
D0418 17:42:09.179630       1 config.go:412] Config.Rootless (--rootless): <bool Value>
D0418 17:42:09.179645       1 config.go:412] Config.AlsoLogToStderr (--alsologtostderr): <bool Value>
D0418 17:42:09.179659       1 config.go:412] Config.ReferenceLeak (--ref-leak-mode): <refs.LeakMode Value>
D0418 17:42:09.179674       1 config.go:412] Config.CPUNumFromQuota (--cpu-num-from-quota): <bool Value>
D0418 17:42:09.179688       1 config.go:412] Config.AllowFlagOverride (--allow-flag-override): <bool Value>
D0418 17:42:09.179702       1 config.go:412] Config.OCISeccomp (--oci-seccomp): <bool Value>
D0418 17:42:09.179716       1 config.go:412] Config.IgnoreCgroups (--ignore-cgroups): <bool Value>
D0418 17:42:09.179731       1 config.go:412] Config.SystemdCgroup (--systemd-cgroup): <bool Value>
D0418 17:42:09.179744       1 config.go:412] Config.PodInitConfig (--pod-init-config): (empty)
D0418 17:42:09.179758       1 config.go:412] Config.BufferPooling (--buffer-pooling): <bool Value>
D0418 17:42:09.179772       1 config.go:412] Config.XDP (--EXPERIMENTAL-xdp): <config.XDP Value>
D0418 17:42:09.179786       1 config.go:412] Config.AFXDPUseNeedWakeup (--EXPERIMENTAL-xdp-need-wakeup): <bool Value>
D0418 17:42:09.179800       1 config.go:412] Config.FDLimit (--fdlimit): <int Value>
D0418 17:42:09.179818       1 config.go:412] Config.DCache (--dcache): <int Value>
D0418 17:42:09.179832       1 config.go:412] Config.IOUring (--iouring): <bool Value>
D0418 17:42:09.179846       1 config.go:412] Config.DirectFS (--directfs): <bool Value>
D0418 17:42:09.179872       1 config.go:412] Config.NVProxy (--nvproxy): <bool Value>
D0418 17:42:09.179887       1 config.go:412] Config.NVProxyDocker (--nvproxy-docker): <bool Value>
D0418 17:42:09.179902       1 config.go:412] Config.TPUProxy (--tpuproxy): <bool Value>
D0418 17:42:09.179915       1 config.go:412] Config.TestOnlyAllowRunAsCurrentUserWithoutChroot (--TESTONLY-unsafe-nonroot): <bool Value>
D0418 17:42:09.179929       1 config.go:412] Config.TestOnlyTestNameEnv (--TESTONLY-test-name-env): (empty)
D0418 17:42:09.179943       1 config.go:412] Config.TestOnlyAFSSyscallPanic (--TESTONLY-afs-syscall-panic): <bool Value>
D0418 17:42:09.179960       1 config.go:414] Config.explicitlySet: <map[string]struct {} Value>
D0418 17:42:09.179980       1 config.go:412] Config.ReproduceNAT (--reproduce-nat): <bool Value>
D0418 17:42:09.180017       1 config.go:412] Config.ReproduceNftables (--reproduce-nftables): <bool Value>
D0418 17:42:09.180031       1 config.go:412] Config.TestOnlyAutosaveImagePath (--TESTONLY-autosave-image-path): (empty)
I0418 17:42:09.180064       1 main.go:199] **************** gVisor ****************
I0418 17:42:09.184050       1 boot.go:245] Setting product_name: "I840-G25"
W0418 17:42:09.186921       1 specutils.go:125] noNewPrivileges ignored. PR_SET_NO_NEW_PRIVS is assumed to always be set.
I0418 17:42:09.186993       1 chroot.go:91] Setting up sandbox chroot in "/tmp"
I0418 17:42:09.187445       1 chroot.go:36] Mounting "proc" at "/tmp/proc"
D0418 17:42:09.189942       1 specutils.go:87] Spec:
{
  "ociVersion": "1.0.1-dev",
  "process": {
    "terminal": true,
    "user": {
      "uid": 0,
      "gid": 0
    },
    "args": [
      "/init",
      "bash"
    ],
    "env": [
      "PATH=/lsiopy/bin:/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/bin",
      "HOSTNAME=cicd-amd64-192-168-2-31",
      "TERM=xterm",
      "HOME=/root",
      "LANGUAGE=en_US.UTF-8",
      "LANG=en_US.UTF-8",
      "S6_CMD_WAIT_FOR_SERVICES_MAXTIME=0",
      "S6_VERBOSITY=1",
      "S6_STAGE2_HOOK=/docker-mods",
      "VIRTUAL_ENV=/lsiopy"
    ],
    "cwd": "/",
    "oomScoreAdj": 0
  },
  "root": {
    "path": "/var/lib/docker/overlay2/657bb2dfe3f13a55fe09b3af10f21cf3eeccab435e138ec0fc000c86f2ecfb59/merged"
  },
  "hostname": "cicd-amd64-192-168-2-31",
  "mounts": [
    {
      "destination": "/proc",
      "type": "proc",
      "source": "/run/containerd/io.containerd.runtime.v1.linux/moby/02eaf66b29db68c4472a6774ba8b478c764b3273629ec7e447257c8f1ca43efd/proc",
      "options": [
        "nosuid",
        "noexec",
        "nodev"
      ]
    },
    {
      "destination": "/dev",
      "type": "tmpfs",
      "source": "/run/containerd/io.containerd.runtime.v1.linux/moby/02eaf66b29db68c4472a6774ba8b478c764b3273629ec7e447257c8f1ca43efd/tmpfs",
      "options": [
        "nosuid",
        "strictatime",
        "mode=755",
        "size=65536k"
      ]
    },
    {
      "destination": "/dev/pts",
      "type": "devpts",
      "source": "/run/containerd/io.containerd.runtime.v1.linux/moby/02eaf66b29db68c4472a6774ba8b478c764b3273629ec7e447257c8f1ca43efd/devpts",
      "options": [
        "nosuid",
        "noexec",
        "newinstance",
        "ptmxmode=0666",
        "mode=0620",
        "gid=5"
      ]
    },
    {
      "destination": "/sys",
      "type": "sysfs",
      "source": "/run/containerd/io.containerd.runtime.v1.linux/moby/02eaf66b29db68c4472a6774ba8b478c764b3273629ec7e447257c8f1ca43efd/sysfs",
      "options": [
        "nosuid",
        "noexec",
        "nodev",
        "ro"
      ]
    },
    {
      "destination": "/sys/fs/cgroup",
      "type": "cgroup",
      "source": "/run/containerd/io.containerd.runtime.v1.linux/moby/02eaf66b29db68c4472a6774ba8b478c764b3273629ec7e447257c8f1ca43efd/cgroup",
      "options": [
        "ro",
        "nosuid",
        "noexec",
        "nodev"
      ]
    },
    {
      "destination": "/dev/mqueue",
      "type": "mqueue",
      "source": "/run/containerd/io.containerd.runtime.v1.linux/moby/02eaf66b29db68c4472a6774ba8b478c764b3273629ec7e447257c8f1ca43efd/mqueue",
      "options": [
        "nosuid",
        "noexec",
        "nodev"
      ]
    },
    {
      "destination": "/etc/resolv.conf",
      "type": "bind",
      "source": "/var/lib/docker/containers/02eaf66b29db68c4472a6774ba8b478c764b3273629ec7e447257c8f1ca43efd/resolv.conf",
      "options": [
        "rbind",
        "rprivate"
      ]
    },
    {
      "destination": "/etc/hostname",
      "type": "bind",
      "source": "/var/lib/docker/containers/02eaf66b29db68c4472a6774ba8b478c764b3273629ec7e447257c8f1ca43efd/hostname",
      "options": [
        "rbind",
        "rprivate"
      ]
    },
    {
      "destination": "/etc/hosts",
      "type": "bind",
      "source": "/var/lib/docker/containers/02eaf66b29db68c4472a6774ba8b478c764b3273629ec7e447257c8f1ca43efd/hosts",
      "options": [
        "rbind",
        "rprivate"
      ]
    },
    {
      "destination": "/dev/shm",
      "type": "bind",
      "source": "/var/lib/docker/containers/02eaf66b29db68c4472a6774ba8b478c764b3273629ec7e447257c8f1ca43efd/mounts/shm",
      "options": [
        "rbind",
        "rprivate"
      ]
    }
  ],
  "linux": {
    "resources": {
      "memory": {
        "disableOOMKiller": false
      },
      "cpu": {
        "shares": 0
      },
      "pids": {
        "limit": 0
      },
      "blockIO": {
        "weight": 0
      }
    },
    "cgroupsPath": "/docker/02eaf66b29db68c4472a6774ba8b478c764b3273629ec7e447257c8f1ca43efd",
    "namespaces": [
      {
        "type": "mount"
      },
      {
        "type": "network",
        "path": "/var/run/docker/netns/default"
      },
      {
        "type": "uts"
      },
      {
        "type": "pid"
      },
      {
        "type": "ipc"
      }
    ]
  }
}
I0418 17:42:09.190384       1 capability.go:66] Capabilities applied: { effective="chown, dac_override, dac_read_search, fowner, fsetid, kill, setgid, setuid, setpcap, net_bind_service, net_raw, sys_chroot, mknod, audit_write, setfcap" permitted="chown, dac_override, dac_read_search, fowner, fsetid, kill, setgid, setuid, setpcap, net_bind_service, net_raw, sys_chroot, mknod, audit_write, setfcap" inheritable="chown, dac_override, fowner, fsetid, kill, setgid, setuid, setpcap, net_bind_service, net_raw, sys_chroot, mknod, audit_write, setfcap" bounding="chown, dac_override, dac_read_search, fowner, fsetid, kill, setgid, setuid, setpcap, net_bind_service, net_raw, sys_chroot, mknod, audit_write, setfcap" }
I0418 17:42:09.190463       1 cmd.go:82] Execve "/proc/self/exe" again, bye!
panic: unable to get random numbers: open /dev/urandom: no such file or directory

goroutine 1 [running]:
gvisor.dev/gvisor/pkg/tcpip/network/hash.RandN32(0x1)
        pkg/tcpip/network/hash/hash.go:31 +0xfc
gvisor.dev/gvisor/pkg/tcpip/network/hash.init()
        pkg/tcpip/network/hash/hash.go:25 +0x18
panic: unable to get random numbers: open /dev/urandom: no such file or directory

goroutine 1 [running]:
gvisor.dev/gvisor/pkg/tcpip/network/hash.RandN32(0x1)
        pkg/tcpip/network/hash/hash.go:31 +0xfc
gvisor.dev/gvisor/pkg/tcpip/network/hash.init()
        pkg/tcpip/network/hash/hash.go:25 +0x18
@cncal cncal added the type: bug Something isn't working label Apr 18, 2024
@manninglucas manninglucas self-assigned this Apr 18, 2024
@EtiennePerot
Copy link
Contributor

It looks like you are using Linux 3.10, which is over a decade old. The log states you don't have a /dev/urandom device which is probably the immediate failure for this, but I am quite confident that even with this changed to use /dev/random instead, there will be other failures beyond this one when running gVisor on this kernel.

@ayushr2
Copy link
Collaborator

ayushr2 commented Apr 18, 2024

https://gvisor.dev/docs/user_guide/install/

Note: gVisor supports x86_64 and ARM64, and requires Linux 4.14.77+ (older Linux).

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@manninglucas manninglucas

Labels
type: bug Something isn't working
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
4 participants
@EtiennePerot @manninglucas @ayushr2 @cncal