Bug 35707 - Не стартует сервис LXD
Summary: Не стартует сервис LXD
Status: NEW
Alias: None
Product: Branch p8
Classification: Distributions
Component: lxd (show other bugs)
Version: не указана
Hardware: x86_64 Linux
: P3 normal
Assignee: Denis Pynkin
QA Contact: qa-p8@altlinux.org
URL:
Keywords:
Depends on:
Blocks:
 
Reported: 2018-12-03 15:49 MSK by manofring
Modified: 2018-12-04 13:17 MSK (History)
0 users

See Also:

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.
Description manofring 2018-12-03 15:49:43 MSK 
[root@alt-lxd ~]# systemctl status lxd.service
● lxd.service - Container hypervisor based on LXC
   Loaded: loaded (/lib/systemd/system/lxd.service; indirect; vendor preset: disabled)
   Active: inactive (dead) since Mon 2018-12-03 15:42:09 MSK; 1s ago
  Process: 3399 ExecStartPost=/usr/bin/lxd waitready --timeout=600 (code=exited, status=0/SUCCESS)
  Process: 3398 ExecStart=/usr/bin/lxd --group lxd --logfile=/var/log/lxd/lxd.log (code=exited, status=0/SUCCESS)
  Process: 3397 ExecStartPre=/usr/lib/lxc/lxc-apparmor-load (code=exited, status=0/SUCCESS)
 Main PID: 3398 (code=exited, status=0/SUCCESS)

Dec 03 15:42:08 alt-lxd systemd[1]: Starting Container hypervisor based on LXC...
Dec 03 15:42:08 alt-lxd lxd[3398]: t=2018-12-03T15:42:08+0300 lvl=warn msg="AppArmor support has been disabled because of lack of kernel support"
Dec 03 15:42:08 alt-lxd systemd[1]: Started Container hypervisor based on LXC.
Dec 03 15:42:09 alt-lxd systemd[1]: Stopping Container hypervisor based on LXC...
Dec 03 15:42:09 alt-lxd systemd[1]: Stopped Container hypervisor based on LXC.
Dec 03 15:42:09 alt-lxd systemd[1]: Dependency failed for Container hypervisor based on LXC.
Dec 03 15:42:09 alt-lxd systemd[1]: lxd.service: Job lxd.service/start failed with result 'dependency'.

[root@alt-lxd ~]# systemctl cat lxd.service | grep -i requires
Requires=lxcfs.service cgmanager.service lxd.socket lxc-net.service

После systemd 233 версии cgmanager объявлен устаревшим
https://lists.freedesktop.org/archives/systemd-devel/2017-March/038419.html
https://www.opennet.ru/opennews/art.shtml?num=46123

Workaround
sed -i 's/ cgmanager.service//' /lib/systemd/system/lxd.service
systemctl restart lxcfs.service lxd.socket lxc-net.service

[root@alt-lxd ~]# systemctl daemon-reload
[root@alt-lxd ~]# systemctl restart lxd
[root@alt-lxd ~]# systemctl status lxd.service
● lxd.service - Container hypervisor based on LXC
   Loaded: loaded (/lib/systemd/system/lxd.service; indirect; vendor preset: disabled)
   Active: active (running) since Mon 2018-12-03 15:47:04 MSK; 6s ago
  Process: 3563 ExecStartPost=/usr/bin/lxd waitready --timeout=600 (code=exited, status=0/SUCCESS)
  Process: 3561 ExecStartPre=/usr/lib/lxc/lxc-apparmor-load (code=exited, status=0/SUCCESS)
 Main PID: 3562 (lxd)
    Tasks: 9 (limit: 2381)
   CGroup: /system.slice/lxd.service
           └─3562 /usr/bin/lxd --group lxd --logfile=/var/log/lxd/lxd.log

Dec 03 15:47:04 alt-lxd systemd[1]: Starting Container hypervisor based on LXC...
Dec 03 15:47:04 alt-lxd lxd[3562]: t=2018-12-03T15:47:04+0300 lvl=warn msg="AppArmor support has been disabled because of lack of kernel support"
Dec 03 15:47:04 alt-lxd systemd[1]: Started Container hypervisor based on LXC.
Comment 1 manofring 2018-12-03 16:03:12 MSK 
еще бы убрать аппармор, все равно его нет, какой смысл держать его запуск в сервисе?
[root@alt-lxd ~]# sed -i '/lxc-apparmor-load/d' /lib/systemd/system/lxd.service
[root@alt-lxd ~]# systemctl daemon-reload
[root@alt-lxd ~]# systemctl restart lxd
[root@alt-lxd ~]# systemctl status lxd.service
● lxd.service - Container hypervisor based on LXC
   Loaded: loaded (/lib/systemd/system/lxd.service; indirect; vendor preset: disabled)
   Active: active (running) since Mon 2018-12-03 16:02:09 MSK; 14s ago
  Process: 3637 ExecStartPost=/usr/bin/lxd waitready --timeout=600 (code=exited, status=0/SUCCESS)
 Main PID: 3636 (lxd)
    Tasks: 9 (limit: 2381)
   CGroup: /system.slice/lxd.service
           └─3636 /usr/bin/lxd --group lxd --logfile=/var/log/lxd/lxd.log

Dec 03 16:02:09 alt-lxd systemd[1]: Stopped Container hypervisor based on LXC.
Dec 03 16:02:09 alt-lxd systemd[1]: Starting Container hypervisor based on LXC...
Dec 03 16:02:09 alt-lxd lxd[3636]: t=2018-12-03T16:02:09+0300 lvl=warn msg="AppArmor support has been disabled because of lack of kernel support"
Dec 03 16:02:09 alt-lxd systemd[1]: Started Container hypervisor based on LXC.
Comment 2 manofring 2018-12-04 13:17:33 MSK 
еще бы убрать аппармор, все равно его нет, какой смысл держать его запуск в сервисе?
[root@alt-lxd ~]# sed -i '/lxc-apparmor-load/d' /lib/systemd/system/lxd.service
[root@alt-lxd ~]# systemctl daemon-reload
[root@alt-lxd ~]# systemctl restart lxd
[root@alt-lxd ~]# systemctl status lxd.service
● lxd.service - Container hypervisor based on LXC
   Loaded: loaded (/lib/systemd/system/lxd.service; indirect; vendor preset: disabled)
   Active: active (running) since Mon 2018-12-03 16:02:09 MSK; 14s ago
  Process: 3637 ExecStartPost=/usr/bin/lxd waitready --timeout=600 (code=exited, status=0/SUCCESS)
 Main PID: 3636 (lxd)
    Tasks: 9 (limit: 2381)
   CGroup: /system.slice/lxd.service
           └─3636 /usr/bin/lxd --group lxd --logfile=/var/log/lxd/lxd.log

Dec 03 16:02:09 alt-lxd systemd[1]: Stopped Container hypervisor based on LXC.
Dec 03 16:02:09 alt-lxd systemd[1]: Starting Container hypervisor based on LXC...
Dec 03 16:02:09 alt-lxd lxd[3636]: t=2018-12-03T16:02:09+0300 lvl=warn msg="AppArmor support has been disabled because of lack of kernel support"
Dec 03 16:02:09 alt-lxd systemd[1]: Started Container hypervisor based on LXC.