挂载/proc时拒绝Docker rootfs_linux.go权限 [英] Docker rootfs_linux.go permission denied when mounting /proc

问题描述

我正在使用 meteor-up 部署到LXD容器内的docker实例.当尝试启动MongoDB docker实例时，它失败并显示以下错误:

I'm using meteor-up to deploy to docker instances inside an LXD container. When it attempts to bring up a MongoDB docker instance, it fails with the following error:

docker: Error response from daemon: oci runtime error: container_linux.go:265: starting container process caused "process_linux.go:368: container init caused \"rootfs_linux.go:57: mounting \\\"proc\\\" to rootfs \\\"/var/lib/docker/vfs/dir/20a621a73755db3f4030bc67bbf7ff9540bd1d63bb348d8be440d8ca63d3c922\\\" at \\\"/proc\\\" caused \\\"permission denied\\\"\"".

我尝试以ubuntu用户身份部署到我的LXD容器，并以root身份部署，但这没有帮助.显然这里存在一些权限问题，但我不知道从哪里开始调试此问题.

I've tried deploying as the ubuntu user to my LXD container, and as root, and that hasn't helped. There's obviously some permissions issue here, but I don't know where to start debugging this problem.

推荐答案

根据

According to https://discuss.linuxcontainers.org/t/having-trouble-using-docker/383 it sounds like you might need to set security.nesting=true. Stop the container (lxc stop deploy-container), configure nesting on (lxc config set deploy-container security.nesting true as per https://insights.ubuntu.com/2015/10/30/nested-containers-in-lxd) and lxc start deploy-container.

这篇关于挂载/proc时拒绝Docker rootfs_linux.go权限的文章就介绍到这了，希望我们推荐的答案对大家有所帮助，也希望大家多多支持IT屋！