Пытаюсь создать непривилегированный контейнер на арче, дошёл до момента с
Error: Failed to initialize cgroup driver / PAM unable to open pam_cgfs.so
Как заставить lxc-create говорить?
решил её, нужно было просто не добавлять -l DEBUG, лол
https://bbs.archlinux.org/viewtopic.php?pid=1818624
контейнер создаётся, но при запуске снова
Error: Failed to initialize cgroup driver / PAM unable to open pam_cgfs.so
[lxcuser@laptop ~]$ ls
[lxcuser@laptop ~]$ lxc-start -n test -F --logfile /tmp/lxc.log
lxc-start: test: cgroups/cgfsng.c: all_controllers_found: 695 No freezer controller mountpoint found
lxc-start: test: cgroups/cgroup.c: cgroup_init: 43 Failed to initialize cgroup driver
lxc-start: test: start.c: lxc_init: 853 Failed to initialize cgroup driver
lxc-start: test: start.c: __lxc_start: 1853 Failed to initialize container "test"
The container failed to start.
Additional information can be obtained by setting the --logfile and --logpriority options.
содержимое /tmp/lxc.log
lxc-start test 20181125164508.774 ERROR lxc_cgfsng - cgroups/cgfsng.c:all_controllers_found:695 - No freezer controller mountpoint found
lxc-start test 20181125164508.774 ERROR lxc_cgroup - cgroups/cgroup.c:cgroup_init:43 - Failed to initialize cgroup driver
lxc-start test 20181125164508.774 ERROR lxc_start - start.c:lxc_init:853 - Failed to initialize cgroup driver
lxc-start test 20181125164508.774 ERROR lxc_start - start.c:__lxc_start:1853 - Failed to initialize container "test"
в journalctl -b нет записей про cgfs
> sudo journalctl -b|grep -i cgfs
запускаю контейнер от пользователя lxcuser, конфиг такой
> cat /home/lxcuser/.config/lxc/default.conf
lxc.include = /etc/lxc/default.conf
lxc.idmap = u 0 100000 65536
lxc.idmap = g 0 100000 65536
> cat /etc/lxc/default.conf
lxc.net.0.type = empty
> cat /etc/subuid
ue4:165536:65536
lxcuser:100000:65536
> cat /etc/subgid
ue4:165536:65536
lxcuser:100000:65536
