Package: runc
Version: 1.3.3+ds1-2
Severity: important
X-Debbugs-Cc: [email protected]
Dear Maintainer,
* What led up to the situation?
Starting a docker container with this command:
docker run \
-d --rm --user $UID:$UID -w $HOME \
--security-opt "seccomp=$HOME/cfg/docker-cfg.json" \
--network special --dns=8.8.8.8 \
-v /run/user/$UID/pulse:$HOME/.pulseHost \
-v /tmp/.X11-unix:/tmp/.X11-unix \
$IMAGE $CMD
* What was the outcome of this action?
Following error message:
docker: Error response from daemon: failed to create task for container: failed
to create shim task: OCI runtime create failed: runc create failed: unable to
start container process: error during container init: error closing exec fds:
get handle to /proc/thread-self/fd: unsafe procfs detected: openat2
fsmount:fscontext:proc/thread-self/fd/: function not implemented: unknown.
The container was not started.
* What outcome did you expect instead?
That the container would be started.
* What exactly did you do (or not do) that was effective (or
ineffective)?
Downgrading to 1.3.2+ds1-1 solved the problem.
I found <https://forums.docker.com/t/unable-to-start-container-process/150457>
That proposed to downgrade containerd, which didn't help for me.
But it also mentioned runc, and downgrading that helped.
-- System Information:
Debian Release: forky/sid
APT prefers oldoldstable
APT policy: (500, 'oldoldstable'), (500, 'unstable'), (500, 'testing'), (500,
'stable'), (500, 'oldstable')
Architecture: amd64 (x86_64)
Foreign Architectures: i386
Kernel: Linux 6.17.8+deb14-amd64 (SMP w/12 CPU threads; PREEMPT)
Locale: LANG=POSIX, LC_CTYPE=C.UTF-8 (charmap=UTF-8), LANGUAGE not set
Shell: /bin/sh linked to /usr/bin/dash
Init: systemd (via /run/systemd/system)
LSM: AppArmor: enabled
Versions of packages runc depends on:
ii libc6 2.41-12
ii libseccomp2 2.6.0-2
Versions of packages runc recommends:
pn criu <none>
runc suggests no packages.
-- no debconf information
