[systemd-devel] modules in container

arnaud gaboury arnaud.gaboury at gmail.com
Sun Nov 8 04:17:18 PST 2015


I am trying to understand how kernel modules are "passed" to nspawn container.

My setup: Archlinux host, Fedora 23 container (function = server).

Example of what I would like to solve:

On container:

------------------------------------------------------------------------------
$ systemctl status docker -l

‚óŹ docker.service - Docker Application Container Engine
   Loaded: loaded (/usr/lib/systemd/system/docker.service; disabled;
vendor preset: disabled)
   Active: failed (Result: exit-code) since Sun 2015-11-08 10:44:27
CET; 2h 27min ago
     Docs: http://docs.docker.com
 Main PID: 1146 (code=exited, status=1/FAILURE)

Nov 08 10:44:27 poppy docker[1146]:
time="2015-11-08T10:44:27.846565995+01:00" level=warning msg="Docker
could not enable SELinux on the host system"
Nov 08 10:44:27 poppy docker[1146]:
time="2015-11-08T10:44:27.846925084+01:00" level=info msg="Option
DefaultDriver: bridge"
Nov 08 10:44:27 poppy docker[1146]:
time="2015-11-08T10:44:27.846948089+01:00" level=info msg="Option
DefaultNetwork: bridge"
Nov 08 10:44:27 poppy docker[1146]:
time="2015-11-08T10:44:27.848252833+01:00" level=warning msg="Running
modprobe bridge nf_nat br_netfilter failed with message: , error: exit
status 1"
Nov 08 10:44:27 poppy docker[1146]:
time="2015-11-08T10:44:27.852710572+01:00" level=info msg="Firewalld
running: true"
Nov 08 10:44:27 poppy docker[1146]:
time="2015-11-08T10:44:27.918262393+01:00" level=fatal msg="Error
starting daemon: Error initializing network controller: Error
initializing bridge driver: Setup IP forwarding failed: open
/proc/sys/net/ipv4/ip_forward: read-only file system"
Nov 08 10:44:27 poppy systemd[1]: docker.service: Main process exited,
code=exited, status=1/FAILURE
Nov 08 10:44:27 poppy systemd[1]: Failed to start Docker Application
Container Engine.
------------------------------------------------------------

1- SELinux is disabled as the host distro is difficult to setup with
it, so it is OK
2- Running modprobe bridge nf_nat br_netfilter failed with message: ,
error: exit status 1"
These modules are indeed loaded on host. How can I make the container
aware of it?


Thank you for any pointers/help.

-- 

google.com/+arnaudgabourygabx


More information about the systemd-devel mailing list