[systemd-devel] systemd-nspawn: unpriviledged non systemd container

Ede Wolf listac at nebelschwaden.de
Tue Aug 16 16:43:27 UTC 2022


Hi,

not sure, wether it is appropiate to ask here, but in lack of a better 
alternative, I'll give it a go.

I am trying to boot an alpine container (openrc), works as root. but 
when changing to a user id, the bootup fails with getty error messages:

getty: console: TIOCSCTTY: Operation not permitted

and stopping the container takes over a minute.

# time systemctl stop machine-alpine.scope
real    1m30,198s



I've tried either:

Capability=CAP_SYS_TTY_CONFIG [CAP_SYS_ADMIN]
Capability=all

No change, though I would like to not having to use latter one anyway.

Any ideas what I might be missing? Or maybe is this just completely out 
of scope?


Thanks

Ede




P.S.: Here's more from the containers messages, puzzling that it gets 
logged as auth facility:

Aug 16 16:28:08 alpine daemon.info init: starting pid 213, tty 
'/dev/console': '/sbin/getty 38400 console'
Aug 16 16:28:08 alpine auth.err getty[213]: TIOCSCTTY: Operation not 
permitted
Aug 16 16:28:18 alpine daemon.info init: process '/sbin/getty 38400 
console' (pid 213) exited. Scheduling for restart.
Aug 16 16:28:19 alpine daemon.info init: starting pid 214, tty 
'/dev/console': '/sbin/getty 38400 console'
Aug 16 16:28:19 alpine auth.err getty[214]: TIOCSCTTY: Operation not 
permitted
Aug 16 16:28:29 alpine daemon.info init: process '/sbin/getty 38400 
console' (pid 214) exited. Scheduling for restart.
Aug 16 16:28:30 alpine daemon.info init: starting pid 215, tty 
'/dev/console': '/sbin/getty 38400 console'
Aug 16 16:28:30 alpine auth.err getty[215]: TIOCSCTTY: Operation not 
permitted


More information about the systemd-devel mailing list