docker rootless на ubuntu - сбой overlay2: драйвер не поддерживается

Хотя мне удалось запустить докер-контейнеры без root на Ubuntu 19.10, просто следуя инструкциям на основном сайте, это длилось всего день.

https://docs.docker.com/engine/security/rootless/

После перезагрузки машины демон докера больше не работал

systemctl --user status docker
● docker.service - Docker Application Container Engine (Rootless)
   Loaded: loaded (/home/ice/.config/systemd/user/docker.service; disabled; vendor preset: enabled)
   Active: failed (Result: exit-code) since Mon 2020-03-02 11:29:40 GMT; 2h 28min ago
     Docs: https://docs.docker.com
  Process: 1389 ExecStart=/home/ice/bin/dockerd-rootless.sh --experimental --storage-driver=overlay2 (code=exited, status=1/FAILURE)
 Main PID: 1389 (code=exited, status=1/FAILURE)

Mar 02 11:29:40 fractal systemd[8403]: docker.service: Service RestartSec=10s expired, scheduling restart.
Mar 02 11:29:40 fractal systemd[8403]: docker.service: Scheduled restart job, restart counter is at 3.
Mar 02 11:29:40 fractal systemd[8403]: Stopped Docker Application Container Engine (Rootless).
Mar 02 11:29:40 fractal systemd[8403]: docker.service: Start request repeated too quickly.
Mar 02 11:29:40 fractal systemd[8403]: docker.service: Failed with result 'exit-code'.
Mar 02 11:29:40 fractal systemd[8403]: Failed to start Docker Application Container Engine (Rootless).

Даже при прямом запуске он будет отображаться как неудачный:

INFO[2020-03-02T11:44:18.153611017Z] containerd successfully booted in 0.004537s  
INFO[2020-03-02T11:44:18.159997216Z] parsed scheme: "unix"                         module=grpc
INFO[2020-03-02T11:44:18.160074256Z] scheme "unix" not registered, fallback to default scheme  module=grpc
INFO[2020-03-02T11:44:18.160120957Z] ccResolverWrapper: sending update to cc: {[{unix:///run/user/1000/docker/containerd/containerd.sock 0  <nil>}] <nil>}  module=grpc
INFO[2020-03-02T11:44:18.160150557Z] ClientConn switching balancer to "pick_first"  module=grpc
INFO[2020-03-02T11:44:18.161936535Z] parsed scheme: "unix"                         module=grpc
INFO[2020-03-02T11:44:18.161964255Z] scheme "unix" not registered, fallback to default scheme  module=grpc
INFO[2020-03-02T11:44:18.161985036Z] ccResolverWrapper: sending update to cc: {[{unix:///run/user/1000/docker/containerd/containerd.sock 0  <nil>}] <nil>}  module=grpc
INFO[2020-03-02T11:44:18.161998776Z] ClientConn switching balancer to "pick_first"  module=grpc
ERRO[2020-03-02T11:44:18.164125566Z] 'overlay' not found as a supported filesystem on this host. Please ensure kernel is new enough and has overlay support loaded.  storage-driver=overlay2
ERRO[2020-03-02T11:44:18.164168586Z] [graphdriver] prior storage driver overlay2 failed: driver not supported 
INFO[2020-03-02T11:44:18.164831159Z] stopping healthcheck following graceful shutdown  module=libcontainerd
INFO[2020-03-02T11:44:18.164842919Z] stopping event stream following graceful shutdown  error="context canceled" module=libcontainerd namespace=plugins.moby
failed to start daemon: error initializing graphdriver: driver not supported
[rootlesskit:child ] error: command [/home/ice/bin/dockerd-rootless.sh --experimental] exited: exit status 1
[rootlesskit:parent] error: child exited: exit status 1

Новое ядро

$ uname -a
Linux fractal 5.3.0-40-generic #32-Ubuntu SMP Fri Jan 31 20:24:34 UTC 2020 x86_64 x86_64 x86_64 GNU/Linux
$ cat /etc/lsb-release
DISTRIB_ID=Ubuntu
DISTRIB_RELEASE=19.10
DISTRIB_CODENAME=eoan
DISTRIB_DESCRIPTION="Ubuntu 19.10"

$ docker version
Client: Docker Engine - Community
 Version:           19.03.6
 API version:       1.40
 Go version:        go1.12.16
 Git commit:        369ce74a3c
 Built:             Thu Feb 13 01:24:49 2020
 OS/Arch:           linux/amd64
 Experimental:      false
Cannot connect to the Docker daemon at unix:///run/user/1000/docker.sock. Is the docker daemon running?


Даже запустив проверку конфигурации, все в порядке

- Storage Drivers:
  - "aufs":
    - CONFIG_AUFS_FS: enabled (as module)
  - "btrfs":
    - CONFIG_BTRFS_FS: enabled (as module)
    - CONFIG_BTRFS_FS_POSIX_ACL: enabled
  - "devicemapper":
    - CONFIG_BLK_DEV_DM: enabled
    - CONFIG_DM_THIN_PROVISIONING: enabled (as module)
  - "overlay":
    - CONFIG_OVERLAY_FS: enabled (as module)
  - "zfs":
    - /dev/zfs: present
    - zfs command: missing
    - zpool command: missing

1 ответ

Кажется, мне удалось исправить свою проблему.

sudo groupadd docker
sudo usermod -aG docker $USER

systemctl --user restart docker.service

эти документы были весьма полезны -

https://docs.docker.com/install/linux/linux-postinstall/

docker info
Client:
 Debug Mode: false

Server:
 Containers: 2
  Running: 0
  Paused: 0
  Stopped: 2
 Images: 9
 Server Version: 19.03.6
 Storage Driver: overlay2
  Backing Filesystem: extfs
  Supports d_type: true
  Native Overlay Diff: false
 Logging Driver: json-file
 Cgroup Driver: none
 Plugins:
  Volume: local
  Network: bridge host ipvlan macvlan null overlay
  Log: awslogs fluentd gcplogs gelf journald json-file local logentries splunk syslog
 Swarm: inactive
 Runtimes: runc
 Default Runtime: runc
 Init Binary: docker-init
 containerd version: 35bd7a5f69c13e1563af8a93431411cd9ecf5021
 runc version: dc9208a3303feef5b3839f4323d9beb36df0a9dd
 init version: fec3683
 Security Options:
  seccomp
   Profile: default
  rootless
 Kernel Version: 5.3.0-40-generic
 Operating System: Ubuntu 19.10
 OSType: linux
 Architecture: x86_64
 CPUs: 24
 Total Memory: 62.82GiB
 Name: fractal
 Docker Root Dir: /home/ice/.local/share/docker
 Debug Mode: false
 Registry: https://index.docker.io/v1/
 Labels:
 Experimental: true
 Insecure Registries:
  127.0.0.0/8
 Live Restore Enabled: false
 Product License: Community Engine
docker version
Client: Docker Engine - Community
 Version:           19.03.6
 API version:       1.40
 Go version:        go1.12.16
 Git commit:        369ce74a3c
 Built:             Thu Feb 13 01:24:49 2020
 OS/Arch:           linux/amd64
 Experimental:      false

Server: Docker Engine - Community
 Engine:
  Version:          19.03.6
  API version:      1.40 (minimum version 1.12)
  Go version:       go1.12.16
  Git commit:       369ce74a3c
  Built:            Thu Feb 13 01:32:22 2020
  OS/Arch:          linux/amd64
  Experimental:     true
 containerd:
  Version:          v1.2.12
  GitCommit:        35bd7a5f69c13e1563af8a93431411cd9ecf5021
 runc:
  Version:          1.0.0-rc10
  GitCommit:        dc9208a3303feef5b3839f4323d9beb36df0a9dd
 docker-init:
  Version:          0.18.0
  GitCommit:        fec3683
Другие вопросы по тегам