-
Notifications
You must be signed in to change notification settings - Fork 86
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
statx syscalls inside a docker container #208
Comments
qbs misbehave inside Docker containers ever since Arch Linux builds of Qt activated statx again. This is due to the fact that statx doesn't work on non-privileged containers, see docker/for-linux#208 The solution is to enable privileged mode.
Seems a PR is pending: |
See last comment it should be in 18.04 |
Ah, yes, this is now addressed on master, and will be in Docker 18.04 moby/moby#36417 Closing the issue here 👍 |
I seem to still be having this on Ubuntu 18.04.1 with docker-ce 18.06.1~ce~3-0~ubuntu. Setting the seccomp profile manually doesn't work either. |
I can not get this to work in |
Sorry but I'm still confused as well. I have docker |
I solved this by updating libseccomp. The version bionic has is not new enough, so I just took the .deb from cosmic, which installed cleanly and works fine. |
@endrift that would explain the issue; see moby/moby#36417 (comment)
|
I'm having the same issue as @simonschmeisser, on Fedora 27. |
@dawanger see my comment above yours #208 (comment) if an older version of libseccomp is present on the host, it won't work |
@thaJeztah : basic PEBKAC case: I did read your explanation and I thought I had checked that the correct version was installed but apparently, I did not... Thanks. |
Current Qt tools is not possible to run with old Docker. See the issue: docker/for-linux#208 We need to temporary disable building of Client/Qt library until Oracle update its Docker in Wercker service.
Probably related to this: docker/for-linux#208
@mettke Where I can get base/devel container image? thanks. |
Tracked down an incredibly obscure error where Ubuntu Groovy apparently packages a version of libpaper1:amd64 that uses a configure script that uses the statx system call which apparently cannot be run inside Docker without libseccomp>=2.3.3 on the host machine, which is more recent than what is shipped on the 16.04 machine image. docker/for-linux#208 (comment)
Tracked down an incredibly obscure error where Ubuntu Groovy apparently packages a version of libpaper1:amd64 that uses a configure script that uses the statx system call which apparently cannot be run inside Docker without libseccomp>=2.3.3 on the host machine, which is more recent than what is shipped on the 16.04 machine image. docker/for-linux#208 (comment)
Description
statx syscalls are only allowed in privileged containers and can not be allowed using linux-capabilities. It would be nice to have a capability which allows those calls, as for example qt is using them in its build process.
Expected behavior
or
should allow statx syscalls inside of docker
Actual behavior
does not allow statx syscalls as there is no capability which allows such a system call
however does allow a statx syscalls
Steps to reproduce the behavior
Output of
docker version
:Output of
docker info
:The text was updated successfully, but these errors were encountered: