On 09/14/2016 03:20 PM, Kushal Das wrote: > On 12/09/16, Antonio Murdaca wrote: >> Updated Docker in F25 again with the latest docker-selinux commit >> https://bodhi.fedoraproject.org/updates/docker-1.12.1-12.git9a3752d.fc25 >> > Still failing, tested today. > > [fedora@kushal-f25 ~]$ uname -a > Linux kushal-f25.novalocal 4.8.0-0.rc5.git4.1.fc25.x86_64 #1 SMP Fri Sep > 9 22:08:28 UTC 2016 x86_64 x86_64 x86_64 GNU/Linux > [fedora@kushal-f25 ~]$ rpm -q docker-selinux docker selinux-policy > docker-selinux-1.12.1-12.git9a3752d.fc25.x86_64 > docker-1.12.1-12.git9a3752d.fc25.x86_64 > selinux-policy-3.13.1-211.fc25.noarch > > $ sudo docker run -it --rm centos:7 > standard_init_linux.go:175: exec user process caused "permission denied" > > From journalctl > > Sep 14 19:14:59 kushal-f25.novalocal systemd-machined[1128]: New machine > 51b4d247cf2f105601eaebfc55c74b26. > Sep 14 19:14:59 kushal-f25.novalocal oci-systemd-hook[1145]: systemdhook > <debug>: Skipping as container command is /bin/bash, not init or systemd > Sep 14 19:14:59 kushal-f25.novalocal systemd[1]: > libcontainer-1152-systemd-test-default-dependencies.scope: Scope has no PIDs. > Refusing. > Sep 14 19:14:59 kushal-f25.novalocal systemd[1]: > libcontainer-1152-systemd-test-default-dependencies.scope: Scope has no PIDs. > Refusing. > Sep 14 19:14:59 kushal-f25.novalocal audit[1051]: AVC avc: denied { > entrypoint } for pid=1051 comm="exe" path="/usr/bin/bash" dev="overlay" > ino=18 > Sep 14 19:14:59 kushal-f25.novalocal dockerd[880]: [73B blob data] > Sep 14 19:14:59 kushal-f25.novalocal systemd-machined[1128]: Machine > 51b4d247cf2f105601eaebfc55c74b26 terminated. > Sep 14 19:14:59 kushal-f25.novalocal audit[880]: VIRT_CONTROL pid=880 uid=0 > auid=4294967295 ses=4294967295 subj=system_u:system_r:docker_t:s0 msg='vm > Sep 14 19:14:59 kushal-f25.novalocal systemd[1]: > libcontainer-1164-systemd-test-default-dependencies.scope: Scope has no PIDs. > Refusing. > Sep 14 19:14:59 kushal-f25.novalocal docker[880]: > time="2016-09-14T19:14:59.208938038Z" level=info msg="{Action=resize, > Username=fedora, LoginUID=100 > Sep 14 19:14:59 kushal-f25.novalocal systemd[1]: > libcontainer-1164-systemd-test-default-dependencies.scope: Scope has no PIDs. > Refusing. > Sep 14 19:14:59 kushal-f25.novalocal oci-register-machine[1173]: 2016/09/14 > 19:14:59 Register machine: poststop 51b4d247cf2f105601eaebfc55c74b26dcef9 > Sep 14 19:14:59 kushal-f25.novalocal oci-register-machine[1173]: 2016/09/14 > 19:14:59 TerminateMachine failed: No machine '51b4d247cf2f105601eaebfc55c > Sep 14 19:14:59 kushal-f25.novalocal docker[880]: > time="2016-09-14T19:14:59.281096569Z" level=error msg="Handler for POST > /v1.24/containers/51b4d247c > Sep 14 19:14:59 kushal-f25.novalocal kernel: docker0: port 1(veth0648986) > entered disabled state > > Kushal Please try with
docker-1.12.1-11.git9a3752d.fc25
