Closed kumarlakshman closed 4 years ago
I am trying to create a cirros-vm pod which fails with permission issues.
2020-02-07T11:12:27.558401Z qemu-system-x86_64: failed to initialize KVM: Permission denied') Warning Failed 64s kubelet, prinhyltphp0305 Error: "/run/virtlet.sock": rpc error: code = 2 desc = failed to create domain "c5ff6f14-5667-5ae3-7d41-d6e9e56b1935": virError(Code=1, Domain=10, Message='internal error: process exited while connecting to monitor: I0207 11:12:40.889803 2791 vmwrapper.go:66] Obtaining PID of the VM container process... nsfix reexec: pid 2791: entering the namespaces of target pid 14280 nsfix reexec: dropping privs Could not access KVM kernel module: Permission denied 2020-02-07T11:12:41.510997Z qemu-system-x86_64: failed to initialize KVM: Permission denied') Normal Created 52s (x8 over 2m21s) kubelet, prinhyltphp0305 Created container cirros-vm Warning Failed 51s kubelet, prinhyltphp0305 Error: "/run/virtlet.sock": rpc error: code = 2 desc = failed to create domain "c5ff6f14-5667-5ae3-7d41-d6e9e56b1935": virError(Code=1, Domain=10, Message='internal error: process exited while connecting to monitor: I0207 11:12:53.993089 3134 vmwrapper.go:66] Obtaining PID of the VM container process... nsfix reexec: pid 3134: entering the namespaces of target pid 14280 nsfix reexec: dropping privs
I0207 11:17:06.598771 14356 listener.go:138] Spawned new stream reader for container c5ff6f14-5667-5ae3-7d41-d6e9e56b1935 I0207 11:17:06.665373 14356 listener.go:174] Stream reader for container 'c5ff6f14-5667-5ae3-7d41-d6e9e56b1935' stopped gracefully I0207 11:17:06.665410 14356 logger.go:71] Log writter stopped. Finished logging to file:/var/log/pods/virtlet_cirros-vm_e285374b-1586-4b2e-be03-9e25b78bc448/cirros-vm/0.log 2020/02/07 11:17:12 transport: http2Server.HandleStreams failed to receive the preface from client: EOF
Could not access KVM kernel module: Permission denied 2020-02-07T11:18:16.584270Z qemu-system-x86_64: failed to initialize KVM: Permission denied 2020-02-07 11:18:18.719+0000: 14130: error : virNetSocketReadWire:1811 : End of file while reading data: Input/output error 2020-02-07 11:18:28.718+0000: 14130: error : virNetSocketReadWire:1811 : End of file while reading data: Input/output error 2020-02-07 11:18:31.297+0000: 14204: warning : qemuDomainObjTaint:5532 : Domain id=261 name='virtlet-c5ff6f14-5667-cirros-vm' uuid=c5ff6f14-5667-5ae3-7d41-d6e9e56b1935 is tainted: custom-argv 2020-02-07 11:18:32.873+0000: 14204: error : qemuMonitorOpenUnix:385 : failed to connect to monitor socket: No such process 2020-02-07 11:18:32.874+0000: 14204: error : qemuProcessReportLogError:1914 : internal error: process exited while connecting to monitor: I0207 11:18:31.990784 12381 vmwrapper.go:66] Obtaining PID of the VM container process... nsfix reexec: pid 12381: entering the namespaces of target pid 14280 nsfix reexec: dropping priv
I am trying to create a cirros-vm pod which fails with permission issues.
pod logs
2020-02-07T11:12:27.558401Z qemu-system-x86_64: failed to initialize KVM: Permission denied') Warning Failed 64s kubelet, prinhyltphp0305 Error: "/run/virtlet.sock": rpc error: code = 2 desc = failed to create domain "c5ff6f14-5667-5ae3-7d41-d6e9e56b1935": virError(Code=1, Domain=10, Message='internal error: process exited while connecting to monitor: I0207 11:12:40.889803 2791 vmwrapper.go:66] Obtaining PID of the VM container process... nsfix reexec: pid 2791: entering the namespaces of target pid 14280 nsfix reexec: dropping privs Could not access KVM kernel module: Permission denied 2020-02-07T11:12:41.510997Z qemu-system-x86_64: failed to initialize KVM: Permission denied') Normal Created 52s (x8 over 2m21s) kubelet, prinhyltphp0305 Created container cirros-vm Warning Failed 51s kubelet, prinhyltphp0305 Error: "/run/virtlet.sock": rpc error: code = 2 desc = failed to create domain "c5ff6f14-5667-5ae3-7d41-d6e9e56b1935": virError(Code=1, Domain=10, Message='internal error: process exited while connecting to monitor: I0207 11:12:53.993089 3134 vmwrapper.go:66] Obtaining PID of the VM container process... nsfix reexec: pid 3134: entering the namespaces of target pid 14280 nsfix reexec: dropping privs
virtlet container logs
I0207 11:17:06.598771 14356 listener.go:138] Spawned new stream reader for container c5ff6f14-5667-5ae3-7d41-d6e9e56b1935 I0207 11:17:06.665373 14356 listener.go:174] Stream reader for container 'c5ff6f14-5667-5ae3-7d41-d6e9e56b1935' stopped gracefully I0207 11:17:06.665410 14356 logger.go:71] Log writter stopped. Finished logging to file:/var/log/pods/virtlet_cirros-vm_e285374b-1586-4b2e-be03-9e25b78bc448/cirros-vm/0.log 2020/02/07 11:17:12 transport: http2Server.HandleStreams failed to receive the preface from client: EOF
libvirt container logs
Could not access KVM kernel module: Permission denied 2020-02-07T11:18:16.584270Z qemu-system-x86_64: failed to initialize KVM: Permission denied 2020-02-07 11:18:18.719+0000: 14130: error : virNetSocketReadWire:1811 : End of file while reading data: Input/output error 2020-02-07 11:18:28.718+0000: 14130: error : virNetSocketReadWire:1811 : End of file while reading data: Input/output error 2020-02-07 11:18:31.297+0000: 14204: warning : qemuDomainObjTaint:5532 : Domain id=261 name='virtlet-c5ff6f14-5667-cirros-vm' uuid=c5ff6f14-5667-5ae3-7d41-d6e9e56b1935 is tainted: custom-argv 2020-02-07 11:18:32.873+0000: 14204: error : qemuMonitorOpenUnix:385 : failed to connect to monitor socket: No such process 2020-02-07 11:18:32.874+0000: 14204: error : qemuProcessReportLogError:1914 : internal error: process exited while connecting to monitor: I0207 11:18:31.990784 12381 vmwrapper.go:66] Obtaining PID of the VM container process... nsfix reexec: pid 12381: entering the namespaces of target pid 14280 nsfix reexec: dropping priv