search

aws / aws-codebuild-docker-images

Official AWS CodeBuild repository for managed Docker images http://docs.aws.amazon.com/codebuild/latest/userguide/build-env-ref.html
Other
1.11k stars 973 forks source link

`docker run` fails with `failed to start daemon: error initializing graphdriver: driver not supported` #674

Closed dil-anovosz closed 11 months ago

dil-anovosz commented 1 year ago

Describe the bug docker run ... bash fails with public.ecr.aws/codebuild/amazonlinux2-aarch64-standard:2.0

I saw this error message on another issue but that was related to an actual codebuild (this is on a local machine).

I also see people advising to delete the content of /var/lib/docker/ but I have no docker library in /var/lib.

To Reproduce

$ docker pull public.ecr.aws/codebuild/amazonlinux2-aarch64-standard:2.0
$ docker run --rm -it public.ecr.aws/codebuild/amazonlinux2-aarch64-standard:2.0 bash

The Error message:

time="2023-09-08T14:57:07.645801504Z" level=info msg="Starting up"
time="2023-09-08T14:57:07.648835879Z" level=warning msg="could not change group /var/run/docker.sock to docker: group docker not found"
time="2023-09-08T14:57:07.649017796Z" level=warning msg="Binding to IP address without --tlsverify is insecure and gives root access on this machine to everyone who has access to your network." host="tcp://127.0.0.1:2375"
time="2023-09-08T14:57:07.649026546Z" level=warning msg="Binding to an IP address, even on localhost, can also give access to scripts run in a browser. Be safe out there!" host="tcp://127.0.0.1:2375"
time="2023-09-08T14:57:08.655094005Z" level=info msg="libcontainerd: started new containerd process" pid=33
time="2023-09-08T14:57:08.655193630Z" level=info msg="parsed scheme: \"unix\"" module=grpc
time="2023-09-08T14:57:08.655211505Z" level=info msg="scheme \"unix\" not registered, fallback to default scheme" module=grpc
time="2023-09-08T14:57:08.655267880Z" level=info msg="ccResolverWrapper: sending update to cc: {[{unix:///var/run/docker/containerd/containerd.sock  <nil> 0 <nil>}] <nil> <nil>}" module=grpc
time="2023-09-08T14:57:08.655298213Z" level=info msg="ClientConn switching balancer to \"pick_first\"" module=grpc
time="2023-09-08T14:57:08Z" level=warning msg="containerd config version `1` has been deprecated and will be removed in containerd v2.0, please switch to version `2`, see https://github.com/containerd/containerd/blob/main/docs/PLUGINS.md#version-header"
time="2023-09-08T14:57:08.729123130Z" level=info msg="starting containerd" revision=78f51771157abb6c9ed224c22013cdf09962315d version=v1.6.13
time="2023-09-08T14:57:08.735648380Z" level=info msg="loading plugin \"io.containerd.content.v1.content\"..." type=io.containerd.content.v1
time="2023-09-08T14:57:08.735736380Z" level=info msg="loading plugin \"io.containerd.snapshotter.v1.aufs\"..." type=io.containerd.snapshotter.v1
time="2023-09-08T14:57:08.743204463Z" level=info msg="skip loading plugin \"io.containerd.snapshotter.v1.aufs\"..." error="aufs is not supported (modprobe aufs failed: exit status 1 \"modprobe: FATAL: Module aufs not found in directory /lib/modules/5.15.49-linuxkit-pr\\n\"): skip plugin" type=io.containerd.snapshotter.v1
time="2023-09-08T14:57:08.743224588Z" level=info msg="loading plugin \"io.containerd.snapshotter.v1.btrfs\"..." type=io.containerd.snapshotter.v1
time="2023-09-08T14:57:08.743350338Z" level=info msg="skip loading plugin \"io.containerd.snapshotter.v1.btrfs\"..." error="path /var/lib/docker/containerd/daemon/io.containerd.snapshotter.v1.btrfs (ext4) must be a btrfs filesystem to be used with the btrfs snapshotter: skip plugin" type=io.containerd.snapshotter.v1
time="2023-09-08T14:57:08.743359505Z" level=info msg="loading plugin \"io.containerd.snapshotter.v1.devmapper\"..." type=io.containerd.snapshotter.v1
time="2023-09-08T14:57:08.743370338Z" level=warning msg="failed to load plugin io.containerd.snapshotter.v1.devmapper" error="devmapper not configured"
time="2023-09-08T14:57:08.743376255Z" level=info msg="loading plugin \"io.containerd.snapshotter.v1.native\"..." type=io.containerd.snapshotter.v1
time="2023-09-08T14:57:08.743421505Z" level=info msg="loading plugin \"io.containerd.snapshotter.v1.overlayfs\"..." type=io.containerd.snapshotter.v1
time="2023-09-08T14:57:08.743768338Z" level=info msg="loading plugin \"io.containerd.snapshotter.v1.zfs\"..." type=io.containerd.snapshotter.v1
time="2023-09-08T14:57:08.743851171Z" level=info msg="skip loading plugin \"io.containerd.snapshotter.v1.zfs\"..." error="path /var/lib/docker/containerd/daemon/io.containerd.snapshotter.v1.zfs must be a zfs filesystem to be used with the zfs snapshotter: skip plugin" type=io.containerd.snapshotter.v1
time="2023-09-08T14:57:08.743862213Z" level=info msg="loading plugin \"io.containerd.metadata.v1.bolt\"..." type=io.containerd.metadata.v1
time="2023-09-08T14:57:08.743887088Z" level=warning msg="could not use snapshotter devmapper in metadata plugin" error="devmapper not configured"
time="2023-09-08T14:57:08.743893796Z" level=info msg="metadata content store policy set" policy=shared
time="2023-09-08T14:57:08.745963130Z" level=info msg="loading plugin \"io.containerd.differ.v1.walking\"..." type=io.containerd.differ.v1
time="2023-09-08T14:57:08.745979046Z" level=info msg="loading plugin \"io.containerd.event.v1.exchange\"..." type=io.containerd.event.v1
time="2023-09-08T14:57:08.745985921Z" level=info msg="loading plugin \"io.containerd.gc.v1.scheduler\"..." type=io.containerd.gc.v1
time="2023-09-08T14:57:08.746020171Z" level=info msg="loading plugin \"io.containerd.service.v1.introspection-service\"..." type=io.containerd.service.v1
time="2023-09-08T14:57:08.746029213Z" level=info msg="loading plugin \"io.containerd.service.v1.containers-service\"..." type=io.containerd.service.v1
time="2023-09-08T14:57:08.746040088Z" level=info msg="loading plugin \"io.containerd.service.v1.content-service\"..." type=io.containerd.service.v1
time="2023-09-08T14:57:08.746047213Z" level=info msg="loading plugin \"io.containerd.service.v1.diff-service\"..." type=io.containerd.service.v1
time="2023-09-08T14:57:08.746135088Z" level=info msg="loading plugin \"io.containerd.service.v1.images-service\"..." type=io.containerd.service.v1
time="2023-09-08T14:57:08.746142088Z" level=info msg="loading plugin \"io.containerd.service.v1.leases-service\"..." type=io.containerd.service.v1
time="2023-09-08T14:57:08.746149713Z" level=info msg="loading plugin \"io.containerd.service.v1.namespaces-service\"..." type=io.containerd.service.v1
time="2023-09-08T14:57:08.746160505Z" level=info msg="loading plugin \"io.containerd.service.v1.snapshots-service\"..." type=io.containerd.service.v1
time="2023-09-08T14:57:08.746167046Z" level=info msg="loading plugin \"io.containerd.runtime.v1.linux\"..." type=io.containerd.runtime.v1
time="2023-09-08T14:57:08.746255838Z" level=info msg="loading plugin \"io.containerd.runtime.v2.task\"..." type=io.containerd.runtime.v2
time="2023-09-08T14:57:08.746315921Z" level=info msg="loading plugin \"io.containerd.monitor.v1.cgroups\"..." type=io.containerd.monitor.v1
time="2023-09-08T14:57:08.746451505Z" level=info msg="loading plugin \"io.containerd.service.v1.tasks-service\"..." type=io.containerd.service.v1
time="2023-09-08T14:57:08.746469588Z" level=info msg="loading plugin \"io.containerd.grpc.v1.introspection\"..." type=io.containerd.grpc.v1
time="2023-09-08T14:57:08.746477296Z" level=info msg="loading plugin \"io.containerd.internal.v1.restart\"..." type=io.containerd.internal.v1
time="2023-09-08T14:57:08.746549796Z" level=info msg="loading plugin \"io.containerd.grpc.v1.containers\"..." type=io.containerd.grpc.v1
time="2023-09-08T14:57:08.746557630Z" level=info msg="loading plugin \"io.containerd.grpc.v1.content\"..." type=io.containerd.grpc.v1
time="2023-09-08T14:57:08.746563755Z" level=info msg="loading plugin \"io.containerd.grpc.v1.diff\"..." type=io.containerd.grpc.v1
time="2023-09-08T14:57:08.746569380Z" level=info msg="loading plugin \"io.containerd.grpc.v1.events\"..." type=io.containerd.grpc.v1
time="2023-09-08T14:57:08.746575755Z" level=info msg="loading plugin \"io.containerd.grpc.v1.healthcheck\"..." type=io.containerd.grpc.v1
time="2023-09-08T14:57:08.746582713Z" level=info msg="loading plugin \"io.containerd.grpc.v1.images\"..." type=io.containerd.grpc.v1
time="2023-09-08T14:57:08.746588213Z" level=info msg="loading plugin \"io.containerd.grpc.v1.leases\"..." type=io.containerd.grpc.v1
time="2023-09-08T14:57:08.746596588Z" level=info msg="loading plugin \"io.containerd.grpc.v1.namespaces\"..." type=io.containerd.grpc.v1
time="2023-09-08T14:57:08.746603046Z" level=info msg="loading plugin \"io.containerd.internal.v1.opt\"..." type=io.containerd.internal.v1
time="2023-09-08T14:57:08.747254713Z" level=info msg="loading plugin \"io.containerd.grpc.v1.snapshots\"..." type=io.containerd.grpc.v1
time="2023-09-08T14:57:08.747262296Z" level=info msg="loading plugin \"io.containerd.grpc.v1.tasks\"..." type=io.containerd.grpc.v1
time="2023-09-08T14:57:08.747268088Z" level=info msg="loading plugin \"io.containerd.grpc.v1.version\"..." type=io.containerd.grpc.v1
time="2023-09-08T14:57:08.747279588Z" level=info msg="loading plugin \"io.containerd.tracing.processor.v1.otlp\"..." type=io.containerd.tracing.processor.v1
time="2023-09-08T14:57:08.747287088Z" level=info msg="skip loading plugin \"io.containerd.tracing.processor.v1.otlp\"..." error="no OpenTelemetry endpoint: skip plugin" type=io.containerd.tracing.processor.v1
time="2023-09-08T14:57:08.747292671Z" level=info msg="loading plugin \"io.containerd.internal.v1.tracing\"..." type=io.containerd.internal.v1
time="2023-09-08T14:57:08.747307421Z" level=error msg="failed to initialize a tracing processor \"otlp\"" error="no OpenTelemetry endpoint: skip plugin"
time="2023-09-08T14:57:08.747472588Z" level=info msg=serving... address=/var/run/docker/containerd/containerd-debug.sock
time="2023-09-08T14:57:08.747513838Z" level=info msg=serving... address=/var/run/docker/containerd/containerd.sock.ttrpc
time="2023-09-08T14:57:08.747547838Z" level=info msg=serving... address=/var/run/docker/containerd/containerd.sock
time="2023-09-08T14:57:08.747561088Z" level=info msg="containerd successfully booted in 0.019495s"
time="2023-09-08T14:57:08.755133088Z" level=info msg="parsed scheme: \"unix\"" module=grpc
time="2023-09-08T14:57:08.755148755Z" level=info msg="scheme \"unix\" not registered, fallback to default scheme" module=grpc
time="2023-09-08T14:57:08.755159171Z" level=info msg="ccResolverWrapper: sending update to cc: {[{unix:///var/run/docker/containerd/containerd.sock  <nil> 0 <nil>}] <nil> <nil>}" module=grpc
time="2023-09-08T14:57:08.755164713Z" level=info msg="ClientConn switching balancer to \"pick_first\"" module=grpc
time="2023-09-08T14:57:08.756042630Z" level=info msg="parsed scheme: \"unix\"" module=grpc
time="2023-09-08T14:57:08.756050005Z" level=info msg="scheme \"unix\" not registered, fallback to default scheme" module=grpc
time="2023-09-08T14:57:08.756056213Z" level=info msg="ccResolverWrapper: sending update to cc: {[{unix:///var/run/docker/containerd/containerd.sock  <nil> 0 <nil>}] <nil> <nil>}" module=grpc
time="2023-09-08T14:57:08.756061255Z" level=info msg="ClientConn switching balancer to \"pick_first\"" module=grpc
time="2023-09-08T14:57:08.757087338Z" level=error msg="failed to mount overlay: operation not permitted" storage-driver=overlay2
time="2023-09-08T14:57:08.757335213Z" level=info msg="stopping event stream following graceful shutdown" error="context canceled" module=libcontainerd namespace=plugins.moby
time="2023-09-08T14:57:08.757337755Z" level=info msg="stopping healthcheck following graceful shutdown" module=libcontainerd
failed to start daemon: error initializing graphdriver: driver not supported
Timed out trying to connect to internal docker host.

Expected behavior It starts the container and opens a bash shell where I can work inside the container.

Logs

$ docker info

Client:
 Version:    24.0.5
 Context:    desktop-linux
 Debug Mode: false
 Plugins:
  buildx: Docker Buildx (Docker Inc.)
    Version:  v0.11.2-desktop.1
    Path:     /Users/anovoszath/.docker/cli-plugins/docker-buildx
  compose: Docker Compose (Docker Inc.)
    Version:  v2.20.2-desktop.1
    Path:     /Users/anovoszath/.docker/cli-plugins/docker-compose
  dev: Docker Dev Environments (Docker Inc.)
    Version:  v0.1.0
    Path:     /Users/anovoszath/.docker/cli-plugins/docker-dev
  extension: Manages Docker extensions (Docker Inc.)
    Version:  v0.2.20
    Path:     /Users/anovoszath/.docker/cli-plugins/docker-extension
  init: Creates Docker-related starter files for your project (Docker Inc.)
    Version:  v0.1.0-beta.6
    Path:     /Users/anovoszath/.docker/cli-plugins/docker-init
  sbom: View the packaged-based Software Bill Of Materials (SBOM) for an image (Anchore Inc.)
    Version:  0.6.0
    Path:     /Users/anovoszath/.docker/cli-plugins/docker-sbom
  scan: Docker Scan (Docker Inc.)
    Version:  v0.26.0
    Path:     /Users/anovoszath/.docker/cli-plugins/docker-scan
  scout: Command line tool for Docker Scout (Docker Inc.)
    Version:  0.20.0
    Path:     /Users/anovoszath/.docker/cli-plugins/docker-scout

Server:
 Containers: 1
  Running: 0
  Paused: 0
  Stopped: 1
 Images: 2
 Server Version: 24.0.5
 Storage Driver: overlay2
  Backing Filesystem: extfs
  Supports d_type: true
  Using metacopy: false
  Native Overlay Diff: true
  userxattr: false
 Logging Driver: json-file
 Cgroup Driver: cgroupfs
 Cgroup Version: 2
 Plugins:
  Volume: local
  Network: bridge host ipvlan macvlan null overlay
  Log: awslogs fluentd gcplogs gelf journald json-file local logentries splunk syslog
 Swarm: inactive
 Runtimes: io.containerd.runc.v2 runc
 Default Runtime: runc
 Init Binary: docker-init
 containerd version: 3dce8eb055cbb6872793272b4f20ed16117344f8
 runc version: v1.1.7-0-g860f061
 init version: de40ad0
 Security Options:
  seccomp
   Profile: unconfined
  cgroupns
 Kernel Version: 5.15.49-linuxkit-pr
 Operating System: Docker Desktop
 OSType: linux
 Architecture: aarch64
 CPUs: 5
 Total Memory: 7.667GiB
 Name: docker-desktop
 ID: 31ca8845-4b86-4c30-acc8-673e3d14c9d3
 Docker Root Dir: /var/lib/docker
 Debug Mode: false
 HTTP Proxy: http.docker.internal:3128
 HTTPS Proxy: http.docker.internal:3128
 No Proxy: hubproxy.docker.internal
 Experimental: false
 Insecure Registries:
  hubproxy.docker.internal:5555
  127.0.0.0/8
 Live Restore Enabled: false

WARNING: daemon is not using the default seccomp profile

Platform (please complete the following information):

Additional context This is after a fresh install of Docker based on the official documentation.

Dylan-AWS commented 11 months ago

Hello, the default entrypoint of this image will attempt to start docker. You can either run this container with the privileged flag --privileged or override the entrypoint --entrypoint /bin/bash