cannot change profile for the next exec call: No such file or directory

trevorgfrancis commented 6 years ago

After snap refresh, reboot doesnt fix issue.

Ubuntu 16.04 Linux f8-c1-n5 4.13.0-38-generic #43~16.04.1-Ubuntu SMP Wed Mar 14 17:48:43 UTC 2018 x86_64 x86_64 x86_64 GNU/Linux

snap changes ID Status Spawn Ready Summary 8 Done 2018-04-03T08:09:23Z 2018-04-03T08:09:33Z Auto-refresh snap "lxd" 9 Error 2018-04-03T21:29:23Z 2018-04-03T21:29:35Z Auto-refresh snap "lxd" 10 Done 2018-04-04T00:14:23Z 2018-04-04T00:14:35Z Auto-refresh snaps "core", "lxd" 11 Done 2018-04-04T00:22:35Z 2018-04-04T00:22:35Z Refresh all snaps: no updates 12 Done 2018-04-04T00:34:59Z 2018-04-04T00:34:59Z Refresh all snaps: no updates

Apr 03 19:34:00 f8-c1-n5 systemd[1]: snap.lxd.daemon.service: Main process exited, code=exited, status=1/FAILURE Apr 03 19:34:00 f8-c1-n5 lxd.daemon[1796]: cannot change profile for the next exec call: No such file or directory Apr 03 19:34:00 f8-c1-n5 lxd.daemon[1796]: snap-update-ns failed with code 1: No such file or directory Apr 03 19:34:00 f8-c1-n5 systemd[1]: snap.lxd.daemon.service: Control process exited, code=exited status=1 Apr 03 19:34:00 f8-c1-n5 systemd[1]: snap.lxd.daemon.service: Unit entered failed state. Apr 03 19:34:00 f8-c1-n5 systemd[1]: snap.lxd.daemon.service: Failed with result 'exit-code'. Apr 03 19:34:00 f8-c1-n5 systemd[1]: snap.lxd.daemon.service: Service hold-off time over, scheduling restart. Apr 03 19:34:00 f8-c1-n5 systemd[1]: Stopped Service for snap application lxd.daemon. Apr 03 19:34:00 f8-c1-n5 systemd[1]: snap.lxd.daemon.service: Start request repeated too quickly. Apr 03 19:34:00 f8-c1-n5 systemd[1]: Failed to start Service for snap application lxd.daemon.

trevorgfrancis commented 6 years ago

Apr 3 19:55:31 f8-c1-n5 kernel: [ 1348.869655] audit: type=1400 audit(1522803331.215:23): apparmor="DENIED" operation="change_onexec" info="label not found" error=-2 profile="unconfined" name="snap-update-ns.lxd" pid=3314 comm="snap-confine" Apr 3 19:55:31 f8-c1-n5 systemd[1]: snap.lxd.daemon.service: Main process exited, code=exited, status=1/FAILURE Apr 3 19:55:31 f8-c1-n5 lxd.daemon[3317]: cannot change profile for the next exec call: No such file or directory Apr 3 19:55:31 f8-c1-n5 lxd.daemon[3317]: snap-update-ns failed with code 1: No such file or directory

stgraber commented 6 years ago

Hmm, so that's a snapd issue since it doesn't even spawn any of our scripts... It reads as if apparmor somehow didn't get the relevant profiles loaded.

Did you try rebooting after those two snaps refreshed in case that helps? You mentioned rebooting but your logs above predate the update of the core snap.

trevorgfrancis commented 6 years ago

reboot occured after snap refresh and attempted kernel update, then reboot...same.

stgraber commented 6 years ago

Okay, can you post the output of both apparmor_status and systemctl -a from that system? I'm not that familiar with what snapd does under the hood but hopefully we can figure it out by comparing with test systems here.

trevorgfrancis commented 6 years ago

root@f8-c1-n5:/var/lib/snapd/apparmor/profiles# apparmor_status
apparmor module is loaded.
22 profiles are loaded.
22 profiles are in enforce mode.
   /sbin/dhclient
   /snap/core/4327/usr/lib/snapd/snap-confine
   /snap/core/4327/usr/lib/snapd/snap-confine//mount-namespace-capture-helper
   /usr/lib/NetworkManager/nm-dhcp-client.action
   /usr/lib/NetworkManager/nm-dhcp-helper
   /usr/lib/connman/scripts/dhclient-script
   /usr/lib/snapd/snap-confine
   /usr/lib/snapd/snap-confine//mount-namespace-capture-helper
   /usr/lib/snapd/snap-confine//snap_update_ns
   /usr/sbin/ntpd
   /usr/sbin/tcpdump
   snap-update-ns.core
   snap-update-ns.lxd
   snap.core.hook.configure
   snap.lxd.benchmark
   snap.lxd.check-kernel
   snap.lxd.daemon
   snap.lxd.database
   snap.lxd.hook.configure
   snap.lxd.lxc
   snap.lxd.lxd
   snap.lxd.migrate
0 profiles are in complain mode.
2 processes have profiles defined.
0 processes are in enforce mode.
0 processes are in complain mode.
2 processes are unconfined but have a profile defined.
   /sbin/dhclient (1408)
   /usr/sbin/ntpd (1535)

root@f8-c1-n5:/var/lib/snapd/apparmor/profiles# systemctl -a
  UNIT                                                                                             LOAD      ACTIVE   SUB       DESCRIPTION
  proc-sys-fs-binfmt_misc.automount                                                                loaded    active   waiting   Arbitrary Executable File Formats File System Automount Point
  dev-disk-by\x2did-scsi\x2d3600508b1001c8a72b6f7a01afe964c74.device                               loaded    active   plugged   LOGICAL_VOLUME
  dev-disk-by\x2did-scsi\x2d3600508b1001c8a72b6f7a01afe964c74\x2dpart1.device                      loaded    active   plugged   LOGICAL_VOLUME 1
  dev-disk-by\x2did-scsi\x2d3600508b1001c8a72b6f7a01afe964c74\x2dpart2.device                      loaded    active   plugged   LOGICAL_VOLUME 2
  dev-disk-by\x2did-scsi\x2d3600508b1001c8a72b6f7a01afe964c74\x2dpart5.device                      loaded    active   plugged   LOGICAL_VOLUME 5
  dev-disk-by\x2did-wwn\x2d0x600508b1001c8a72b6f7a01afe964c74.device                               loaded    active   plugged   LOGICAL_VOLUME
  dev-disk-by\x2did-wwn\x2d0x600508b1001c8a72b6f7a01afe964c74\x2dpart1.device                      loaded    active   plugged   LOGICAL_VOLUME 1
  dev-disk-by\x2did-wwn\x2d0x600508b1001c8a72b6f7a01afe964c74\x2dpart2.device                      loaded    active   plugged   LOGICAL_VOLUME 2
  dev-disk-by\x2did-wwn\x2d0x600508b1001c8a72b6f7a01afe964c74\x2dpart5.device                      loaded    active   plugged   LOGICAL_VOLUME 5
  dev-disk-by\x2dpath-pci\x2d0000:0c:00.0\x2dscsi\x2d0:1:0:0.device                                loaded    active   plugged   LOGICAL_VOLUME
  dev-disk-by\x2dpath-pci\x2d0000:0c:00.0\x2dscsi\x2d0:1:0:0\x2dpart1.device                       loaded    active   plugged   LOGICAL_VOLUME 1
  dev-disk-by\x2dpath-pci\x2d0000:0c:00.0\x2dscsi\x2d0:1:0:0\x2dpart2.device                       loaded    active   plugged   LOGICAL_VOLUME 2
  dev-disk-by\x2dpath-pci\x2d0000:0c:00.0\x2dscsi\x2d0:1:0:0\x2dpart5.device                       loaded    active   plugged   LOGICAL_VOLUME 5
  dev-disk-by\x2duuid-df66347c\x2d8781\x2d4913\x2dbb0b\x2d70e06ae7043f.device                      loaded    active   plugged   LOGICAL_VOLUME 5
  dev-disk-by\x2duuid-e023843b\x2d1e63\x2d47ed\x2d8b01\x2d2d15e2a23a43.device                      loaded    active   plugged   LOGICAL_VOLUME 1
  dev-loop0.device                                                                                 loaded    active   plugged   /dev/loop0
  dev-loop1.device                                                                                 loaded    active   plugged   /dev/loop1
  dev-loop2.device                                                                                 loaded    active   plugged   /dev/loop2
  dev-loop3.device                                                                                 loaded    active   plugged   /dev/loop3
  dev-loop4.device                                                                                 loaded    active   plugged   /dev/loop4
  dev-rfkill.device                                                                                loaded    active   plugged   /dev/rfkill
  dev-sda.device                                                                                   loaded    active   plugged   LOGICAL_VOLUME
  dev-sda1.device                                                                                  loaded    active   plugged   LOGICAL_VOLUME 1
  dev-sda2.device                                                                                  loaded    active   plugged   LOGICAL_VOLUME 2
  dev-sda5.device                                                                                  loaded    active   plugged   LOGICAL_VOLUME 5
  dev-ttyprintk.device                                                                             loaded    active   plugged   /dev/ttyprintk
  dev-ttyS0.device                                                                                 loaded    active   plugged   /dev/ttyS0
  dev-ttyS1.device                                                                                 loaded    active   plugged   /dev/ttyS1
  dev-ttyS10.device                                                                                loaded    active   plugged   /dev/ttyS10
  dev-ttyS11.device                                                                                loaded    active   plugged   /dev/ttyS11
  dev-ttyS12.device                                                                                loaded    active   plugged   /dev/ttyS12
  dev-ttyS13.device                                                                                loaded    active   plugged   /dev/ttyS13
  dev-ttyS14.device                                                                                loaded    active   plugged   /dev/ttyS14
  dev-ttyS15.device                                                                                loaded    active   plugged   /dev/ttyS15
  dev-ttyS16.device                                                                                loaded    active   plugged   /dev/ttyS16
  dev-ttyS17.device                                                                                loaded    active   plugged   /dev/ttyS17
  dev-ttyS18.device                                                                                loaded    active   plugged   /dev/ttyS18
  dev-ttyS19.device                                                                                loaded    active   plugged   /dev/ttyS19
  dev-ttyS2.device                                                                                 loaded    active   plugged   /dev/ttyS2
  dev-ttyS20.device                                                                                loaded    active   plugged   /dev/ttyS20
  dev-ttyS21.device                                                                                loaded    active   plugged   /dev/ttyS21
  dev-ttyS22.device                                                                                loaded    active   plugged   /dev/ttyS22
  dev-ttyS23.device                                                                                loaded    active   plugged   /dev/ttyS23
  dev-ttyS24.device                                                                                loaded    active   plugged   /dev/ttyS24
  dev-ttyS25.device                                                                                loaded    active   plugged   /dev/ttyS25
  dev-ttyS26.device                                                                                loaded    active   plugged   /dev/ttyS26
  dev-ttyS27.device                                                                                loaded    active   plugged   /dev/ttyS27
  dev-ttyS28.device                                                                                loaded    active   plugged   /dev/ttyS28
  dev-ttyS29.device                                                                                loaded    active   plugged   /dev/ttyS29
  dev-ttyS3.device                                                                                 loaded    active   plugged   /dev/ttyS3
  dev-ttyS30.device                                                                                loaded    active   plugged   /dev/ttyS30
  dev-ttyS31.device                                                                                loaded    active   plugged   /dev/ttyS31
  dev-ttyS4.device                                                                                 loaded    active   plugged   /dev/ttyS4
  dev-ttyS5.device                                                                                 loaded    active   plugged   /dev/ttyS5
  dev-ttyS6.device                                                                                 loaded    active   plugged   /dev/ttyS6
  dev-ttyS7.device                                                                                 loaded    active   plugged   /dev/ttyS7
  dev-ttyS8.device                                                                                 loaded    active   plugged   /dev/ttyS8
  dev-ttyS9.device                                                                                 loaded    active   plugged   /dev/ttyS9
  sys-devices-pci0000:00-0000:00:01.0-0000:02:00.0-net-eth0.device                                 loaded    active   plugged   NetXtreme II BCM57711E 10-Gigabit PCIe (NC532i Dual Port 10GbE Multifunction BL-C Adapter)
  sys-devices-pci0000:00-0000:00:01.0-0000:02:00.1-net-eth1.device                                 loaded    active   plugged   NetXtreme II BCM57711E 10-Gigabit PCIe (NC532i Dual Port 10GbE Multifunction BL-C Adapter)
  sys-devices-pci0000:00-0000:00:1c.0-0000:0c:00.0-host0-target0:1:0-0:1:0:0-block-sda-sda1.device loaded    active   plugged   LOGICAL_VOLUME 1
  sys-devices-pci0000:00-0000:00:1c.0-0000:0c:00.0-host0-target0:1:0-0:1:0:0-block-sda-sda2.device loaded    active   plugged   LOGICAL_VOLUME 2
  sys-devices-pci0000:00-0000:00:1c.0-0000:0c:00.0-host0-target0:1:0-0:1:0:0-block-sda-sda5.device loaded    active   plugged   LOGICAL_VOLUME 5
  sys-devices-pci0000:00-0000:00:1c.0-0000:0c:00.0-host0-target0:1:0-0:1:0:0-block-sda.device      loaded    active   plugged   LOGICAL_VOLUME
  sys-devices-platform-serial8250-tty-ttyS0.device                                                 loaded    active   plugged   /sys/devices/platform/serial8250/tty/ttyS0
  sys-devices-platform-serial8250-tty-ttyS10.device                                                loaded    active   plugged   /sys/devices/platform/serial8250/tty/ttyS10
  sys-devices-platform-serial8250-tty-ttyS11.device                                                loaded    active   plugged   /sys/devices/platform/serial8250/tty/ttyS11
  sys-devices-platform-serial8250-tty-ttyS12.device                                                loaded    active   plugged   /sys/devices/platform/serial8250/tty/ttyS12
  sys-devices-platform-serial8250-tty-ttyS13.device                                                loaded    active   plugged   /sys/devices/platform/serial8250/tty/ttyS13
  sys-devices-platform-serial8250-tty-ttyS14.device                                                loaded    active   plugged   /sys/devices/platform/serial8250/tty/ttyS14
  sys-devices-platform-serial8250-tty-ttyS15.device                                                loaded    active   plugged   /sys/devices/platform/serial8250/tty/ttyS15
  sys-devices-platform-serial8250-tty-ttyS16.device                                                loaded    active   plugged   /sys/devices/platform/serial8250/tty/ttyS16
  sys-devices-platform-serial8250-tty-ttyS17.device                                                loaded    active   plugged   /sys/devices/platform/serial8250/tty/ttyS17
  sys-devices-platform-serial8250-tty-ttyS18.device                                                loaded    active   plugged   /sys/devices/platform/serial8250/tty/ttyS18
  sys-devices-platform-serial8250-tty-ttyS19.device                                                loaded    active   plugged   /sys/devices/platform/serial8250/tty/ttyS19
  sys-devices-platform-serial8250-tty-ttyS2.device                                                 loaded    active   plugged   /sys/devices/platform/serial8250/tty/ttyS2
  sys-devices-platform-serial8250-tty-ttyS20.device                                                loaded    active   plugged   /sys/devices/platform/serial8250/tty/ttyS20
  sys-devices-platform-serial8250-tty-ttyS21.device                                                loaded    active   plugged   /sys/devices/platform/serial8250/tty/ttyS21
  sys-devices-platform-serial8250-tty-ttyS22.device                                                loaded    active   plugged   /sys/devices/platform/serial8250/tty/ttyS22
  sys-devices-platform-serial8250-tty-ttyS23.device                                                loaded    active   plugged   /sys/devices/platform/serial8250/tty/ttyS23
  sys-devices-platform-serial8250-tty-ttyS24.device                                                loaded    active   plugged   /sys/devices/platform/serial8250/tty/ttyS24
  sys-devices-platform-serial8250-tty-ttyS25.device                                                loaded    active   plugged   /sys/devices/platform/serial8250/tty/ttyS25
  sys-devices-platform-serial8250-tty-ttyS26.device                                                loaded    active   plugged   /sys/devices/platform/serial8250/tty/ttyS26
  sys-devices-platform-serial8250-tty-ttyS27.device                                                loaded    active   plugged   /sys/devices/platform/serial8250/tty/ttyS27
  sys-devices-platform-serial8250-tty-ttyS28.device                                                loaded    active   plugged   /sys/devices/platform/serial8250/tty/ttyS28
  sys-devices-platform-serial8250-tty-ttyS29.device                                                loaded    active   plugged   /sys/devices/platform/serial8250/tty/ttyS29
  sys-devices-platform-serial8250-tty-ttyS3.device                                                 loaded    active   plugged   /sys/devices/platform/serial8250/tty/ttyS3
  sys-devices-platform-serial8250-tty-ttyS30.device                                                loaded    active   plugged   /sys/devices/platform/serial8250/tty/ttyS30
  sys-devices-platform-serial8250-tty-ttyS31.device                                                loaded    active   plugged   /sys/devices/platform/serial8250/tty/ttyS31
  sys-devices-platform-serial8250-tty-ttyS4.device                                                 loaded    active   plugged   /sys/devices/platform/serial8250/tty/ttyS4
  sys-devices-platform-serial8250-tty-ttyS5.device                                                 loaded    active   plugged   /sys/devices/platform/serial8250/tty/ttyS5
  sys-devices-platform-serial8250-tty-ttyS6.device                                                 loaded    active   plugged   /sys/devices/platform/serial8250/tty/ttyS6
  sys-devices-platform-serial8250-tty-ttyS7.device                                                 loaded    active   plugged   /sys/devices/platform/serial8250/tty/ttyS7
  sys-devices-platform-serial8250-tty-ttyS8.device                                                 loaded    active   plugged   /sys/devices/platform/serial8250/tty/ttyS8
  sys-devices-platform-serial8250-tty-ttyS9.device                                                 loaded    active   plugged   /sys/devices/platform/serial8250/tty/ttyS9
  sys-devices-pnp0-00:03-tty-ttyS1.device                                                          loaded    active   plugged   /sys/devices/pnp0/00:03/tty/ttyS1
  sys-devices-virtual-block-loop0.device                                                           loaded    active   plugged   /sys/devices/virtual/block/loop0
  sys-devices-virtual-block-loop1.device                                                           loaded    active   plugged   /sys/devices/virtual/block/loop1
  sys-devices-virtual-block-loop2.device                                                           loaded    active   plugged   /sys/devices/virtual/block/loop2
  sys-devices-virtual-block-loop3.device                                                           loaded    active   plugged   /sys/devices/virtual/block/loop3
  sys-devices-virtual-block-loop4.device                                                           loaded    active   plugged   /sys/devices/virtual/block/loop4
  sys-devices-virtual-misc-rfkill.device                                                           loaded    active   plugged   /sys/devices/virtual/misc/rfkill
  sys-devices-virtual-net-bond0.device                                                             loaded    active   plugged   /sys/devices/virtual/net/bond0
  sys-devices-virtual-net-hostnet.device                                                           loaded    active   plugged   /sys/devices/virtual/net/hostnet
  sys-devices-virtual-tty-ttyprintk.device                                                         loaded    active   plugged   /sys/devices/virtual/tty/ttyprintk
  sys-module-configfs.device                                                                       loaded    active   plugged   /sys/module/configfs
  sys-module-fuse.device                                                                           loaded    active   plugged   /sys/module/fuse
  sys-subsystem-net-devices-bond0.device                                                           loaded    active   plugged   /sys/subsystem/net/devices/bond0
  sys-subsystem-net-devices-eth0.device                                                            loaded    active   plugged   NetXtreme II BCM57711E 10-Gigabit PCIe (NC532i Dual Port 10GbE Multifunction BL-C Adapter)
  sys-subsystem-net-devices-eth1.device                                                            loaded    active   plugged   NetXtreme II BCM57711E 10-Gigabit PCIe (NC532i Dual Port 10GbE Multifunction BL-C Adapter)
  sys-subsystem-net-devices-hostnet.device                                                         loaded    active   plugged   /sys/subsystem/net/devices/hostnet
  -.mount                                                                                          loaded    active   mounted   /
  dev-hugepages.mount                                                                              loaded    active   mounted   Huge Pages File System
  dev-mqueue.mount                                                                                 loaded    active   mounted   POSIX Message Queue File System
  proc-sys-fs-binfmt_misc.mount                                                                    loaded    inactive dead      Arbitrary Executable File Formats File System
  run-snapd-ns-lxd.mnt.mount                                                                       loaded    active   mounted   /run/snapd/ns/lxd.mnt
  run-snapd-ns.mount                                                                               loaded    active   mounted   /run/snapd/ns
  run-user-0.mount                                                                                 loaded    active   mounted   /run/user/0
  snap-core-4206.mount                                                                             loaded    active   mounted   Mount unit for core
  snap-core-4327.mount                                                                             loaded    active   mounted   Mount unit for core
  snap-lxd-5866.mount                                                                              loaded    active   mounted   Mount unit for lxd
  snap-lxd-6418.mount                                                                              loaded    active   mounted   Mount unit for lxd
  snap-lxd-6469.mount                                                                              loaded    active   mounted   Mount unit for lxd
  sys-fs-fuse-connections.mount                                                                    loaded    active   mounted   FUSE Control File System
  sys-kernel-config.mount                                                                          loaded    active   mounted   Configuration File System
  sys-kernel-debug-tracing.mount                                                                   loaded    active   mounted   /sys/kernel/debug/tracing
  sys-kernel-debug.mount                                                                           loaded    active   mounted   Debug File System
* tmp.mount                                                                                        not-found inactive dead      tmp.mount
  systemd-ask-password-console.path                                                                loaded    active   waiting   Dispatch Password Requests to Console Directory Watch
  systemd-ask-password-plymouth.path                                                               loaded    inactive dead      Forward Password Requests to Plymouth Directory Watch
  systemd-ask-password-wall.path                                                                   loaded    active   waiting   Forward Password Requests to Wall Directory Watch
  systemd-networkd-resolvconf-update.path                                                          loaded    active   waiting   Trigger resolvconf update for networkd DNS
  init.scope                                                                                       loaded    active   running   System and Service Manager
  session-1.scope                                                                                  loaded    active   running   Session 1 of user root
  accounts-daemon.service                                                                          loaded    active   running   Accounts Service
  apparmor.service                                                                                 loaded    active   exited    LSB: AppArmor initialization
  apt-daily-upgrade.service                                                                        loaded    inactive dead      Daily apt upgrade and clean activities
  apt-daily.service                                                                                loaded    inactive dead      Daily apt download activities
* auditd.service                                                                                   not-found inactive dead      auditd.service
* clamav-daemon.service                                                                            not-found inactive dead      clamav-daemon.service
* console-screen.service                                                                           not-found inactive dead      console-screen.service
  console-setup.service                                                                            loaded    active   exited    Set console font and keymap
  cron.service                                                                                     loaded    active   running   Regular background program processing daemon
  dbus.service                                                                                     loaded    active   running   D-Bus System Message Bus
* display-manager.service                                                                          not-found inactive dead      display-manager.service
* dovecot.service                                                                                  not-found inactive dead      dovecot.service
  emergency.service                                                                                loaded    inactive dead      Emergency Shell
  friendly-recovery.service                                                                        loaded    inactive dead      Recovery mode menu
  getty-static.service                                                                             loaded    inactive dead      getty on tty2-tty6 if dbus and logind are not available
  getty@tty1.service                                                                               loaded    active   running   Getty on tty1
  grub-common.service                                                                              loaded    active   exited    LSB: Record successful boot for GRUB
  ifup@bond0.service                                                                               loaded    active   exited    ifup for bond0
  ifup@eth0.service                                                                                loaded    active   exited    ifup for eth0
  ifup@eth1.service                                                                                loaded    active   exited    ifup for eth1
  ifup@hostnet.service                                                                             loaded    active   exited    ifup for hostnet
  irqbalance.service                                                                               loaded    active   running   LSB: daemon to balance interrupts for SMP systems
* kbd.service                                                                                      not-found inactive dead      kbd.service
  keyboard-setup.service                                                                           loaded    active   exited    Set console keymap
  kmod-static-nodes.service                                                                        loaded    active   exited    Create list of required static device nodes for the current kernel
  lm-sensors.service                                                                               loaded    active   exited    Initialize hardware monitoring sensors
* mysql.service                                                                                    not-found inactive dead      mysql.service
  networking.service                                                                               loaded    active   exited    Raise network interfaces
  ntp.service                                                                                      loaded    active   running   LSB: Start NTP daemon
  ondemand.service                                                                                 loaded    active   exited    LSB: Set the CPU Frequency Scaling governor to "ondemand"
  plymouth-quit-wait.service                                                                       loaded    inactive dead      Hold until boot process finishes up
  plymouth-quit.service                                                                            loaded    inactive dead      Terminate Plymouth Boot Screen
  plymouth-read-write.service                                                                      loaded    inactive dead      Tell Plymouth To Write Out Runtime Data
  plymouth-start.service                                                                           loaded    inactive dead      Show Plymouth Boot Screen
  postfix.service                                                                                  loaded    active   running   LSB: Postfix Mail Transport Agent
* postgresql.service                                                                               not-found inactive dead      postgresql.service
* postgrey.service                                                                                 not-found inactive dead      postgrey.service
  rbdmap.service                                                                                   loaded    active   exited    Map RBD devices
  rc-local.service                                                                                 loaded    active   exited    /etc/rc.local Compatibility
  rescue.service                                                                                   loaded    inactive dead      Rescue Shell
  resolvconf.service                                                                               loaded    active   exited    Nameserver information manager
  rsyslog.service                                                                                  loaded    active   running   System Logging Service
* saslauthd.service                                                                                not-found inactive dead      saslauthd.service
  setvtrgb.service                                                                                 loaded    active   exited    Set console scheme
* smartd.service                                                                                   loaded    failed   failed    Self Monitoring and Reporting Technology (SMART) Daemon
  snap.lxd.daemon.service                                                                          loaded    active   running   Service for snap application lxd.daemon
  snapd.autoimport.service                                                                         loaded    inactive dead      Auto import assertions from block devices
  snapd.core-fixup.service                                                                         loaded    inactive dead      Automatically repair incorrect owner/permissions on core devices
  snapd.refresh.service                                                                            loaded    inactive dead      Automatically refresh installed snaps
  snapd.service                                                                                    loaded    active   running   Snappy daemon
  snapd.snap-repair.service                                                                        loaded    inactive dead      Automatically fetch and run repair assertions
* spamassassin.service                                                                             not-found inactive dead      spamassassin.service
  ssh.service                                                                                      loaded    active   running   OpenBSD Secure Shell server
  systemd-ask-password-console.service                                                             loaded    inactive dead      Dispatch Password Requests to Console
  systemd-ask-password-plymouth.service                                                            loaded    inactive dead      Forward Password Requests to Plymouth
  systemd-ask-password-wall.service                                                                loaded    inactive dead      Forward Password Requests to Wall
  systemd-binfmt.service                                                                           loaded    inactive dead      Set Up Additional Binary Formats
  systemd-fsck-root.service                                                                        loaded    inactive dead      File System Check on Root Device
  systemd-fsckd.service                                                                            loaded    inactive dead      File System Check Daemon to report status
  systemd-hwdb-update.service                                                                      loaded    inactive dead      Rebuild Hardware Database
  systemd-initctl.service                                                                          loaded    inactive dead      /dev/initctl Compatibility Daemon
  systemd-journal-flush.service                                                                    loaded    active   exited    Flush Journal to Persistent Storage
  systemd-journald.service                                                                         loaded    active   running   Journal Service
  systemd-logind.service                                                                           loaded    active   running   Login Service
  systemd-machine-id-commit.service                                                                loaded    inactive dead      Commit a transient machine-id on disk
* systemd-modules-load.service                                                                     loaded    failed   failed    Load Kernel Modules
  systemd-networkd-resolvconf-update.service                                                       loaded    inactive dead      Update resolvconf for networkd DNS
  systemd-random-seed.service                                                                      loaded    active   exited    Load/Save Random Seed
  systemd-remount-fs.service                                                                       loaded    active   exited    Remount Root and Kernel File Systems
  systemd-rfkill.service                                                                           loaded    inactive dead      Load/Save RF Kill Switch Status
  systemd-sysctl.service                                                                           loaded    active   exited    Apply Kernel Variables
* systemd-sysusers.service                                                                         not-found inactive dead      systemd-sysusers.service
  systemd-timesyncd.service                                                                        loaded    inactive dead      Network Time Synchronization
  systemd-tmpfiles-clean.service                                                                   loaded    inactive dead      Cleanup of Temporary Directories
  systemd-tmpfiles-setup-dev.service                                                               loaded    active   exited    Create Static Device Nodes in /dev
  systemd-tmpfiles-setup.service                                                                   loaded    active   exited    Create Volatile Files and Directories
  systemd-udev-trigger.service                                                                     loaded    active   exited    udev Coldplug all Devices
  systemd-udevd.service                                                                            loaded    active   running   udev Kernel Device Manager
* systemd-update-done.service                                                                      not-found inactive dead      systemd-update-done.service
  systemd-update-utmp-runlevel.service                                                             loaded    inactive dead      Update UTMP about System Runlevel Changes
  systemd-update-utmp.service                                                                      loaded    active   exited    Update UTMP about System Boot/Shutdown
  systemd-user-sessions.service                                                                    loaded    active   exited    Permit User Sessions
* systemd-vconsole-setup.service                                                                   not-found inactive dead      systemd-vconsole-setup.service
  ufw.service                                                                                      loaded    active   exited    Uncomplicated firewall
  uptimed.service                                                                                  loaded    active   running   uptime record daemon
  ureadahead-stop.service                                                                          loaded    inactive dead      Stop ureadahead data collection
  ureadahead.service                                                                               loaded    inactive dead      Read required files in advance
  user@0.service                                                                                   loaded    active   running   User Manager for UID 0
  uuidd.service                                                                                    loaded    inactive dead      Daemon for generating UUIDs
  zabbix-agent.service                                                                             loaded    active   running   Zabbix Agent
  -.slice                                                                                          loaded    active   active    Root Slice
  system-getty.slice                                                                               loaded    active   active    system-getty.slice
  system.slice                                                                                     loaded    active   active    System Slice
  user-0.slice                                                                                     loaded    active   active    User Slice of root
  user.slice                                                                                       loaded    active   active    User and Session Slice
  dbus.socket                                                                                      loaded    active   running   D-Bus System Message Bus Socket
  snapd.socket                                                                                     loaded    active   running   Socket activation for snappy daemon
  syslog.socket                                                                                    loaded    active   running   Syslog Socket
  systemd-fsckd.socket                                                                             loaded    active   listening fsck to fsckd communication Socket
  systemd-initctl.socket                                                                           loaded    active   listening /dev/initctl Compatibility Named Pipe
  systemd-journald-audit.socket                                                                    loaded    active   running   Journal Audit Socket
  systemd-journald-dev-log.socket                                                                  loaded    active   running   Journal Socket (/dev/log)
  systemd-journald.socket                                                                          loaded    active   running   Journal Socket
  systemd-rfkill.socket                                                                            loaded    active   listening Load/Save RF Kill Switch Status /dev/rfkill Watch
  systemd-udevd-control.socket                                                                     loaded    active   running   udev Control Socket
  systemd-udevd-kernel.socket                                                                      loaded    active   running   udev Kernel Socket
  uuidd.socket                                                                                     loaded    active   listening UUID daemon activation socket
  dev-disk-by\x2did-scsi\x2d3600508b1001c8a72b6f7a01afe964c74\x2dpart5.swap                        loaded    active   active    /dev/disk/by-id/scsi-3600508b1001c8a72b6f7a01afe964c74-part5
  dev-disk-by\x2did-wwn\x2d0x600508b1001c8a72b6f7a01afe964c74\x2dpart5.swap                        loaded    active   active    /dev/disk/by-id/wwn-0x600508b1001c8a72b6f7a01afe964c74-part5
  dev-disk-by\x2dpath-pci\x2d0000:0c:00.0\x2dscsi\x2d0:1:0:0\x2dpart5.swap                         loaded    active   active    /dev/disk/by-path/pci-0000:0c:00.0-scsi-0:1:0:0-part5
  dev-disk-by\x2duuid-df66347c\x2d8781\x2d4913\x2dbb0b\x2d70e06ae7043f.swap                        loaded    active   active    /dev/disk/by-uuid/df66347c-8781-4913-bb0b-70e06ae7043f
  dev-sda5.swap                                                                                    loaded    active   active    /dev/sda5
  basic.target                                                                                     loaded    active   active    Basic System
  ceph-fuse.target                                                                                 loaded    active   active    ceph target allowing to start/stop all ceph-fuse@.service instances at once
  ceph.target                                                                                      loaded    active   active    ceph target allowing to start/stop all ceph*@.service instances at once
  cryptsetup.target                                                                                loaded    active   active    Encrypted Volumes
  emergency.target                                                                                 loaded    inactive dead      Emergency Mode
  getty.target                                                                                     loaded    active   active    Login Prompts
  graphical.target                                                                                 loaded    active   active    Graphical Interface
  local-fs-pre.target                                                                              loaded    active   active    Local File Systems (Pre)
  local-fs.target                                                                                  loaded    active   active    Local File Systems
  mail-transport-agent.target                                                                      loaded    active   active    Mail Transport Agent
  multi-user.target                                                                                loaded    active   active    Multi-User System
  network-online.target                                                                            loaded    active   active    Network is Online
  network-pre.target                                                                               loaded    active   active    Network (Pre)
  network.target                                                                                   loaded    active   active    Network
  nss-lookup.target                                                                                loaded    inactive dead      Host and Network Name Lookups
  nss-user-lookup.target                                                                           loaded    active   active    User and Group Name Lookups
  paths.target                                                                                     loaded    active   active    Paths
  remote-fs-pre.target                                                                             loaded    active   active    Remote File Systems (Pre)
  remote-fs.target                                                                                 loaded    active   active    Remote File Systems
  rescue.target                                                                                    loaded    inactive dead      Rescue Mode
  shutdown.target                                                                                  loaded    inactive dead      Shutdown
  slices.target                                                                                    loaded    active   active    Slices
  sockets.target                                                                                   loaded    active   active    Sockets
  swap.target                                                                                      loaded    active   active    Swap
  sysinit.target                                                                                   loaded    active   active    System Initialization
* syslog.target                                                                                    not-found inactive dead      syslog.target
  time-sync.target                                                                                 loaded    active   active    System Time Synchronized
  timers.target                                                                                    loaded    active   active    Timers
  umount.target                                                                                    loaded    inactive dead      Unmount All Filesystems
  apt-daily-upgrade.timer                                                                          loaded    active   waiting   Daily apt upgrade and clean activities
  apt-daily.timer                                                                                  loaded    active   waiting   Daily apt download activities
  snapd.refresh.timer                                                                              loaded    active   waiting   Timer to automatically refresh installed snaps
  snapd.snap-repair.timer                                                                          loaded    inactive dead      Timer to automatically fetch and run repair assertions
  systemd-tmpfiles-clean.timer                                                                     loaded    active   waiting   Daily Cleanup of Temporary Directories
  ureadahead-stop.timer                                                                            loaded    active   elapsed   Stop ureadahead data collection 45s after completed startup

LOAD   = Reflects whether the unit definition was properly loaded.
ACTIVE = The high-level unit activation state, i.e. generalization of SUB.
SUB    = The low-level unit activation state, values depend on unit type.

281 loaded units listed.
To show all installed unit files use 'systemctl list-unit-files'.

stgraber commented 6 years ago

Oh and snap interfaces too

trevorgfrancis commented 6 years ago

root@f8-c1-n5:/var/lib/snapd/apparmor/profiles# snap interfaces
Slot                       Plug
:account-control           -
:accounts-service          -
:alsa                      -
:autopilot-introspection   -
:avahi-control             -
:avahi-observe             -
:bluetooth-control         -
:bluez                     -
:broadcom-asic-control     -
:browser-support           -
:camera                    -
:classic-support           -
:core-support              core:core-support-plug
:cups-control              -
:dcdbas-control            -
:desktop                   -
:desktop-legacy            -
:docker-support            -
:firewall-control          -
:framebuffer               -
:fuse-support              -
:gpg-keys                  -
:gpg-public-keys           -
:gpio-memory-control       -
:greengrass-support        -
:gsettings                 -
:hardware-observe          -
:hardware-random-control   -
:hardware-random-observe   -
:home                      -
:io-ports-control          -
:joystick                  -
:kernel-module-control     -
:kubernetes-support        -
:kvm                       -
:libvirt                   -
:locale-control            -
:log-observe               -
:lxd-support               lxd
:modem-manager             -
:mount-observe             -
:netlink-audit             -
:netlink-connector         -
:network                   lxd
:network-bind              -
:network-control           -
:network-manager           -
:network-observe           -
:network-setup-control     -
:network-setup-observe     -
:ofono                     -
:opengl                    -
:openvswitch               -
:openvswitch-support       -
:optical-drive             -
:password-manager-service  -
:physical-memory-control   -
:physical-memory-observe   -
:ppp                       -
:process-control           -
:pulseaudio                -
:raw-usb                   -
:removable-media           -
:screen-inhibit-control    -
:shutdown                  -
:snapd-control             -
:ssh-keys                  -
:ssh-public-keys           -
:system-observe            lxd
:system-trace              -
:time-control              -
:timeserver-control        -
:timezone-control          -
:tpm                       -
:uhid                      -
:unity7                    -
:upower-observe            -
:wayland                   -
:x11                       -
lxd:lxd                    -

stgraber commented 6 years ago

What happens if you run lxd --help?

stgraber commented 6 years ago

Hmm, that's confusing, the systemd output suggests it's running. Can you paste ps fauxww too?

trevorgfrancis commented 6 years ago

root@f8-c1-n5:/var/lib/s USER PID %CPU %MEM root 2 0.0 0.0 root 4 0.0 0.0 root 7 0.0 0.0 root 8 0.0 0.0 root 9 0.0 0.0 root 10 0.0 0.0 root 11 0.0 0.0 root 12 0.0 0.0 root 13 0.0 0.0 root 14 0.0 0.0 root 15 0.0 0.0 root 16 0.0 0.0 root 17 0.0 0.0 root 19 0.0 0.0 root 21 0.0 0.0 root 22 0.0 0.0 root 23 0.0 0.0 root 24 0.0 0.0 root 26 0.0 0.0 root 27 0.0 0.0 root 28 0.0 0.0 root 29 0.0 0.0 root 30 0.0 0.0 root 32 0.0 0.0 root 33 0.0 0.0 root 34 0.0 0.0 root 35 0.0 0.0 root 36 0.0 0.0 root 38 0.0 0.0 root 39 0.0 0.0 root 40 0.0 0.0 root 41 0.0 0.0 root 42 0.0 0.0 root 44 0.0 0.0 root 45 0.0 0.0 root 46 0.0 0.0 root 47 0.0 0.0 root 48 0.0 0.0 root 49 0.0 0.0 root 50 0.0 0.0 root 51 0.0 0.0 root 52 0.0 0.0 root 53 0.0 0.0 root 54 0.0 0.0 root 56 0.0 0.0 root 57 0.0 0.0 root 58 0.0 0.0 root 59 0.0 0.0 root 60 0.0 0.0 root 62 0.0 0.0 root 63 0.0 0.0 root 64 0.0 0.0 root 65 0.0 0.0 root 66 0.0 0.0 root 68 0.0 0.0 root 69 0.0 0.0 root 70 0.0 0.0 root 71 0.0 0.0 root 72 0.0 0.0 root 74 0.0 0.0 root 75 0.0 0.0 root 76 0.0 0.0 root 77 0.0 0.0 root 78 0.0 0.0 root 80 0.0 0.0 root 81 0.0 0.0 root 82 0.0 0.0 root 83 0.0 0.0 root 84 0.0 0.0 root 86 0.0 0.0 root 87 0.0 0.0 root 88 0.0 0.0 root 89 0.0 0.0 root 90 0.0 0.0 root 92 0.0 0.0 root 93 0.0 0.0 root 94 0.0 0.0 root 95 0.0 0.0 root 96 0.0 0.0 root 98 0.0 0.0 root 99 0.0 0.0 root 100 0.0 0.0 root 101 0.0 0.0 root 102 0.0 0.0 root 104 0.0 0.0 root 105 0.0 0.0 root 106 0.0 0.0 root 107 0.0 0.0 root 108 0.0 0.0 root 110 0.0 0.0 root 111 0.0 0.0 root 112 0.0 0.0 root 113 0.0 0.0 root 114 0.0 0.0 root 116 0.0 0.0 root 117 0.0 0.0 root 118 0.0 0.0 root 119 0.0 0.0 root 120 0.0 0.0 root 122 0.0 0.0 root 123 0.0 0.0 root 124 0.0 0.0 root 125 0.0 0.0 root 126 0.0 0.0 root 128 0.0 0.0 root 129 0.0 0.0 root 130 0.0 0.0 root 131 0.0 0.0 root 132 0.0 0.0 root 134 0.0 0.0 root 135 0.0 0.0 root 136 0.0 0.0 root 137 0.0 0.0 root 138 0.0 0.0 root 140 0.0 0.0 root 141 0.0 0.0 root 142 0.0 0.0 root 143 0.0 0.0 root 144 0.0 0.0 root 146 0.0 0.0 root 147 0.0 0.0 root 148 0.0 0.0 root 149 0.0 0.0 root 150 0.0 0.0 root 152 0.0 0.0 root 153 0.0 0.0 root 154 0.0 0.0 root 155 0.0 0.0 root 156 0.0 0.0 root 157 0.0 0.0 root 159 0.0 0.0 root 160 0.0 0.0 root 161 0.0 0.0 root 162 0.0 0.0 root 163 0.0 0.0 root 164 0.0 0.0 root 165 0.0 0.0 root 166 0.0 0.0 root 167 0.0 0.0 root 168 0.0 0.0 root 169 0.0 0.0 root 170 0.0 0.0 root 171 0.0 0.0 root 172 0.0 0.0 root 173 0.0 0.0 root 176 0.0 0.0 root 177 0.0 0.0 root 180 0.0 0.0 root 181 0.0 0.0 root 182 0.0 0.0 root 183 0.0 0.0 root 184 0.0 0.0 root 188 0.0 0.0 root 189 0.0 0.0 root 191 0.0 0.0 root 194 0.0 0.0 root 195 0.0 0.0 root 196 0.0 0.0 root 197 0.0 0.0 root 239 0.0 0.0 root 241 0.0 0.0 root 243 0.0 0.0 root 244 0.0 0.0 root 245 0.0 0.0 root 248 0.0 0.0 root 252 0.0 0.0 root 277 0.0 0.0 root 332 0.0 0.0 root 333 0.0 0.0 root 334 0.0 0.0 root 335 0.0 0.0 root 340 0.0 0.0 root 409 0.0 0.0 root 410 0.0 0.0 root 444 0.0 0.0 root 455 0.0 0.0 root 460 0.0 0.0 root 463 0.0 0.0 root 470 0.0 0.0 root 481 0.0 0.0 root 484 0.0 0.0 root 494 0.0 0.0 root 513 0.0 0.0 root 516 0.0 0.0 root 519 0.0 0.0 root 521 0.0 0.0 root 523 0.0 0.0 root 525 0.0 0.0 root 527 0.0 0.0 root 529 0.0 0.0 root 530 0.0 0.0 root 532 0.0 0.0 root 534 0.0 0.0 root 542 0.0 0.0 root 543 0.0 0.0 root 598 0.0 0.0 root 606 0.0 0.0 root 609 0.0 0.0 root 868 0.0 0.0 root 999 0.0 0.0 root 1000 0.0 0.0 root 1001 0.0 0.0 root 1002 0.0 0.0 root 1003 0.0 0.0 root 1004 0.0 0.0 root 1005 0.0 0.0 root 1006 0.0 0.0 root 1007 0.0 0.0 root 1260 0.0 0.0 root 1269 0.0 0.0 root 1278 0.0 0.0 root 1373 0.0 0.0 root 1537 0.0 0.0 root 1680 0.0 0.0 root 1732 0.0 0.0 root 2698 0.0 0.0 root 2943 0.0 0.0 root 2944 0.0 0.0 root 2997 0.0 0.0 root 3078 0.0 0.0 root 3183 0.0 0.0 root 3210 0.0 0.0 root 3223 0.0 0.0 root 3225 0.0 0.0 root 3238 0.0 0.0 root 3251 0.0 0.0 root 3265 0.0 0.0 root 3279 0.0 0.0 root 3303 0.0 0.0 root 3315 0.0 0.0 root 3330 0.0 0.0 root 3720 0.0 0.0 root 3733 0.0 0.0 root 3746 0.0 0.0 root 3798 0.0 0.0 root 3908 0.0 0.0 root 3987 0.0 0.0 root 4125 0.0 0.0 root 4146 0.0 0.0 root 4194 0.0 0.0 root 4327 0.0 0.0 root 4390 0.0 0.0 root 1 root 446 root 486 daemon 1082 0.0 0.0 root 1084 message+ 1087 root 1099 syslog 1102 root 1105 root 1107 root 1125 root 1408 0.0 0.0 16128 root 1476 root 2172 root 2224 root 4415 ntp 1535 zabbix 1653 zabbix 1655 zabbix 1656 zabbix 1657 zabbix 1660 zabbix 1662 root 1692 root 1718 postfix 1720 postfix 1722 root 2174 root 2185 root 4129 0.0 0.0 root 4214 root 4206 napd/apparmor/profiles# ps fauxww VSZ RSS TTY STAT START TIME COMMAND 0 0 ? S 19:33 0:00 [kthreadd] 0 0 ? S< 19:33 0:00 _ [kworker/0:0H] 0 0 ? S< 19:33 0:00 _ [mm_percpuwq] 0 0 ? S 19:33 0:00 _ [ksoftirqd/0] 0 0 ? S 19:33 0:00 \ [rcusched] 0 0 ? S 19:33 0:00 \ [rcu_bh] 0 0 ? S 19:33 0:00 _ [migration/0] 0 0 ? S 19:33 0:00 _ [watchdog/0] 0 0 ? S 19:33 0:00 _ [cpuhp/0] 0 0 ? S 19:33 0:00 _ [cpuhp/1] 0 0 ? S 19:33 0:00 _ [watchdog/1] 0 0 ? S 19:33 0:00 _ [migration/1] 0 0 ? S 19:33 0:00 _ [ksoftirqd/1] 0 0 ? S< 19:33 0:00 _ [kworker/1:0H] 0 0 ? S 19:33 0:00 _ [cpuhp/2] 0 0 ? S 19:33 0:00 _ [watchdog/2] 0 0 ? S 19:33 0:00 _ [migration/2] 0 0 ? S 19:33 0:00 _ [ksoftirqd/2] 0 0 ? S< 19:33 0:00 _ [kworker/2:0H] 0 0 ? S 19:33 0:00 _ [cpuhp/3] 0 0 ? S 19:33 0:00 _ [watchdog/3] 0 0 ? S 19:33 0:00 _ [migration/3] 0 0 ? S 19:33 0:00 _ [ksoftirqd/3] 0 0 ? S< 19:33 0:00 _ [kworker/3:0H] 0 0 ? S 19:33 0:00 _ [cpuhp/4] 0 0 ? S 19:33 0:00 _ [watchdog/4] 0 0 ? S 19:33 0:00 _ [migration/4] 0 0 ? S 19:33 0:00 _ [ksoftirqd/4] 0 0 ? S< 19:33 0:00 _ [kworker/4:0H] 0 0 ? S 19:33 0:00 _ [cpuhp/5] 0 0 ? S 19:33 0:00 _ [watchdog/5] 0 0 ? S 19:33 0:00 _ [migration/5] 0 0 ? S 19:33 0:00 _ [ksoftirqd/5] 0 0 ? S< 19:33 0:00 _ [kworker/5:0H] 0 0 ? S 19:33 0:00 _ [cpuhp/6] 0 0 ? S 19:33 0:00 _ [watchdog/6] 0 0 ? S 19:33 0:00 _ [migration/6] 0 0 ? S 19:33 0:00 _ [ksoftirqd/6] 0 0 ? S 19:33 0:00 _ [kworker/6:0] 0 0 ? S< 19:33 0:00 _ [kworker/6:0H] 0 0 ? S 19:33 0:00 _ [cpuhp/7] 0 0 ? S 19:33 0:00 _ [watchdog/7] 0 0 ? S 19:33 0:00 _ [migration/7] 0 0 ? S 19:33 0:00 _ [ksoftirqd/7] 0 0 ? S< 19:33 0:00 _ [kworker/7:0H] 0 0 ? S 19:33 0:00 _ [cpuhp/8] 0 0 ? S 19:33 0:00 _ [watchdog/8] 0 0 ? S 19:33 0:00 _ [migration/8] 0 0 ? S 19:33 0:00 _ [ksoftirqd/8] 0 0 ? S< 19:33 0:00 _ [kworker/8:0H] 0 0 ? S 19:33 0:00 _ [cpuhp/9] 0 0 ? S 19:33 0:00 _ [watchdog/9] 0 0 ? S 19:33 0:00 _ [migration/9] 0 0 ? S 19:33 0:00 _ [ksoftirqd/9] 0 0 ? S< 19:33 0:00 _ [kworker/9:0H] 0 0 ? S 19:33 0:00 _ [cpuhp/10] 0 0 ? S 19:33 0:00 _ [watchdog/10] 0 0 ? S 19:33 0:00 _ [migration/10] 0 0 ? S 19:33 0:00 _ [ksoftirqd/10] 0 0 ? S< 19:33 0:00 _ [kworker/10:0H] 0 0 ? S 19:33 0:00 _ [cpuhp/11] 0 0 ? S 19:33 0:00 _ [watchdog/11] 0 0 ? S 19:33 0:00 _ [migration/11] 0 0 ? S 19:33 0:00 _ [ksoftirqd/11] 0 0 ? S< 19:33 0:00 _ [kworker/11:0H] 0 0 ? S 19:33 0:00 _ [cpuhp/12] 0 0 ? S 19:33 0:00 _ [watchdog/12] 0 0 ? S 19:33 0:00 _ [migration/12] 0 0 ? S 19:33 0:00 _ [ksoftirqd/12] 0 0 ? S< 19:33 0:00 _ [kworker/12:0H] 0 0 ? S 19:33 0:00 _ [cpuhp/13] 0 0 ? S 19:33 0:00 _ [watchdog/13] 0 0 ? S 19:33 0:00 _ [migration/13] 0 0 ? S 19:33 0:00 _ [ksoftirqd/13] 0 0 ? S< 19:33 0:00 _ [kworker/13:0H] 0 0 ? S 19:33 0:00 _ [cpuhp/14] 0 0 ? S 19:33 0:00 _ [watchdog/14] 0 0 ? S 19:33 0:00 _ [migration/14] 0 0 ? S 19:33 0:00 _ [ksoftirqd/14] 0 0 ? S< 19:33 0:00 _ [kworker/14:0H] 0 0 ? S 19:33 0:00 _ [cpuhp/15] 0 0 ? S 19:33 0:00 _ [watchdog/15] 0 0 ? S 19:33 0:00 _ [migration/15] 0 0 ? S 19:33 0:00 _ [ksoftirqd/15] 0 0 ? S< 19:33 0:00 _ [kworker/15:0H] 0 0 ? S 19:33 0:00 _ [cpuhp/16] 0 0 ? S 19:33 0:00 _ [watchdog/16] 0 0 ? S 19:33 0:00 _ [migration/16] 0 0 ? S 19:33 0:00 _ [ksoftirqd/16] 0 0 ? S< 19:33 0:00 _ [kworker/16:0H] 0 0 ? S 19:33 0:00 _ [cpuhp/17] 0 0 ? S 19:33 0:00 _ [watchdog/17] 0 0 ? S 19:33 0:00 _ [migration/17] 0 0 ? S 19:33 0:00 _ [ksoftirqd/17] 0 0 ? S< 19:33 0:00 _ [kworker/17:0H] 0 0 ? S 19:33 0:00 _ [cpuhp/18] 0 0 ? S 19:33 0:00 _ [watchdog/18] 0 0 ? S 19:33 0:00 _ [migration/18] 0 0 ? S 19:33 0:00 _ [ksoftirqd/18] 0 0 ? S< 19:33 0:00 _ [kworker/18:0H] 0 0 ? S 19:33 0:00 _ [cpuhp/19] 0 0 ? S 19:33 0:00 _ [watchdog/19] 0 0 ? S 19:33 0:00 _ [migration/19] 0 0 ? S 19:33 0:00 _ [ksoftirqd/19] 0 0 ? S< 19:33 0:00 _ [kworker/19:0H] 0 0 ? S 19:33 0:00 _ [cpuhp/20] 0 0 ? S 19:33 0:00 _ [watchdog/20] 0 0 ? S 19:33 0:00 _ [migration/20] 0 0 ? S 19:33 0:00 _ [ksoftirqd/20] 0 0 ? S< 19:33 0:00 _ [kworker/20:0H] 0 0 ? S 19:33 0:00 _ [cpuhp/21] 0 0 ? S 19:33 0:00 _ [watchdog/21] 0 0 ? S 19:33 0:00 _ [migration/21] 0 0 ? S 19:33 0:00 _ [ksoftirqd/21] 0 0 ? S< 19:33 0:00 _ [kworker/21:0H] 0 0 ? S 19:33 0:00 _ [cpuhp/22] 0 0 ? S 19:33 0:00 _ [watchdog/22] 0 0 ? S 19:33 0:00 _ [migration/22] 0 0 ? S 19:33 0:00 _ [ksoftirqd/22] 0 0 ? S< 19:33 0:00 _ [kworker/22:0H] 0 0 ? S 19:33 0:00 _ [cpuhp/23] 0 0 ? S 19:33 0:00 _ [watchdog/23] 0 0 ? S 19:33 0:00 _ [migration/23] 0 0 ? S 19:33 0:00 _ [ksoftirqd/23] 0 0 ? S< 19:33 0:00 _ [kworker/23:0H] 0 0 ? S 19:33 0:00 _ [kdevtmpfs] 0 0 ? S< 19:33 0:00 _ [netns] 0 0 ? S 19:33 0:00 _ [kworker/0:1] 0 0 ? S 19:33 0:00 _ [kworker/2:1] 0 0 ? S 19:33 0:00 _ [kworker/4:1] 0 0 ? S 19:33 0:00 _ [khungtaskd] 0 0 ? S 19:33 0:00 _ [oomreaper] 0 0 ? S< 19:33 0:00 _ [writeback] 0 0 ? S 19:33 0:00 _ [kcompactd0] 0 0 ? S 19:33 0:00 _ [kcompactd1] 0 0 ? SN 19:33 0:00 _ [ksmd] 0 0 ? SN 19:33 0:00 _ [khugepaged] 0 0 ? S< 19:33 0:00 _ [crypto] 0 0 ? S< 19:33 0:00 _ [kintegrityd] 0 0 ? S< 19:33 0:00 _ [kblockd] 0 0 ? S< 19:33 0:00 \ [atasff] 0 0 ? S< 19:33 0:00 _ [md] 0 0 ? S< 19:33 0:00 _ [edac-poller] 0 0 ? S< 19:33 0:00 \ [devfreqwq] 0 0 ? S< 19:33 0:00 _ [watchdogd] 0 0 ? S 19:33 0:00 _ [kworker/20:1] 0 0 ? S 19:33 0:00 _ [kworker/1:1] 0 0 ? S 19:33 0:00 _ [kworker/6:1] 0 0 ? S 19:33 0:00 _ [kworker/9:1] 0 0 ? S 19:33 0:00 _ [kworker/11:1] 0 0 ? S 19:33 0:00 _ [kworker/12:1] 0 0 ? S 19:33 0:00 _ [kworker/14:1] 0 0 ? S 19:33 0:00 _ [kworker/17:1] 0 0 ? S 19:33 0:00 _ [kworker/21:1] 0 0 ? S 19:33 0:00 _ [kworker/23:1] 0 0 ? S 19:33 0:00 _ [kauditd] 0 0 ? S 19:33 0:00 _ [kswapd0] 0 0 ? S 19:33 0:00 _ [kswapd1] 0 0 ? S 19:33 0:00 _ [ecryptfs-kthrea] 0 0 ? S< 19:33 0:00 _ [kthrotld] 0 0 ? S< 19:33 0:00 \ [acpi_thermalpm] 0 0 ? S 19:33 0:00 _ [kworker/7:1] 0 0 ? S 19:33 0:00 _ [kworker/10:1] 0 0 ? S 19:33 0:00 _ [kworker/19:1] 0 0 ? S 19:33 0:00 _ [kworker/21:2] 0 0 ? S< 19:33 0:00 \ [ipv6addrconf] 0 0 ? S< 19:33 0:00 \ [chargermanager] 0 0 ? S 19:33 0:00 \ [scsi_eh0] 0 0 ? S< 19:33 0:00 \ [scsi_tmf0] 0 0 ? S< 19:33 0:00 _ [bnx2x] 0 0 ? S< 19:33 0:00 \ [bnx2xiov] 0 0 ? S< 19:33 0:00 \ [ttmswap] 0 0 ? S 19:33 0:00 _ [jbd2/sda1-8] 0 0 ? S< 19:33 0:00 _ [ext4-rsv-conver] 0 0 ? S< 19:33 0:00 _ [kworker/0:1H] 0 0 ? S 19:33 0:00 _ [kworker/10:2] 0 0 ? S 19:33 0:00 _ [kworker/23:2] 0 0 ? S 19:33 0:00 _ [kworker/11:2] 0 0 ? S 19:33 0:00 _ [kworker/13:2] 0 0 ? S 19:33 0:00 _ [kworker/15:2] 0 0 ? S< 19:33 0:00 _ [kworker/23:1H] 0 0 ? S 19:33 0:00 _ [kworker/9:2] 0 0 ? S< 19:33 0:00 _ [loop0] 0 0 ? S< 19:33 0:00 _ [loop1] 0 0 ? S< 19:33 0:00 _ [loop2] 0 0 ? S< 19:33 0:00 _ [kworker/1:1H] 0 0 ? S< 19:33 0:00 _ [kworker/20:1H] 0 0 ? S< 19:33 0:00 _ [loop3] 0 0 ? S< 19:33 0:00 _ [loop4] 0 0 ? S< 19:33 0:00 _ [kworker/16:1H] 0 0 ? S< 19:33 0:00 _ [kworker/12:1H] 0 0 ? S< 19:33 0:00 _ [kworker/6:1H] 0 0 ? S< 19:33 0:00 _ [kworker/2:1H] 0 0 ? S< 19:33 0:00 _ [kworker/15:1H] 0 0 ? S< 19:33 0:00 _ [kworker/10:1H] 0 0 ? S< 19:33 0:00 _ [kworker/22:1H] 0 0 ? S 19:33 0:00 _ [kworker/3:2] 0 0 ? S 19:33 0:00 _ [kworker/5:2] 0 0 ? S< 19:33 0:00 _ [bond0] 0 0 ? S< 19:33 0:00 _ [kworker/21:1H] 0 0 ? S< 19:33 0:00 _ [kworker/5:1H] 0 0 ? S< 19:33 0:00 _ [kworker/11:1H] 0 0 ? S< 19:33 0:00 _ [kworker/7:1H] 0 0 ? S< 19:33 0:00 _ [kworker/9:1H] 0 0 ? S< 19:33 0:00 _ [kworker/13:1H] 0 0 ? S< 19:33 0:00 _ [kworker/17:1H] 0 0 ? S< 19:33 0:00 _ [kworker/3:1H] 0 0 ? S< 19:33 0:00 _ [kworker/19:1H] 0 0 ? S 19:33 0:00 _ [kworker/8:2] 0 0 ? S< 19:33 0:00 _ [kworker/4:1H] 0 0 ? S 19:33 0:00 _ [kworker/8:3] 0 0 ? S< 19:33 0:00 _ [kworker/18:1H] 0 0 ? S 19:33 0:00 _ [kworker/19:2] 0 0 ? S 19:33 0:00 _ [kworker/22:2] 0 0 ? S< 19:33 0:00 _ [kworker/14:1H] 0 0 ? S 19:39 0:00 _ [kworker/u66:1] 0 0 ? S 19:48 0:00 _ [kworker/0:0] 0 0 ? S 19:48 0:00 _ [kworker/16:0] 0 0 ? S 19:49 0:00 _ [kworker/u64:2] 0 0 ? S 19:51 0:00 _ [kworker/u66:0] 0 0 ? S 19:55 0:00 _ [kworker/u65:0] 0 0 ? S 19:55 0:00 _ [kworker/14:2] 0 0 ? S 19:55 0:00 _ [kworker/13:0] 0 0 ? S 19:55 0:00 _ [kworker/18:2] 0 0 ? S 19:55 0:00 _ [kworker/2:0] 0 0 ? S 19:55 0:00 _ [kworker/4:2] 0 0 ? S 19:55 0:00 _ [kworker/3:0] 0 0 ? S 19:55 0:00 _ [kworker/1:0] 0 0 ? S 19:55 0:00 _ [kworker/15:0] 0 0 ? S 19:55 0:00 _ [kworker/22:0] 0 0 ? S 19:55 0:00 _ [kworker/17:0] 0 0 ? S 19:59 0:00 _ [kworker/7:0] 0 0 ? S 19:59 0:00 _ [kworker/5:0] 0 0 ? S 19:59 0:00 _ [kworker/16:2] 0 0 ? S 19:59 0:00 _ [kworker/12:0] 0 0 ? S 20:03 0:00 _ [kworker/u65:2] 0 0 ? S 20:09 0:00 _ [kworker/u64:0] 0 0 ? S 20:12 0:00 _ [kworker/18:0] 0 0 ? S< 20:12 0:00 _ [kworker/8:1H] 0 0 ? S 20:12 0:00 _ [kworker/20:0] 0 0 ? S 20:15 0:00 _ [kworker/u64:1] 0 0 ? S 20:19 0:00 _ [kworker/u65:1] 0.1 0.0 37604 5704 ? Ss 19:33 0:04 /sbin/init nopti 0.0 0.0 35272 5688 ? Ss 19:33 0:00 /lib/systemd/systemd-journald 0.0 0.0 46228 5456 ? Ss 19:33 0:00 /lib/systemd/systemd-udevd 6428 644 ? Ss 19:33 0:00 /usr/sbin/uptimed -f 0.0 0.0 28544 3128 ? Ss 19:33 0:00 /lib/systemd/systemd-logind 0.0 0.0 42900 3880 ? Ss 19:33 0:00 /usr/bin/dbus-daemon --system --address=systemd: --nofork --nopidfile --systemd-activation 0.0 0.0 278228 6168 ? Ssl 19:33 0:00 /usr/lib/accountsservice/accounts-daemon 0.0 0.0 256396 3424 ? Ssl 19:33 0:00 /usr/sbin/rsyslogd -n 0.0 0.0 29268 2756 ? Ss 19:33 0:00 /usr/sbin/cron -f 0.0 0.1 1451768 25828 ? Ssl 19:33 0:01 /usr/lib/snapd/snapd 0.0 0.0 19596 2068 ? Ss 19:33 0:00 /usr/sbin/irqbalance --pid=/var/run/irqbalance.pid 884 ? Ss 19:33 0:00 /sbin/dhclient -1 -v -pf /run/dhclient.hostnet.pid -lf /var/lib/dhcp/dhclient.hostnet.leases -I -df /var/lib/dhcp/dhclient6.hostnet.leases hostnet 0.0 0.0 65508 5512 ? Ss 19:33 0:00 /usr/sbin/sshd -D 0.0 0.0 93368 7428 ? Ss 19:34 0:00 _ sshd: root@pts/0 0.0 0.0 24900 5064 pts/0 Ss 19:34 0:00 _ -bash 0.0 0.0 38012 3604 pts/0 R+ 20:20 0:00 \ ps fauxww 0.0 0.0 110032 5160 ? Ss 19:33 0:00 /usr/sbin/ntpd -p /var/run/ntpd.pid -g -u 108:114 0.0 0.0 103980 3256 ? S 19:33 0:00 /usr/sbin/zabbix_agentd -c /etc/zabbix/zabbixagentd.conf 0.0 0.0 103980 4544 ? S 19:33 0:01 \ /usr/sbin/zabbixagentd: collector [idle 1 sec] 0.0 0.0 106136 7512 ? S 19:33 0:00 \ /usr/sbin/zabbixagentd: listener #1 [waiting for connection] 0.0 0.0 106136 7444 ? S 19:33 0:00 \ /usr/sbin/zabbixagentd: listener #2 [waiting for connection] 0.0 0.0 106136 7508 ? S 19:33 0:00 \ /usr/sbin/zabbixagentd: listener #3 [waiting for connection] 0.0 0.0 106140 7312 ? S 19:33 0:00 \ /usr/sbin/zabbixagentd: active checks #1 [idle 1 sec] 0.0 0.0 16224 1744 tty1 Ss+ 19:33 0:00 /sbin/agetty --noclear tty1 linux 0.0 0.0 65408 4400 ? Ss 19:33 0:00 /usr/lib/postfix/sbin/master 0.0 0.0 67476 4384 ? S 19:33 0:00 _ pickup -l -t unix -u -c 0.0 0.0 67524 4472 ? S 19:33 0:00 _ qmgr -l -t unix -u 0.0 0.0 36828 4356 ? Ss 19:34 0:00 /lib/systemd/systemd --user 0.0 0.0 61056 1752 ? S 19:34 0:00 _ (sd-pam) 4504 1716 ? Ss 20:12 0:00 /bin/sh /snap/lxd/6469/commands/daemon.start 0.5 0.1 2546084 29520 ? Sl 20:12 0:02 \ lxd --logfile /var/snap/lxd/common/lxd/logs/lxd.log --group lxd 0.0 0.0 95384 1396 ? Sl 20:12 0:00 lxcfs /var/snap/lxd/common/var/lib/lxcfs -p /var/snap/lxd/common/lxcfs.pid

trevorgfrancis commented 6 years ago

Description: The LXD container manager (daemon)

This is the LXD daemon command line. It's typically started directly by your init system and interacted with through a tool like lxc.

There are however a number of subcommands that let you interact directly with the local LXD daemon and which may not be performed through the REST API alone.

Usage: lxd [flags] lxd [command]

Available Commands: activateifneeded Check if LXD should be started help Help about any command import Import existing containers init Configure the LXD daemon shutdown Tell LXD to shutdown all containers and exit version Show the server version waitready Wait for LXD to be ready to process requests

Flags: --cpu-profile Enable CPU profiling, writing into the specified file -d, --debug Show all debug messages --group The group of users that will be allowed to talk to LXD -h, --help Print help --logfile Path to the log file --memory-profile Enable memory profiling, writing into the specified file --print-goroutines How often to print all the goroutines --trace Log tracing targets -v, --verbose Show all information messages --version Print version number

Use "lxd [command] --help" for more information about a command.

stgraber commented 6 years ago

So the ps output above actually shows LXD running properly on this system.

stgraber commented 6 years ago

What happens if you try talking to it with lxc list?

trevorgfrancis commented 6 years ago

Whoa. Its showing stopped container. This was not happening earlier.

When I try and launch the container, it tells me:

lxc 20180404012550.105 ERROR lxc_parse - parse.c:lxc_file_for_each_line_mmap:102 - Failed to parse config: lxc.aa_profile=unconfined lxc 20180404012550.106 ERROR lxc_confile - confile.c:parse_line:2340 - Unknown configuration key "lxc.aa_profile" lxc 20180404012550.106 ERROR lxc_parse - parse.c:lxc_file_for_each_line_mmap:102 - Failed to parse config: lxc.aa_profile=unconfined

However, the profile assigned to this container has no such entry. When I try and update the default profile, it tells me that the lxc commands are wrong...but they have all compliant commands. Its almost like the profile is stuck in a state between removing the pre 3.0 rawlxc profiles and the 3.0 compliant profile.

trevorgfrancis commented 6 years ago

I was able to delete the container and profiles and bring it back up. This resolved the issue.

stgraber commented 6 years ago

Was the key maybe directly assigned to the container? That'd explain why deleting and recreating it would fix it but modifying the profile wouldn't.

stgraber commented 6 years ago

Updating the default profile was likely making those errors surface because updating a profile causes all containers that use it to reload their config, so a locally set raw.lxc on the container would then report an error when updating the profile too.

C0rn3j commented 6 years ago

Just had this happen too on 16.04 (second time; but probably a slightly different issue albeit with the same error message).

Both times it was dead apparmor.

Simply executing the following fixes it:

systemctl status apparmor
# "Yup, dead apparmor"
systemctl restart apparmor
snap restart lxd

ttepatti commented 6 years ago

@C0rn3j I had the exact same issue, and your fix worked perfectly! For those of you who are running into this issue on Kali Linux, I don't believe apparmor starts at boot, forcing you to restart/start the service each time you boot your device. As a permanent solution, set apparmor to start at boot.

hakimov2021 commented 5 years ago

-- sudo service apparmor teardown -- docker stop $(docker ps -qa)

1) sudo service apparmor restart

uudecode commented 3 years ago

Just had this happen too on 16.04 (second time; but probably a slightly different issue albeit with the same error message).

Both times it was dead apparmor.

Simply executing the following fixes it:
systemctl status apparmor
# "Yup, dead apparmor"
systemctl restart apparmor
snap restart lxd

Thanks dude!

kub1x commented 2 years ago

I got this exact message trying to run certbot installed using snapd and got here searching for a solution (first and most relevant response) so posting for referrence. In my case reinstalling the program (certbot in my case) using snap helped. AppArmor was up and ok. Solution also mentioned here.

snap remove certbot
snap install --classic certbot

canonical / lxd

cannot change profile for the next exec call: No such file or directory #4402