Open jaayala opened 5 years ago
I have the same problem. It worked on CentOS 7.5, and stopped working when yesterday I upgraded to CentOS 7.6.
I have SELinux disabled in /etc/sysconfig/docker file. Docker service was restarted, and "docker info" does not show selinux in Security Options section.
Here is my Dockerfile:
FROM centos:7
WORKDIR /1
COPY ./rt /1
RUN setcap 'cap_sys_nice=eip' /1/rt
CMD ["/1/rt"]
I run my docker using following command:
docker run --cap-add=sys_nice --security-opt seccomp=unconfined --ulimit rtprio=99 rt-test
I also checked /var/log/audit/audit.log, but did not found any clue there.
[root@localhost 1]# cat /etc/centos-release
CentOS Linux release 7.6.1810 (Core)
[root@localhost 1]# uname -a
Linux localhost.localdomain 3.10.0-957.1.3.el7.x86_64 #1 SMP Thu Nov 29 14:49:43 UTC 2018 x86_64 x86_64 x86_64 GNU/Linux
[root@localhost 1]# docker version
Client:
Version: 1.13.1
API version: 1.26
Package version: docker-1.13.1-88.git07f3374.el7.centos.x86_64
Go version: go1.9.4
Git commit: 07f3374/1.13.1
Built: Fri Dec 7 16:13:51 2018
OS/Arch: linux/amd64
Server:
Version: 1.13.1
API version: 1.26 (minimum version 1.12)
Package version: docker-1.13.1-88.git07f3374.el7.centos.x86_64
Go version: go1.9.4
Git commit: 07f3374/1.13.1
Built: Fri Dec 7 16:13:51 2018
OS/Arch: linux/amd64
Experimental: false
Actual behavior
docker: Error response from daemon: Your kernel does not support cgroup cpu real-time runtime.
Steps to reproduce the behavior
Output of
docker version
:Output of
docker info
:Additional environment details (AWS, VirtualBox, physical, etc.) Distributor ID: Ubuntu Description: Ubuntu 18.04.1 LTS Release: 18.04 Codename: bionic
uname -mvrs Linux 4.16.12-rt5-klue-rt #2 SMP PREEMPT RT Wed Jun 6 14:55:38 JST 2018 x86_64