search

intel / ACON

Apache License 2.0
55 stars 15 forks source link

[acond] Encounter `apr_sockaddr_info_get() failed for vm` error when enable apache httpd docker #76

Open billionairiam opened 6 months ago

billionairiam commented 6 months ago

Below is the log info:

EFI stub: Loaded initrd from LINUX_EFI_INITRD_MEDIA_GUID device path
NET: Registered PF_PACKET protocol family
NET: Registered PF_VSOCK protocol family
IPI shorthand broadcast: enabled
sched_clock: Marking stable (28325170, 1904684)->(49526218, -19296364)
Sending DHCP requests ., OK
IP-Config: Got DHCP answer from 10.0.2.2, my address is 10.0.2.15
IP-Config: Complete:
     device=eth0, hwaddr=52:54:00:12:34:56, ipaddr=10.0.2.15, mask=255.255.255.0, gw=10.0.2.2
     host=vm, domain=, nis-domain=(none)
     bootserver=10.0.2.2, rootserver=10.0.2.2, rootpath=
     nameserver0=10.0.2.3
Freeing unused kernel image (initmem) memory: 1144K
Write protecting the kernel read-only data: 8192k
Freeing unused kernel image (rodata/data gap) memory: 1488K
Run /init as init process
mount_fstab: Mounted /proc
mount_fstab: Mounted /dev
mount_fstab: Mounted /dev/pts
mount_fstab: Mounted /sys
mount_fstab: Mounted /tmp
mount_fstab: Mounted /run
mount_fstab: Mounted /shared
dm_format: dmsetup not found -- vda@
2024/01/09 09:50:55 Service: Connected
Failed to open /dev/tdx_guest
Failed to open /dev/tdx_guest
2024/01/09 09:50:55 Received ACON Manifest, ID: sha384/433834aed76eb2531dfbea9447157e61507652c52ac83e11f570442d52aa56cdffd4579fa588204e99daf81056edc419/9cf2d02e1d88c15c1475367149ecfb93a10e7eb77c8609166f460990ad246a60d7dea8acb4a93c0c44acf69fec2b8673
2024/01/09 09:50:55 Missing layers:
2024/01/09 09:50:55     [0]: "sha384/bb05751aa7b6532b77bc34d7bf07c8af59a8128a98f58d2d7ffec931519f0510767996ee0638453ce699d674bc51ebe6"
2024/01/09 09:50:55     [1]: "sha384/3975adffa1ade28bfb2dc784c514018f92a46c45051a62c4c7df5ee1a3ecfb0c6efc9a0c4c7eb6ef3b4801f2c6b37db3"
2024/01/09 09:50:55     [2]: "sha384/ccdfa1aec6214bf6db74b4addaca7f87ab5980bcfdbf6f5fcab8d8425bc2169ca3bc9dd6046b26e4b1da6ba33c31dfb0"
2024/01/09 09:50:55     [3]: "sha384/53865452755cde5d2af5c0124565a435477854acb6cf77d9dee39628efd864946d96314efe26e0093cb05d78ec907a02"
2024/01/09 09:50:55     [4]: "sha384/36dbb6375e6a827e59967a1265b5e3fde04539093ef72c4940c6ceefc296d4246b7143bf791ac11945f602ba1b5b42b4"
2024/01/09 09:50:55     [5]: "sha384/8d245d4771a1704535982c6d995bb386eddbd94c2c7318cfbc3320893aa6beb0b761469eb799135dad7cb6c75022ef76"
2024/01/09 09:50:55     [6]: "sha384/53b002a6893ca33e6340c0f50ba63b4da1ef97824363a7637e604f3e54f775c150aac1c3071036904b9cfa691a05c164"
2024/01/09 09:50:57 Added File System Layer: sha384/bb05751aa7b6532b77bc34d7bf07c8af59a8128a98f58d2d7ffec931519f0510767996ee0638453ce699d674bc51ebe6
2024/01/09 09:50:57 Added File System Layer: sha384/3975adffa1ade28bfb2dc784c514018f92a46c45051a62c4c7df5ee1a3ecfb0c6efc9a0c4c7eb6ef3b4801f2c6b37db3
2024/01/09 09:50:57 Added File System Layer: sha384/ccdfa1aec6214bf6db74b4addaca7f87ab5980bcfdbf6f5fcab8d8425bc2169ca3bc9dd6046b26e4b1da6ba33c31dfb0
2024/01/09 09:50:57 Added File System Layer: sha384/53865452755cde5d2af5c0124565a435477854acb6cf77d9dee39628efd864946d96314efe26e0093cb05d78ec907a02
2024/01/09 09:50:58 Added File System Layer: sha384/36dbb6375e6a827e59967a1265b5e3fde04539093ef72c4940c6ceefc296d4246b7143bf791ac11945f602ba1b5b42b4
2024/01/09 09:50:58 Added File System Layer: sha384/8d245d4771a1704535982c6d995bb386eddbd94c2c7318cfbc3320893aa6beb0b761469eb799135dad7cb6c75022ef76
2024/01/09 09:50:58 Added File System Layer: sha384/53b002a6893ca33e6340c0f50ba63b4da1ef97824363a7637e604f3e54f775c150aac1c3071036904b9cfa691a05c164
2024/01/09 09:50:58 Started ACON Instance, ID: 2
AH00557: httpd: apr_sockaddr_info_get() failed for vm
AH00558: httpd: Could not reliably determine the server's fully qualified domain name, using 127.0.0.1. Set the 'ServerName' directive globally to suppress this message
(13)Permission denied: AH00091: httpd: could not open error log file /proc/self/fd/2.
AH00015: Unable to open logs
xiangquanliu commented 4 months ago

strace log:

openat(AT_FDCWD, "/proc/self/fd/2", O_WRONLY|O_CREAT|O_APPEND|O_CLOEXEC, 0666) = -1 EACCES (Permission denied) write(2, "(13)Permission denied: AH00091: "..., 86(13)Permission denied: AH00091: httpd: could not open error log file /proc/self/fd/2. ) = 86

# ls -l /dev/console crw------- 1 nobody nogroup 5, 1 Feb 29 02:22 console

From the strace log, the process doesn't have permission to open /proc/self/fd/2 which is linked to /dev/console. So I think we need to find a solution to change the user/group of /dev/console.

binxing commented 4 months ago

Recommend to redirect 0,1,2 to /dev/null when PTY is NOT supported. This should solve the problem as /dev/null is accessible to world.

xiangquanliu commented 1 week ago

PR is https://github.com/intel/ACON/pull/116