czkawka missing `kill` capability, crashes on startup

[Spice-King]

App Name

czkawka

SCALE Version

22.12.1

App Version

23.02.3_4.0.7

Application Events

Events

```Shell 2023-04-22 13:46:57 Startup probe failed: Get "http://172.16.1.199:5800/": dial tcp 172.16.1.199:5800: connect: connection refused 2023-04-22 13:46:43 Created container czkawka 2023-04-22 13:46:43 Started container czkawka 2023-04-22 13:46:41 Successfully pulled image "tccr.io/truecharts/czkawka:23.02.3@sha256:ac64a6cd11fce855ac3b5d6af2c8768d4e53fa7631a887edbfc41de11bb63dcb" in 17.772052486s 2023-04-22 13:46:23 Updated LoadBalancer with new IPs: [] -> [10.0.0.6] 2023-04-22 13:46:23 Updated LoadBalancer with new IPs: [] -> [10.0.0.6] 2023-04-22 13:46:23 Add eth0 [172.16.1.199/16] from ix-net 2023-04-22 13:46:23 Pulling image "tccr.io/truecharts/czkawka:23.02.3@sha256:ac64a6cd11fce855ac3b5d6af2c8768d4e53fa7631a887edbfc41de11bb63dcb" 2023-04-22 13:46:20 Applied LoadBalancer DaemonSet kube-system/svclb-czkawka-vnc-6c2b5a1d 2023-04-22 13:46:20 Successfully assigned ix-czkawka/czkawka-5b95cb76dc-2cdxm to ix-truenas 2023-04-22 13:46:20 Created pod: czkawka-5b95cb76dc-2cdxm 2023-04-22 13:46:19 Job completed 2023-04-22 13:46:19 Ensuring load balancer 2023-04-22 13:46:19 Applied LoadBalancer DaemonSet kube-system/svclb-czkawka-8c8aaa66 2023-04-22 13:46:19 Scaled up replica set czkawka-5b95cb76dc to 1 2023-04-22 13:46:19 Ensuring load balancer 2023-04-22 13:46:08 Started container czkawka-manifests 2023-04-22 13:46:07 Created container czkawka-manifests 2023-04-22 13:46:06 Add eth0 [172.16.1.196/16] from ix-net 2023-04-22 13:46:06 Container image "tccr.io/truecharts/kubectl:v1.26.0@sha256:6bef58bf5b7850021884cf6ea2f32333cbfcd99be79d1fff0d6e5ced1ac044b4" already present on machine 2023-04-22 13:46:05 Created pod: czkawka-manifests-jjtft 2023-04-22 13:46:05 Successfully assigned ix-czkawka/czkawka-manifests-jjtft to ix-truenas ```

Application Logs

Logs

```Shell 2023-04-22T18:53:55.094133879Z [init ] container is starting... 2023-04-22T18:53:55.094244517Z [cont-env ] loading container environment variables... 2023-04-22T18:53:55.096900643Z [cont-env ] APP_NAME: loading... 2023-04-22T18:53:55.099120144Z [cont-env ] APP_VERSION: loading... 2023-04-22T18:53:55.101189562Z [cont-env ] DISPLAY: executing... 2023-04-22T18:53:55.104783578Z [cont-env ] DISPLAY: terminated successfully. 2023-04-22T18:53:55.105165108Z [cont-env ] DISPLAY: loading... 2023-04-22T18:53:55.106546072Z [cont-env ] DOCKER_IMAGE_PLATFORM: loading... 2023-04-22T18:53:55.108752387Z [cont-env ] DOCKER_IMAGE_VERSION: loading... 2023-04-22T18:53:55.111024211Z [cont-env ] GTK_THEME: executing... 2023-04-22T18:53:55.115580100Z [cont-env ] GTK_THEME: terminated successfully. 2023-04-22T18:53:55.115976242Z [cont-env ] GTK_THEME: loading... 2023-04-22T18:53:55.117100106Z [cont-env ] HOME: loading... 2023-04-22T18:53:55.119193719Z [cont-env ] QT_STYLE_OVERRIDE: executing... 2023-04-22T18:53:55.122719779Z [cont-env ] QT_STYLE_OVERRIDE: terminated successfully. 2023-04-22T18:53:55.123119682Z [cont-env ] QT_STYLE_OVERRIDE: loading... 2023-04-22T18:53:55.124411560Z [cont-env ] TAKE_CONFIG_OWNERSHIP: loading... 2023-04-22T18:53:55.126576062Z [cont-env ] XDG_CACHE_HOME: loading... 2023-04-22T18:53:55.128765962Z [cont-env ] XDG_CONFIG_HOME: loading... 2023-04-22T18:53:55.130821221Z [cont-env ] XDG_DATA_HOME: loading... 2023-04-22T18:53:55.133228189Z [cont-env ] XDG_RUNTIME_DIR: loading... 2023-04-22T18:53:55.135588746Z [cont-env ] XDG_STATE_HOME: loading... 2023-04-22T18:53:55.137501041Z [cont-env ] container environment variables initialized. 2023-04-22T18:53:55.137548126Z [cont-secrets] loading container secrets... 2023-04-22T18:53:55.137602502Z [cont-secrets] container secrets loaded. 2023-04-22T18:53:55.137631166Z [cont-init ] executing container initialization scripts... 2023-04-22T18:53:55.139363065Z [cont-init ] 10-certs.sh: executing... 2023-04-22T18:53:55.142599824Z [cont-init ] 10-certs.sh: terminated successfully. 2023-04-22T18:53:55.143559496Z [cont-init ] 10-check-app-niceness.sh: executing... 2023-04-22T18:53:55.145415814Z [cont-init ] 10-check-app-niceness.sh: terminated successfully. 2023-04-22T18:53:55.146420905Z [cont-init ] 10-cjk-font.sh: executing... 2023-04-22T18:53:55.149630461Z [cont-init ] 10-cjk-font.sh: terminated successfully. 2023-04-22T18:53:55.150574358Z [cont-init ] 10-clean-logmonitor-states.sh: executing... 2023-04-22T18:53:55.152544971Z [cont-init ] 10-clean-logmonitor-states.sh: terminated successfully. 2023-04-22T18:53:55.153347833Z [cont-init ] 10-clean-tmp-dir.sh: executing... 2023-04-22T18:53:55.155924702Z [cont-init ] 10-clean-tmp-dir.sh: terminated successfully. 2023-04-22T18:53:55.156766075Z [cont-init ] 10-fontconfig-cache-dir.sh: executing... 2023-04-22T18:53:55.158382662Z [cont-init ] 10-fontconfig-cache-dir.sh: terminated successfully. 2023-04-22T18:53:55.159425357Z [cont-init ] 10-init-users.sh: executing... 2023-04-22T18:53:55.191825600Z [cont-init ] 10-init-users.sh: terminated successfully. 2023-04-22T18:53:55.192829106Z [cont-init ] 10-nginx.sh: executing... 2023-04-22T18:53:55.214395258Z [cont-init ] 10-nginx.sh: terminated successfully. 2023-04-22T18:53:55.215386408Z [cont-init ] 10-openbox.sh: executing... 2023-04-22T18:53:55.227406606Z [cont-init ] 10-openbox.sh: terminated successfully. 2023-04-22T18:53:55.228465468Z [cont-init ] 10-set-tmp-dir-perms.sh: executing... 2023-04-22T18:53:55.230876239Z [cont-init ] 10-set-tmp-dir-perms.sh: terminated successfully. 2023-04-22T18:53:55.231758500Z [cont-init ] 10-vnc-password.sh: executing... 2023-04-22T18:53:55.233577693Z [cont-init ] 10-vnc-password.sh: terminated successfully. 2023-04-22T18:53:55.234708922Z [cont-init ] 10-web-data.sh: executing... 2023-04-22T18:53:55.239979264Z [cont-init ] 10-web-data.sh: terminated successfully. 2023-04-22T18:53:55.240831288Z [cont-init ] 10-x11-unix.sh: executing... 2023-04-22T18:53:55.243834957Z [cont-init ] 10-x11-unix.sh: terminated successfully. 2023-04-22T18:53:55.244742286Z [cont-init ] 10-xdg-runtime-dir.sh: executing... 2023-04-22T18:53:55.249307233Z [cont-init ] 10-xdg-runtime-dir.sh: terminated successfully. 2023-04-22T18:53:55.250472696Z [cont-init ] 15-install-pkgs.sh: executing... 2023-04-22T18:53:55.252575435Z [cont-init ] 15-install-pkgs.sh: terminated successfully. 2023-04-22T18:53:55.253319542Z [cont-init ] 55-czkawka.sh: executing... 2023-04-22T18:53:55.460470264Z [cont-init ] 55-czkawka.sh: terminated successfully. 2023-04-22T18:53:55.461675665Z [cont-init ] 85-take-config-ownership.sh: executing... 2023-04-22T18:53:55.475492320Z [cont-init ] 85-take-config-ownership.sh: terminated successfully. 2023-04-22T18:53:55.476464500Z [cont-init ] 89-info.sh: executing... 2023-04-22T18:53:55.478388838Z ╭――――――――――――――――――――――――――――――――――――――――――――――――――――――――――――――――――――――╮ 2023-04-22T18:53:55.479108781Z │ │ 2023-04-22T18:53:55.479895667Z │ Application: Czkawka │ 2023-04-22T18:53:55.480659075Z │ Application Version: 5.1.0 │ 2023-04-22T18:53:55.481220176Z │ Docker Image Version: 23.02.3 │ 2023-04-22T18:53:55.481875482Z │ Docker Image Platform: linux/amd64 │ 2023-04-22T18:53:55.482710211Z │ │ 2023-04-22T18:53:55.483647975Z ╰――――――――――――――――――――――――――――――――――――――――――――――――――――――――――――――――――――――╯ 2023-04-22T18:53:55.484366103Z [cont-init ] 89-info.sh: terminated successfully. 2023-04-22T18:53:55.484605744Z [cont-init ] all container initialization scripts executed. 2023-04-22T18:53:55.486115594Z [init ] giving control to process supervisor. 2023-04-22T18:53:55.487663461Z [supervisor ] loading services... 2023-04-22T18:53:55.487692361Z [supervisor ] loading service 'default'... 2023-04-22T18:53:55.487750849Z [supervisor ] loading service 'app'... 2023-04-22T18:53:55.491902877Z [supervisor ] loading service 'gui'... 2023-04-22T18:53:55.491929754Z [supervisor ] loading service 'xvnc'... 2023-04-22T18:53:55.499956416Z [supervisor ] loading service 'nginx'... 2023-04-22T18:53:55.500047820Z [supervisor ] loading service 'certsmonitor'... 2023-04-22T18:53:55.502049697Z [supervisor ] service 'certsmonitor' is disabled. 2023-04-22T18:53:55.502074052Z [supervisor ] loading service 'openbox'... 2023-04-22T18:53:55.502166361Z [supervisor ] loading service 'logmonitor'... 2023-04-22T18:53:55.503634432Z [supervisor ] service 'logmonitor' is disabled. 2023-04-22T18:53:55.503674012Z [supervisor ] loading service 'logrotate'... 2023-04-22T18:53:55.507196373Z [supervisor ] all services loaded. 2023-04-22T18:53:55.507222828Z [supervisor ] starting services... 2023-04-22T18:53:55.507243205Z [supervisor ] starting service 'xvnc'... 2023-04-22T18:53:55.507430011Z [supervisor ] service 'xvnc' failed to be started: minimum uptime not met. 2023-04-22T18:53:55.507451919Z [supervisor ] stopping service 'xvnc'... 2023-04-22T18:53:55.564129427Z [xvnc ] Xvnc TigerVNC 1.12.0 - built Feb 14 2023 01:01:21 2023-04-22T18:53:55.564156970Z [xvnc ] Copyright (C) 1999-2021 TigerVNC Team and many others (see README.rst) 2023-04-22T18:53:55.564179338Z [xvnc ] See https://www.tigervnc.org for information on TigerVNC. 2023-04-22T18:53:55.564189940Z [xvnc ] Underlying X server release 12013000, The X.Org Foundation 2023-04-22T18:53:55.564269478Z [xvnc ] Sat Apr 22 13:53:55 2023 2023-04-22T18:53:55.564300890Z [xvnc ] vncext: VNC extension running! 2023-04-22T18:53:55.564315526Z [xvnc ] vncext: Listening for VNC connections on /tmp/vnc.sock (mode 0660) 2023-04-22T18:53:55.564368393Z [xvnc ] vncext: Listening for VNC connections on all interface(s), port 5900 2023-04-22T18:53:55.564404538Z [xvnc ] vncext: created VNC server for screen 0 2023-04-22T18:53:55.758055953Z [supervisor ] sending SIGTERM to all processes... 2023-04-22T18:54:00.770270272Z [supervisor ] sending SIGKILL to all processes... ```

Application Configuration

All defaults, 10 screenshots here if you want to read them all, but no changes at all and no extra mounted storage.

Screenshots

         

Describe the bug

Fails to start container.

To Reproduce

1. Create instance
2. Watch it never be ready for use

Expected Behavior

1. Chart functions

Screenshots

N/A

Additional Context

Testing revealed the image requires the KILL Linux capability. This was not preserved when converting to the new common base. Other jlesage images are probably affected too, once converted over.

I've read and agree with the following

• [X] I've checked all open and closed issues and my issue is not there.

[ksimm1]

@Spice-King include the details on the bug report as if there was no discord support ticket. otherwise the maintainers will close this.

[Spice-King]

@Spice-King include the details on the bug report as if there was no discord support ticket. otherwise the maintainers will close this.

There, updated. If only there was something better than screenshotting the config in 10 pieces.

[PrivatePuffin]

Thanks for the complete bugreport, sorry for the required screenshot spam. Issue seems valid, no idea why jslage containers require this so badly.

[Spice-King]

no idea why jslage containers require this so badly.

My first guess is how the supervisor is running as root and jumps between users inside the container, which at least accounts for why it seems to hang on Docker with it removed rather than properly closing down. K3S opts to just put a bullet in the sick container.

CAP_KILL also gates ioctl(2), which sets options for special device files, like terminals. This is my second guess, and frankly feels far more probable with how xvnc service is dying most often (still not accounting for the few times I've seen the logroler die).

Either way, it's my mere educated guesses at it. I could be wrong on that, but these sound sane as to why without digging into it too deep.

[truecharts-admin]

This issue is locked to prevent necro-posting on closed issues. Please create a new issue or contact staff on discord of the problem persists