-
Type:
Bug
-
Resolution: Fixed
-
Priority:
Medium
-
SITSW-4864
-
09.02.00
-
10.01.00
-
Customer reported that using our TI Debian "Bookworm" image 9.2 the Docker startup doesn't work. However the same works with the community Armbian image from https://www.armbian.com/texas-instruments-sk-am64b/
The error message is as follows:
root@am64xx-evm:~# docker run -it --privileged --security-opt seccomp=unconfined -v /dev:/dev --net=host <image_name>:<tag> bash docker: Error response from daemon: failed to create task for container: failed to create shim task: OCI runtime create failed: runc create failed: unable to start container process: error during container init: error setting cgroup config for procHooks process: bpf_prog_query(BPF_CGROUP_DEVICE) failed: function not implemented: unknown.
There seems to be a difference/delta in Kernel config options vs Linux SDK / community image Kernel that's causing this (missing options like CONFIG_CGROUP_BPF=y but this is not 100% confirmed as root cause).
Update 07/31/24: I had the customer try out pre-release Trixie image, and Docker still doesn't quite work. Seems like what's missing now is CONFIG_EXT3_FS_SECURITY=y
CONFIG_EXT4_FS_SECURITY=y
Also those two options are set and working with Armbian. Details also in the below E2E thread.
