I just built a new LXC container using lxc-gentoo and received an error starting up due to lack of CAP_SYSLOG. Since CAP_SYSLOG makes little sense to provide to many containers, it might be worth detecting a lack of CAP_SYSLOG before attempting to run the dmesg portion of the init scripts or outright disabling any attempts to read dmesg when running under LXC. Log follows... INIT: version 2.88 booting OpenRC 0.11.8 is starting up Gentoo Linux (x86_64) [LXC] * /proc is already mounted * /run/openrc: creating directory * /run/lock: creating directory * Caching service dependencies ... [ ok ] * Creating user login records ... [ ok ] * Cleaning /var/run ... [ ok ] * Wiping /tmp directory ... [ ok ] dmesg: read kernel buffer failed: Operation not permitted
Doesn't occur on recent builds. Can now be ignored.