wikipedia:runc[1][2], a container runtime that implements their specification and serves as a basis for other higher-level tools. runC was first released in July 2015 as version 0.0.1[3] and it is included in RHEL 8.0 (2019)[4][5] as a Docker replacement.

Ubuntu includes it on package together with containerd.

runC-like container runtime shares a single kernel instance across all containers in contrast to Clear Containers.

runc is called by containerd


checkpoint   checkpoint a running container
create       create a container
delete       delete any resources held by the container often used with detached containers
events       display container events such as OOM notifications, cpu, memory, IO and network stats
exec         execute new process inside the container
init         initialize the namespaces and launch the process (do not call it outside of runc)
kill         kill sends the specified signal (default: SIGTERM) to the container's init process
list         lists containers started by runc with the given root
pause        pause suspends all processes inside the container
ps           displays the processes running inside a container
restore      restore a container from a previous checkpoint
resume       resumes all processes that have been previously paused
run          create and run a container
spec         create a new specification file
start        executes the user defined process in a created container
state        output the state of a container
update       update container resource constraints.
help, h      Shows a list of commands or help for one command


Error response from daemon: failed to create shim task: OCI runtime create failed: runc create failed: unable to start container process: exec .../... permission denied: unknown
 Sep 27 09:11:52 SERVER dockerd[2710]: time="2023-09-27T09:11:52.583100521Z" level=error msg="Handler for POST /v1.39/containers/06deb7095e4857afb61da30e5bf329612e87c1bf7168fa01e03a5d0d7222e598/start returned error: OCI runtime create failed: runc create failed: container with given ID already exists: unknown"



See also[edit]

