[opensuse-factory] Using podman as non root user on tumbleweed
Hi ! I am trying to use podman for managing containers on my tumbleweed system (disclaimer the installation is ~5 years old and went through lots of updates over the years... so clearly not a fresh install, and I have not checked if the issue I am facing is happening on a frsh install) My main motivation for podamn is to avoid using root accounts for managing / building containers. So as user 'paul' I am trying the following command (copied from registry.opensuse.org) podman pull registry.opensuse.org/opensuse/nginx:latest And it fails with : Trying to pull registry.opensuse.org/opensuse/nginx:latest... Getting image source signatures Checking if image destination supports signatures Copying blob fc54c6d9e569 done Copying blob 3ee7310b384c done Copying config 311ffab8b7 done Writing manifest to image destination Storing signatures Error processing tar file(exit status 1): there might not be enough IDs available in the namespace (requested 0:15 for /etc/shadow): lchown /etc/shadow: invalid argument Error: error pulling image "registry.opensuse.org/opensuse/nginx:latest": unable to pull registry.opensuse.org/opensuse/nginx:latest: unable to pull image: Error committing the finished image: error adding layer with blob "sha256:3ee7310b384c142a01b0fa9e8e09b02635f218841a4ee66cce9abd7b10934b12": Error processing tar file(exit status 1): there might not be enough IDs available in the namespace (requested 0:15 for /etc/shadow): lchown /etc/shadow: invalid argument I am not sure if it's something missing in my configuration or a 'bug' I added my user to /etc/subuid and /etc/subgid with sudo usermod --add-subuids 10000-65536 paul sudo usermod --add-subgids 10000-65536 paul The podman pull command above works fine with a sudo in front... but I want to avoid thant actually. thanks Paul -- To unsubscribe, e-mail: opensuse-factory+unsubscribe@opensuse.org To contact the owner, e-mail: opensuse-factory+owner@opensuse.org
Hi Paul, Paul Gonin <paul.gonin@gmail.com> writes:
Hi !
I am trying to use podman for managing containers on my tumbleweed system (disclaimer the installation is ~5 years old and went through lots of updates over the years... so clearly not a fresh install, and I have not checked if the issue I am facing is happening on a frsh install)
My main motivation for podamn is to avoid using root accounts for managing / building containers.
So as user 'paul' I am trying the following command (copied from registry.opensuse.org) podman pull registry.opensuse.org/opensuse/nginx:latest
And it fails with : Trying to pull registry.opensuse.org/opensuse/nginx:latest... Getting image source signatures Checking if image destination supports signatures Copying blob fc54c6d9e569 done Copying blob 3ee7310b384c done Copying config 311ffab8b7 done Writing manifest to image destination Storing signatures Error processing tar file(exit status 1): there might not be enough IDs available in the namespace (requested 0:15 for /etc/shadow): lchown /etc/shadow: invalid argument Error: error pulling image "registry.opensuse.org/opensuse/nginx:latest": unable to pull registry.opensuse.org/opensuse/nginx:latest: unable to pull image: Error committing the finished image: error adding layer with blob "sha256:3ee7310b384c142a01b0fa9e8e09b02635f218841a4ee66cce9abd7b10934b12": Error processing tar file(exit status 1): there might not be enough IDs available in the namespace (requested 0:15 for /etc/shadow): lchown /etc/shadow: invalid argument
I am not sure if it's something missing in my configuration or a 'bug'
I added my user to /etc/subuid and /etc/subgid with sudo usermod --add-subuids 10000-65536 paul sudo usermod --add-subgids 10000-65536 paul
Well I've setup podman via exactly the same way and it works for me on Tumbleweed (and other distros as well). Silly question: did you logout and log back in after running the usermod commands? Cheers, Dan -- Dan Čermák <dcermak@suse.com> Software Engineer Development tools SUSE Software Solutions Germany GmbH Maxfeldstr. 5 90409 Nuremberg Germany (HRB 36809, AG Nürnberg) Managing Director: Felix Imendörffer
Op vrijdag 10 april 2020 12:28:57 CEST schreef Paul Gonin:
I am trying to use podman for managing containers on my tumbleweed system (disclaimer the installation is ~5 years old and went through lots of updates over the years... so clearly not a fresh install, and I have not checked if the issue I am facing is happening on a frsh install)
My main motivation for podamn is to avoid using root accounts for managing / building containers.
So as user 'paul' I am trying the following command (copied from registry.opensuse.org) podman pull registry.opensuse.org/opensuse/nginx:latest Not sure if that could play a role here, but did you inspect / merge the .rpmnew files on your system. I've seen quite some reports on forums and social media where the new layout/options of /etc/nsswitch.conf was the culprit. Just a thought.
-- Gertjan Lettink a.k.a. Knurpht openSUSE Forums Team -- To unsubscribe, e-mail: opensuse-factory+unsubscribe@opensuse.org To contact the owner, e-mail: opensuse-factory+owner@opensuse.org
participants (3)
-
Dan Čermák -
Knurpht-openSUSE -
Paul Gonin