On Mon, 2021-11-15 at 21:06 +0100, Ignaz Forster wrote:
In transactional-update 3.6 I indeed changed the mount behaviour;
Right.
[...]
I'll have to take a look at what bwrap is trying to do here and see what I can do to fix this.
That would be great. :-) As a further data point, it apparently is not only flatpak: Error: unable to start container "16271fd6f71b3e0a2e0b392a5eaf2b000faf29656f2e4c3c32aebf0b0f2066ad": container_linux.go:380: starting container process caused: process_linux.go:545: container init caused: rootfs_linux.go:76: mounting "/tmp" to rootfs at "/tmp" caused: mount through procfd: operation not permitted: OCI permission denied /usr/bin/toolbox: failed to start container 'toolbox-test-user' It's also toolbox, which basically means this is a problem for podman containers in general. Which in turn means this is no MicroOS _Desktop_ only any longer, I guess, and we probably want to fix it for MicroOS, Kubic, SLE-Micro and whatever. :-) Given this new info, let me know if you prefer me to open a bug, for better tracking, or do anything else. Thanks and Regards -- Dario Faggioli, Ph.D http://about.me/dario.faggioli Virtualization Software Engineer SUSE Labs, SUSE https://www.suse.com/ ------------------------------------------------------------------- <<This happens because _I_ choose it to happen!>> (Raistlin Majere)