Cannot run in a rootless container using podman #76
Labels
bug
Something isn't working
Comments
|
I can confirm that. Maybe a check if the |
osteffenrh
added a commit
to osteffenrh/edk2-containers
that referenced
this issue
Jun 1, 2023
Don't abort the entrypoint script if the user-id already exists. This allows using the dev images as root or when using Podman, which does some user mapping already. This should fix tianocore#76 Signed-off-by: Oliver Steffen <[email protected]>
osteffenrh
added a commit
to osteffenrh/edk2-containers
that referenced
this issue
Jun 1, 2023
Don't abort the entrypoint script if the user-id already exists. This allows using the dev images as root or when using Podman, which does some user mapping already. This should fix tianocore#76 Signed-off-by: Oliver Steffen <[email protected]>
osteffenrh
added a commit
to osteffenrh/edk2-containers
that referenced
this issue
Dec 6, 2023
Don't abort the entrypoint script if the user-id already exists. This allows using the dev images as root or when using Podman, which does some user mapping already. This should fix tianocore#76 Signed-off-by: Oliver Steffen <[email protected]>
osteffenrh
added a commit
to osteffenrh/edk2-containers
that referenced
this issue
Dec 6, 2023
Don't abort the entrypoint script if the user-id already exists. This allows using the dev images as root or when using Podman, which does some user mapping already. See issue tianocore#76 and PR tianocore#77. Signed-off-by: Oliver Steffen <[email protected]>
osteffenrh
added a commit
to osteffenrh/edk2-containers
that referenced
this issue
Dec 6, 2023
Don't abort the entrypoint script if the user-id already exists. This allows using the dev images as root or when using Podman, which does some user mapping already. See issue tianocore#76 and PR tianocore#77. Signed-off-by: Oliver Steffen <[email protected]>
osteffenrh
added a commit
that referenced
this issue
Dec 8, 2023
* Fedora 39: Use Qemu from package repo Fedora 39 ships Qemu 8. We can use that instead of building it from source. Also add Qemu for RiscV. Signed-off-by: Oliver Steffen <[email protected]> * Allow using dev image as root Don't abort the entrypoint script if the user-id already exists. This allows using the dev images as root or when using Podman, which does some user mapping already. See issue #76 and PR #77. Signed-off-by: Oliver Steffen <[email protected]> * Readme: Add Fedora 39 image to table Add links and badges for the Fedora 39 images to the table. Signed-off-by: Oliver Steffen <[email protected]> --------- Signed-off-by: Oliver Steffen <[email protected]>
mairudiF
added a commit
to mairudiF/containers
that referenced
this issue
Mar 2, 2024
* Add Fedora 39 image with gcc13 (tianocore#82) Added Fedora 39 base image, providing GCC13 and Python 3.12. Signed-off-by: Chao Li <[email protected]> * Fedora 39 fixups (tianocore#87) * Fedora 39: Use Qemu from package repo Fedora 39 ships Qemu 8. We can use that instead of building it from source. Also add Qemu for RiscV. Signed-off-by: Oliver Steffen <[email protected]> * Allow using dev image as root Don't abort the entrypoint script if the user-id already exists. This allows using the dev images as root or when using Podman, which does some user mapping already. See issue tianocore#76 and PR tianocore#77. Signed-off-by: Oliver Steffen <[email protected]> * Readme: Add Fedora 39 image to table Add links and badges for the Fedora 39 images to the table. Signed-off-by: Oliver Steffen <[email protected]> --------- Signed-off-by: Oliver Steffen <[email protected]> * Fedora 39 Build Fixes (tianocore#88) * Fedora39: Don't use fixed package versions Specifying version numbers for the packages provided by the Linux distribution is counterproductive. The available patchlevel versions of a package can change within a Fedora release. This can breaks image builds which requires additional manual work. Since the major versions stay fixed, there should not be any compatibility issues between image builds. Additionally, bug fixes are picked up automatically. This patch removes the explicit version numbers from the packages and installs the default versions instead. Signed-off-by: Oliver Steffen <[email protected]> * Fedora 39: Install python-setuptools via pip Install python-setuptools via pip instead of taking it from the Fedora repo. This avoids possible conflicts with `pip install --upgrade ...` Signed-off-by: Oliver Steffen <[email protected]> --------- Signed-off-by: Oliver Steffen <[email protected]> --------- Signed-off-by: Chao Li <[email protected]> Signed-off-by: Oliver Steffen <[email protected]> Co-authored-by: Chao Li <[email protected]> Co-authored-by: Oliver Steffen <[email protected]>
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Describe the bug
The startup script in dev-variant container assumes that it is not run in a user namespace.
However, it is not true when using a rootless container. When it is run in a rootless container, uid 0 in the container will be mapped to the user who starts the container.
The startup script will try to create a user with uid 0 and the creation will fail with the error message.
To Reproduce
Run the dev container using podman as normal user:
Expected behavior
The container starts successfully and we can see the shell prompt.
Execution environment
Host OS: Ubuntu 22.04
Container Engine: podman version 4.5.0
Podman command run as normal user:
Additional context
Add any other context about the problem here.
The text was updated successfully, but these errors were encountered: