New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Error validating CNI config file #13396
Comments
@cmurf I think your distro is missing Could you share output of which bridge |
|
@cmurf Thanks for sharing, podman by default reads CNI plugin from these paths https://github.com/containers/common/blob/main/pkg/config/default.go#L83 . If you are using custom path you would have to update or you could copy all the binaries and move to any of the default paths. |
that very well could be the bridge binary from iproute2. try:
and then |
Seems like podman needs a recommends or requires? |
Downstream bug https://bugzilla.redhat.com/show_bug.cgi?id=2060200 |
Since this is a packaging issue and not related to upstream, I am closing. |
|
Thanks @zhangguanzhang . In Fedora 36 Silverblue: Then reboot. |
Perfect, that was the solution! |
If anyone is coming from archlinux, the relevant package is |
Ran into same error when using |
@acxz Any idea why this isn't a dependency in the podman-compose package? Why does it seem to be happening on multiple distributions (Redhat, Arch)? Did something change in podman? I've been using podman-compose on a container (without having |
My guess is that CNI is more of a configuration thing, instead of a required dep. You can probably get more information about this decision by talking to the Arch maintainers for podman (@Foxboron, @dvzrv). It makes sense for me that it should be listed as an optdepend for podman, but not really sure. It would probably be best for someone let the Arch maintainers know about this.
I would assume that podman moved the cni code that was internal to the codebase and moved it outside, which caused such behavior. |
AFAIK, netavark is supposed to be the "new thing" to use (both cni-plugins and netavark provide "container-network-stack", but in different versions - 1 and 2 respectively). On Arch Linux podman optionally depends on netavark, but also depends on containers-common which requires My understanding so far was, that podman still works with both providers of container-network-stack. I guess the only thing we can do is to add cni-plugins as optional dependency for podman to make it more clear, that it can also be used. |
Ah til about netavark. Thanks for the response! |
Optional dependencies are fine; I don't know the best way to document this, but it looks like several of us (from varying distributions) had to make our way to this ticket to figure out what the issue was. I'm not sure about others, but for me, something stopped working after an (minor version) upgrade. Maybe it's coincidental that this impacted more than one distribution at a time, but if it wasn't then it might have been a breaking change which could have been communicated through a major revision bump. I don't think netavark solves this, on Arch at least. |
Should'nt these config files be ignored when podman is using netavark? I dont use the cni plugins, but get that warning anyway as |
Yeah, they should be ignored. Can you file a bug about this? |
If you are using a debian based distro. This is the package you need to solve it. sudo apt install containernetworking-plugins
sudo apt update
podman system reset --force And then everything should work. |
@SirSkizo Thanks a lot, same thing worked for me on arch linux with the |
I'm on Debian and also seeing this issue, though it seems clear to me I just need to install a dep, I wonder if a better message could be provided then,
And repeating that "failed to find plugin" for each plugin. Something along the lines of,
would be far more useful. But this still raises the question why can I run all the commands to generate a kube.yaml by creating a pod, creating containers in the pod, and such and everything works fine. But when I Actually I'm not sure what's going on here, seems I have all the plugin packages my dist offers,
And yet, I still get this error,
|
``` Error validating CNI config file /home/runner/.config/cni/net.d/87-podman.conflist: [failed to find plugin \"bridge\" in path [/usr/local/libexec/cni /usr/libexec/cni /usr/local/lib/cni /usr/lib/cni /opt/cni/bin] failed to find plugin \"portmap\" in path [/usr/local/libexec/cni /usr/libexec/cni /usr/local/lib/cni /usr/lib/cni /opt/cni/bin] failed to find plugin \"firewall\" in path [/usr/local/libexec/cni /usr/libexec/cni /usr/local/lib/cni /usr/lib/cni /opt/cni/bin] failed to find plugin \"tuning\" in path [/usr/local/libexec/cni /usr/libexec/cni /usr/local/lib/cni /usr/lib/cni /opt/cni/bin]] ``` [1] containers/podman#13396 (comment)
``` Error validating CNI config file /home/runner/.config/cni/net.d/87-podman.conflist: [failed to find plugin \"bridge\" in path [/usr/local/libexec/cni /usr/libexec/cni /usr/local/lib/cni /usr/lib/cni /opt/cni/bin] failed to find plugin \"portmap\" in path [/usr/local/libexec/cni /usr/libexec/cni /usr/local/lib/cni /usr/lib/cni /opt/cni/bin] failed to find plugin \"firewall\" in path [/usr/local/libexec/cni /usr/libexec/cni /usr/local/lib/cni /usr/lib/cni /opt/cni/bin] failed to find plugin \"tuning\" in path [/usr/local/libexec/cni /usr/libexec/cni /usr/local/lib/cni /usr/lib/cni /opt/cni/bin]] ``` [1] containers/podman#13396 (comment)
Is this a BUG REPORT or FEATURE REQUEST? (leave only one on its own line)
/kind bug
Description
Steps to reproduce the issue:
podman system reset
Describe the results you received:
Describe the results you expected:
No errors on reset. Or I guess it should automatically or prompt to remove stale files (?)
Additional information you deem important (e.g. issue happens only occasionally):
Output of
podman version
:Output of
podman info --debug
:Package info (e.g. output of
rpm -q podman
orapt list podman
):Have you tested with the latest version of Podman and have you checked the Podman Troubleshooting Guide? (https://github.com/containers/podman/blob/main/troubleshooting.md)
Yes
Additional environment details (AWS, VirtualBox, physical, etc.):
This is a clean install of Fedora-Workstation-Live-x86_64-36-20220220.n.0.iso, updated. But I am using
/home
from a previous Fedora 35 installation so it might have some stale podman 3 bits; nevertheless the reset should get rid of it. But I get the WARN each time the command is run.The text was updated successfully, but these errors were encountered: