-
Notifications
You must be signed in to change notification settings - Fork 2.3k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Podman fails with permission denied error #13402
Comments
Hi @call-a3, Thanks for creating the issue. The output for For root users your user must have permission to Try checking permission for the path and do For me it looks like -rw-r--r--. 1 root root 0 Jan 8 02:44 cni.lock and everything about that as drwxr-xr-x. 1 root root |
Hi @flouthoc , thanks for getting back to me. Running
I've checked and the lock file is indeed owned by root
I don't think I've run any podman commands after, so it's unclear to me why this lock file is here, why it is owned by root or why rootless podman needs access to it. I've attempted to run Should I just delete the lock file manually as root and try to run a podman command as rootless again? Or should the lock file have different permissions to allow rootless to modify it? |
Please check your containers.conf files for |
I am running into the same issue on Debian 11. From what I can tell, everyone should have read permissions on the lock file.
network_config_dir is set only in the /usr/ location and is not commented out by default.
If I comment this line out, then |
It looks like you use the debian package, please report this as bug there since it seems to ship a incorrect containers.conf. Unless there is a specific reason all fields should be commented out, network_config_dir should definitely not be set by default since it will not work for rootless and it would use the wrong directory for the netavark network backend. |
@call-a3 Try with the latest version that was pushed to that repo last night. |
Closing since this is a configuration problem and there is nothing we can do upstream. |
/kind bug
Description
Steps to reproduce the issue:
Install podman from package source http://download.opensuse.org/repositories/home:/alvistack/xUbuntu_20.04/
Attempt to execute a podman command as a non-root user such as "podman version" or "podman login --get-login registry-name"
Describe the results you received:
Error: error opening "/etc/cni/net.d/cni.lock": permission denied
Describe the results you expected:
For podman to execute my command as a non-root user
Additional information you deem important (e.g. issue happens only occasionally):
Commands do succeed when executing as root (obviously...)
Output of
podman version
:Output of
podman info --debug
:Package info (e.g. output of
rpm -q podman
orapt list podman
):Have you tested with the latest version of Podman and have you checked the Podman Troubleshooting Guide? (https://github.com/containers/podman/blob/main/troubleshooting.md)
Yes
Additional environment details (AWS, VirtualBox, physical, etc.):
The text was updated successfully, but these errors were encountered: