Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

podman: tries to create directories in /var while being rootless #2510

Closed
tobwen opened this issue Mar 3, 2019 · 9 comments
Closed

podman: tries to create directories in /var while being rootless #2510

tobwen opened this issue Mar 3, 2019 · 9 comments
Assignees
@giuseppe
Labels
kind/bug Categorizes issue or PR as related to a bug. locked - please file new issue/PR Assist humans wanting to comment on an old issue or PR with locked comments.

Comments

@tobwen
Copy link
Contributor

tobwen commented Mar 3, 2019
edited

/kind bug

Description
When trying to run podman rootless with --log-level=debug this message occures.

DEBU[0000] Error creating parent directories for blob-info-cache-v1.boltdb, using a memory-only cache: mkdir /var/lib/containers/cache: permission denied

Expected
podman shouldn't try to write to /var/lib/containers/cache when it's in rootless mode.

Might be connected with #2508
@openshift-ci-robot openshift-ci-robot added the kind/bug Categorizes issue or PR as related to a bug. label Mar 3, 2019
@mheon
Copy link
Member

mheon commented Mar 3, 2019

It seems like some paths might be set incorrectly - we should be using paths exclusively under /home with the default configuration.

@mheon
Copy link
Member

mheon commented Mar 3, 2019

Possibly related to #2508 - both of them seem to be failing to detect that we're rootless and adjust paths to appropriate defaults

giuseppe added a commit to giuseppe/libpod that referenced this issue Mar 5, 2019
@giuseppe
rootless: fill in correct storage conf default
0042831 
When the configuration file is specified, be sure to fill rootless
compatible values in the default configuration.

Closes: containers#2510

Signed-off-by: Giuseppe Scrivano <gscrivan@redhat.com>
@giuseppe giuseppe mentioned this issue Mar 5, 2019
Merged
@giuseppe
Copy link
Member

giuseppe commented Mar 5, 2019

PR here: #2537

giuseppe added a commit to giuseppe/libpod that referenced this issue Mar 5, 2019
@giuseppe
rootless: fill in correct storage conf default
a096360 
When the configuration file is specified, be sure to fill rootless
compatible values in the default configuration.

Closes: containers#2510

Signed-off-by: Giuseppe Scrivano <gscrivan@redhat.com>
giuseppe added a commit to giuseppe/libpod that referenced this issue Mar 5, 2019
@giuseppe
rootless: fill in correct storage conf default
2ac7991 
When the configuration file is specified, be sure to fill rootless
compatible values in the default configuration.

Closes: containers#2510

Signed-off-by: Giuseppe Scrivano <gscrivan@redhat.com>
@tobwen
Copy link
Contributor Author

tobwen commented Apr 4, 2019
edited

It's alive again on rootless.

$ podman --version
podman version 1.3.0-dev

$ podman ...
[...]
DEBU[0000] Error creating parent directories for blob-info-cache-v1.boltdb, using a memory-only cache: mkdir /var/lib/containers: permission denied
[...]

$ ls -al /var/lib/containers
ls: cannot access '/var/lib/containers': No such file or directory

@rhatdan
Copy link
Member

rhatdan commented Apr 4, 2019

@giuseppe Anything to do with your rootless merge?

@mheon
Copy link
Member

mheon commented Apr 4, 2019

I would bet this was the big rootless single userns patch that just merged.

@giuseppe
Copy link
Member

giuseppe commented Apr 5, 2019

this is related to a change in containers/image where we use os.Geteuid() inside of a user namespace

giuseppe added a commit to giuseppe/image that referenced this issue Apr 5, 2019
@giuseppe
blobinfocache: correctly detect the UID in a namespace
1802aab 
for tools in containers/ we are using the env variable
_CONTAINERS_ROOTLESS_UID when running in a user namespace to refer to
the rootless UID that created the user namespace.

Closes: containers/podman#2510 (comment)

Signed-off-by: Giuseppe Scrivano <gscrivan@redhat.com>
@giuseppe giuseppe mentioned this issue Apr 5, 2019
Merged
@giuseppe
Copy link
Member

giuseppe commented Apr 5, 2019

PR: containers/image#612

@TomasTomecek
Copy link
Contributor

also got bitten by this; will we get a new release soon?

@TomasTomecek TomasTomecek mentioned this issue Apr 13, 2019
Closed
@github-actions github-actions bot added the locked - please file new issue/PR Assist humans wanting to comment on an old issue or PR with locked comments. label Sep 24, 2023
@github-actions github-actions bot locked as resolved and limited conversation to collaborators Sep 24, 2023
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Assignees

@giuseppe giuseppe

Labels
kind/bug Categorizes issue or PR as related to a bug. locked - please file new issue/PR Assist humans wanting to comment on an old issue or PR with locked comments.
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
6 participants
@giuseppe @TomasTomecek @tobwen @rhatdan @mheon @openshift-ci-robot