April 4, 2020

 

Fresh centos8 podman/buildah issues related to alpine

Lately I'm trying out Centos 8 and move to openshift with podman and buildah as docker replacements. So far not without interesting problems!

In a freshly installed updated centos8 it's impossible to build any alpine-based repo or even pull alpine itself: 

$ podman pull alpine
...
Error committing the finished image: error adding layer with blob "sha256:aad63a9339440e7c3e1fff2b988991b9bfb81280042fa7f39a5e327023056819": Error processing
tar file(exit status 1): there might not be enough IDs available in the namespace (requested 0:42 for /etc/shadow): lchown /etc/shadow: invalid argument

The following solution is mentioned in libpod issue 2788: 
# dnf reinstall shadow-utils
I did not investigate this deep down, however seem capabilities are set wrong for shadow-utils with yum installation (yum reinstall does not fix this): 
$ getcap /usr/bin/newuidmap /usr/bin/newgidmap
Here's expected output for the command above: 
/usr/bin/newuidmap = cap_setuid+ep
/usr/bin/newgidmap = cap_setgid+ep

Labels: , , , , , ,

Permanent link. Posted by Shamil Gumirov @ 11:20 PM
Comments: Post a Comment



<< Home

This page is powered by Blogger. Isn't yours?