4:08 p.m.
I also hoped that it just works and that toolbox sets up the environment
in a way that podman/bulidah can be used. I did these steps:
toolbox create fedora
toolbox enter fedora
sudo dnf install buildah podman
buildah from scratch
buildah mount working-container
-> Error: cannot mount using driver overlay in rootless mode. You
need to run it in a `buildah unshare` session
podman run fedora
-> fails because /etc/subuid is not setup in the toolbox
sudo usermod --add-subgids 10000-65536 haddorp
sudo usermod --add-subuids 10000-65536 haddorp
podman run fedora
-> fails as newuidmap is not setup
sudo setcap cap_setuid+eip /usr/bin/newuidmap
sudo setcap cap_setgid+eip /usr/bin/newgidmap
podman run fedora
-> ERRO[0000] invalid internal status, try resetting the pause
process with "podman system migrate": cannot re-exec process to join the
existing user namespace
do you have steps that work?
thanks,
Hendrik
On 03.02.2023 22:50, Daniel Walsh wrote:
On 2/3/23 15:38, Hendrik Haddorp wrote:
> Hi,
>
> I want to create a custom toolbox
> (https://github.com/containers/toolbox) image and use rootless buildah
> inside the container created by toolbox on Fedora. Are there any
> instructions on that? Or maybe an example?
>
> thanks,
> Hendrik
> _______________________________________________
> Podman mailing list -- podman(a)lists.podman.io
> To unsubscribe send an email to podman-leave(a)lists.podman.io
It should just work as long as you have /etc/subuid and /etc/subgid
defined in the toolbox and have enough UIDs and GIDs available.
It never hurts to look at
https://github.com/containers/buildah/blob/main/contrib/buildahimage/Cont...
To see how we configure Buildah to run within a container.
_______________________________________________
Podman mailing list -- podman(a)lists.podman.io
To unsubscribe send an email to podman-leave(a)lists.podman.io