Grafana on rootless podman?

etrigan63 · December 9, 2020, 3:38am

I am trying to install Grafana on rootless podman, but the pull command gets the following error:

guru@stormwind  ~  podman pull grafana/grafana
Completed short name "grafana/grafana" with unqualified-search registries (origin: /home/guru/.config/containers/registries.conf)
Trying to pull docker.io/grafana/grafana:latest...
Getting image source signatures
Copying blob de79f55c0b0f done  
Copying blob a1b840f120d9 done  
Copying blob 188c0c94c7c5 done  
Copying blob b46b3ffb9b7d done  
Copying blob 4f4fb700ef54 done  
Copying blob f04fb38cc8ac done  
Copying blob 4abcddc85579 done  
Copying blob 5059d9c487b2 done  
Copying config 651ff2dc93 done  
Writing manifest to image destination
Storing signatures
  Error processing tar file(exit status 1): potentially insufficient UIDs or GIDs available in user namespace (requested 0:42 for /etc/shadow): Check /etc/subuid and /etc/subgid: lchown /etc/shadow: invalid argument

ds04 · March 18, 2021, 9:33am

Hi,

I’m looking at this now too. Starting to build a test setup on Centos7.9

What UID number are you running the podman pull as?

I think what you are seeing might be to do with sub{uid,gid}

See (section: Rootless Podman):

ds04 · March 18, 2021, 12:15pm

Getting closer. Working on a systemd file…

Created host OS grafana user with 472:472 member of grafana group (again 472)

Bind mounting folders from host OS. Those folders are grafana:root owned on host OS and perms 775.

Running podman with --user grafana:root

yosiasz · June 20, 2022, 8:28pm

Sorry to resurrect an old post but trying to see if there is anything documented about this when it comes to different flavors of Linux distro using podman?

Here is an install of podman on Ubuntu

with updates to the piece where you configure key for it here.

wget -nv  https://download.opensuse.org/repositories/devel:/kubic:/libcontainers:/stable:/cri-o:/1.24:/1.24.1/xUbuntu_22.04/Release.key -O- | apt-key add -