I am trying to install Grafana on rootless podman, but the pull command gets the following error:
guru@stormwind ~ podman pull grafana/grafana
Completed short name "grafana/grafana" with unqualified-search registries (origin: /home/guru/.config/containers/registries.conf)
Trying to pull docker.io/grafana/grafana:latest...
Getting image source signatures
Copying blob de79f55c0b0f done
Copying blob a1b840f120d9 done
Copying blob 188c0c94c7c5 done
Copying blob b46b3ffb9b7d done
Copying blob 4f4fb700ef54 done
Copying blob f04fb38cc8ac done
Copying blob 4abcddc85579 done
Copying blob 5059d9c487b2 done
Copying config 651ff2dc93 done
Writing manifest to image destination
Storing signatures
Error processing tar file(exit status 1): potentially insufficient UIDs or GIDs available in user namespace (requested 0:42 for /etc/shadow): Check /etc/subuid and /etc/subgid: lchown /etc/shadow: invalid argument
ds04
March 18, 2021, 9:33am
2
Hi,
I’m looking at this now too. Starting to build a test setup on Centos7.9
What UID number are you running the podman pull as?
I think what you are seeing might be to do with sub{uid,gid}
See (section: Rootless Podman):
Do rootless containers sound interesting? What exactly are rootless containers? It sounds so mysterious, right? Rootless containers are Linux containers that run as non-root, unprivileged users. In this post, we’ll go into what rootless containers...
ds04
March 18, 2021, 12:15pm
3
Getting closer. Working on a systemd file…
Created host OS grafana user with 472:472 member of grafana group (again 472)
Bind mounting folders from host OS. Those folders are grafana:root owned on host OS and perms 775.
Running podman with --user grafana:root
Sorry to resurrect an old post but trying to see if there is anything documented about this when it comes to different flavors of Linux distro using podman?
Here is an install of podman on Ubuntu
Podman is a tool used for developing, managing, and running containers and images. Learn how to install and use Podman on an Ubuntu 20.04.
Est. reading time: 5 minutes
with updates to the piece where you configure key for it here.
wget -nv https://download.opensuse.org/repositories/devel:/kubic:/libcontainers:/stable:/cri-o:/1.24:/1.24.1/xUbuntu_22.04/Release.key -O- | apt-key add -