Hi,
Has anybody succeeded with running rootless (as ordinal user not root) Docker inside unprivileged LXC container? I followed this official guide: https://docs.docker.com/engine/security/rootless/. Installation failed with the following message:
I've checked this article: https://ubuntu.com/blog/nested-containers-in-lxd and applied necessary changes both to host (Proxmox) and container-based /etc/subuid, /etc/subgid files but this didn't help much:
Even strace-ing brought nothing new: code fails on write() operation to uid_map file.
Proxmox:
LXC container:
Are there any other things I could miss?
P.S. Nesting is enabled for container.
Regards,
Alex
Has anybody succeeded with running rootless (as ordinal user not root) Docker inside unprivileged LXC container? I followed this official guide: https://docs.docker.com/engine/security/rootless/. Installation failed with the following message:
Code:
dockerd-rootless.sh[355]: [rootlesskit:parent] error: failed to setup UID/GID map: newuidmap 366 [0 1000 1 1 100000 65536] failed: newuidmap: write to uid_map failed: Operation not permitted
Code:
dockerd-rootless.sh[928]: [rootlesskit:parent] error: failed to setup UID/GID map: newuidmap 939 [0 1000 1 1 65536 131072] failed: newuidmap: write to uid_map failed: Operation not permitted
Even strace-ing brought nothing new: code fails on write() operation to uid_map file.
Proxmox:
Code:
# pveversion
pve-manager/6.4-5/6c7bf5de (running kernel: 5.4.106-1-pve)
LXC container:
Code:
Ubuntu 20.04.2 LTS (GNU/Linux 5.4.106-1-pve x86_64)
Are there any other things I could miss?
P.S. Nesting is enabled for container.
Regards,
Alex
Last edited: