Comments

264 Comments

NO-GO. Does not work rootless:

$ podman run alpine true
ERRO[0002] error unmounting /home/testuser/.local/share/containers/storage/overlay/843d730c90f793c30acf43de1ddd5604d212ae38e0dae2770ef0900520557b42/merged: invalid argument
Error: error mounting storage for container a9df041217f9c1adb0f97556ef85fa51ae70b25212f2b8172e01dec93ef950fa: error creating overlay mount to /home/testuser/.local/share/containers/storage/overlay/843d730c90f793c30acf43de1ddd5604d212ae38e0dae2770ef0900520557b42/merged, mount_data=",lowerdir=/home/testuser/.local/share/containers/storage/overlay/l/S4BJ7DE7NZ4LBEKS4PGQ26TN5Y,upperdir=/home/testuser/.local/share/containers/storage/overlay/843d730c90f793c30acf43de1ddd5604d212ae38e0dae2770ef0900520557b42/diff,workdir=/home/testuser/.local/share/containers/storage/overlay/843d730c90f793c30acf43de1ddd5604d212ae38e0dae2770ef0900520557b42/work,userxattr,context=\"system_u:object_r:container_file_t:s0:c83,c223\"": permission denied

LGTM. Tested podman, buildah, skopeo. There's one persistent buildah failure, in combination-namespaces, but that's a longstanding bug

Followup: test failure appears to be https://bugzilla.redhat.com/show_bug.cgi?id=1920857 (i.e. not a problem in this package)

Failing three gating tests: capabilities (Expected) and two others (not expected)

Failing gating tests: capabilities (expected) and config-flag-verification (bug in the test itself).

karma

Passes system tests, root and rootless. LGTM.

karma

Passed system-test suite, root and rootless.

karma

Passes system test suite, root & rootless. LGTM.

karma

Passes system test suite, root & rootless. LGTM!

karma

Tested with podman-2.2.0-0.3.rc1.fc33. podman pull ubi8 correctly fetches (only) from RH registry; pull sdf tries sequentially. System test suite passes, root & rootless. LGTM.

@augenauf , @lupinix, you'll need to upgrade podman at the same time to resolve the file conflict. The new build is a release candidate, not in bodhi, but you can pick it up here if you'd like: https://koji.fedoraproject.org/koji/buildinfo?buildID=1643508

karma

Passes podman system test suite, root & rootless, podman-2:2.2.0-0.2.rc1.fc33.x86_64

karma

Runs podman and skopeo test suites; LGTM

karma

Ran podman system tests, root & rootless; skopeo system tests, root only. All pass.

karma

podman-2.1.1-3.fc31.x86_64 + crun-0.15-5.fc31.x86_64 pass system tests and (cursory) manual testing. LGTM.

karma

podman-2.1.1-7.fc32.x86_64 + crun-0.15-5.fc32.x86_64 pass all system tests and manual testing.

karma

podman-2.1.1-6.fc32.x86_64 + crun-0.15-5.fc32.x86_64 LGTM, modulo one system-test failure (false alarm, caused by change in crun error message).

karma

Tested root/rootless podman, LGTM

karma

Fails basic podman-exec test:

podman run -d --name foo alpine sleep 10;podman exec foo /etc;echo $?
1232e99fa50320c2a42d23304c1af3d692d4c40d2dfca14dca706b396e7cde6b
open executable: Operation not permitted
1

Should be (and is, in crun-0.14.1-5.fc32):

Error: open executable: Operation not permitted: OCI runtime permission denied error
126
karma

Passes podman system test suite, root and rootless. Ran manual tests on kernel 5.8.4-200.fc32, behaves as desired.