Bug 1944473
Summary: | [Edge] RHEL-Edge container image failed start with Permission denied error | ||
---|---|---|---|
Product: | Red Hat Enterprise Linux 8 | Reporter: | Xiaofeng Wang <xiaofwan> |
Component: | osbuild-composer | Assignee: | Christian Kellner <ckellner> |
Status: | CLOSED CURRENTRELEASE | QA Contact: | Xiaofeng Wang <xiaofwan> |
Severity: | unspecified | Docs Contact: | |
Priority: | unspecified | ||
Version: | 8.4 | CC: | ckellner, leiwang, obudai, yih |
Target Milestone: | rc | Keywords: | Triaged |
Target Release: | --- | ||
Hardware: | Unspecified | ||
OS: | Unspecified | ||
Whiteboard: | |||
Fixed In Version: | Doc Type: | If docs needed, set a value | |
Doc Text: | Story Points: | --- | |
Clone Of: | Environment: | ||
Last Closed: | 2021-08-12 09:48:07 UTC | Type: | Bug |
Regression: | --- | Mount Type: | --- |
Documentation: | --- | CRM: | |
Verified Versions: | Category: | --- | |
oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
Cloudforms Team: | --- | Target Upstream Version: | |
Embargoed: |
Description
Xiaofeng Wang
2021-03-30 02:19:58 UTC
Even though we specify `--no-selinux`, it seems that selinux found its way into the extended attributes (probably via `--xattrs`). A patched to fix the issue is proposed at https://github.com/osbuild/osbuild/pull/623 Verified. python3-osbuild-27-1.20210330gitf119243.20210330gitf119243.el8.noarch osbuild-composer-core-28.3-1.el8.x86_64 osbuild-selinux-27-1.20210330gitf119243.20210330gitf119243.el8.noarch osbuild-ostree-27-1.20210330gitf119243.20210330gitf119243.el8.noarch osbuild-composer-28.3-1.el8.x86_64 osbuild-27-1.20210330gitf119243.20210330gitf119243.el8.noarch osbuild-composer-worker-28.3-1.el8.x86_64 [cloud-user@new-rhel-8-4 ~]$ sudo podman pull "oci-archive:51ec99b2-2614-4996-990d-49460e96649d-rhel84-container.tar" Getting image source signatures Copying blob 1620ce53176f done Copying config 7ff08ec73c done Writing manifest to image destination Storing signatures 7ff08ec73cd429d6a563503c903a48c2d2dafe08bb4211c1262ebf4f15500cbe [cloud-user@new-rhel-8-4 ~]$ sudo podman images REPOSITORY TAG IMAGE ID CREATED SIZE <none> <none> 7ff08ec73cd4 7 minutes ago 1.26 GB [cloud-user@new-rhel-8-4 ~]$ sudo podman run -d --name rhel-edge --network host 7ff08ec73cd4 5a7f1f99a00a17de59052db5977ffad194c74974cb8df2a524407033efb39f3b [cloud-user@new-rhel-8-4 ~]$ sudo podman ps -a CONTAINER ID IMAGE COMMAND CREATED STATUS PORTS NAMES 5a7f1f99a00a 7ff08ec73cd4 httpd -D FOREGROU... 4 seconds ago Up 5 seconds ago rhel-edge [cloud-user@new-rhel-8-4 ~]$ curl http://192.168.100.1/repo/refs/heads/rhel/8/x86_64/edge cabb3b524564bb7012c144d6f2050bfee4a8e38492f3a8490e001cdf1a6640e1 Verified on python3-osbuild-27.1-1.el8.noarch osbuild-composer-worker-28.3-1.el8.x86_64 osbuild-27.1-1.el8.noarch osbuild-composer-core-28.3-1.el8.x86_64 osbuild-composer-28.3-1.el8.x86_64 osbuild-ostree-27.1-1.el8.noarch osbuild-selinux-27.1-1.el8.noarch [cloud-user@new-rhel-8-4 ~]$ sudo composer-cli compose status 7e3aa505-1472-44a5-936c-23e122081310 FINISHED Thu Apr 1 23:35:48 2021 container 0.0.1 rhel-edge-container [cloud-user@new-rhel-8-4 ~]$ sudo composer-cli compose image 7e3aa505-1472-44a5-936c-23e122081310 7e3aa505-1472-44a5-936c-23e122081310-rhel84-container.tar: 782.79 MB [cloud-user@new-rhel-8-4 ~]$ skopeo copy oci-archive:7e3aa505-1472-44a5-936c-23e122081310-rhel84-container.tar docker://quay.io/xiaofwan/rhel-edge:latest Getting image source signatures Copying blob addaa19507ad done Copying config 982d206d0f done Writing manifest to image destination Copying config 982d206d0f [======================================] 471.0b / 471.0b Writing manifest to image destination Storing signatures [cloud-user@new-rhel-8-4 ~]$ sudo podman pull quay.io/xiaofwan/rhel-edge:latest Trying to pull quay.io/xiaofwan/rhel-edge:latest... Getting image source signatures Copying blob addaa19507ad done Copying config 982d206d0f done Writing manifest to image destination Storing signatures 982d206d0f470e1ce0f1380309efa5c2d47857c6bb1bee3c81b8ee9210b08cfc [cloud-user@new-rhel-8-4 ~]$ sudo podman images REPOSITORY TAG IMAGE ID CREATED SIZE quay.io/xiaofwan/rhel-edge latest 982d206d0f47 7 hours ago 1.26 GB <none> <none> f4f290da2ecc 3 days ago 1.25 GB [cloud-user@new-rhel-8-4 ~]$ sudo podman run -d --name rhel-edge --network host quay.io/xiaofwan/rhel-edge:latest 3c6c43e3d839e347687d88e70229c6b2a03ead1f33122c528e944ee465596f4e [cloud-user@new-rhel-8-4 ~]$ sudo podman ps -a CONTAINER ID IMAGE COMMAND CREATED STATUS PORTS NAMES 3c6c43e3d839 quay.io/xiaofwan/rhel-edge:latest httpd -D FOREGROU... 3 seconds ago Up 3 seconds ago rhel-edge [cloud-user@new-rhel-8-4 ~]$ curl http://192.168.100.1/repo/refs/heads/rhel/8/x86_64/edge efd2d3c1ae577323c700d0a275c66928e23e6209ef078e22d98ec20772fb12b0 [cloud-user@new-rhel-8-4 ~]$ getenforce Enforcing I believe that these packages are already shipped in RHEL 8.4, therefore I'm closing this bug. Feel free to reopen if I'm wrong. |