containers
/
podman
mirror of https://github.com/containers/podman.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

Podman image: Set default_sysctls to empty for rootless containers 

Avoids the error "Error: error preparing container xyz... for attach:
crun: open /proc/sys/net/ipv4/ping_group_range: Read-only file system:
OCI runtime error" when using `podman run --net bridge` inside rootful
Podman running without --security-opt unmask=ALL (or 'unmask=/proc/*')

Signed-off-by: Joakim Nohlgård <joakim@nohlgard.se>
This commit is contained in:
Joakim Nohlgård 2022-10-18 09:27:20 +02:00
parent 2fb7218e63
commit 02bb7c2cf3
1 changed files with 1 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

1
contrib/podmanimage/stable/podman-containers.conf
View File

@ -2,3 +2,4 @@
volumes = [ volumes = [
"/proc:/proc", "/proc:/proc",
] ]
default_sysctls = []