podman: `podman run --publish 80:80 nginx` errors
/kind bug
Description
Unexpected errors while running the command:
adel@adel-pc:~/src/libpod
> podman run --publish 80:80 nginx
Trying to pull docker.io/library/nginx...Getting image source signatures
Copying blob 688a776db95f done
Copying blob 743f2d6c1f65 done
Copying blob 6bfc4ec4420a done
Copying config 53f3fd8007 done
Writing manifest to image destination
Storing signatures
ERRO[0026] Error while applying layer: ApplyLayer exit status 1 stdout: stderr: there might not be enough IDs available in the namespace (requested 0:42 for /etc/gshadow): lchown /etc/gshado
w: invalid argument
ERRO[0026] Error pulling image ref //nginx:latest: Error committing the finished image: error adding layer with blob "sha256:743f2d6c1f65c793009f30acb07845ba2ef968192732afdab2ecf9a475515393":
ApplyLayer exit status 1 stdout: stderr: there might not be enough IDs available in the namespace (requested 0:42 for /etc/gshadow): lchown /etc/gshadow: invalid argument
Failed
Trying to pull registry.fedoraproject.org/nginx...ERRO[0028] Error pulling image ref //registry.fedoraproject.org/nginx:latest: Error initializing source docker://registry.fedoraproject.org/n
ginx:latest: Error reading manifest latest in registry.fedoraproject.org/nginx: manifest unknown: manifest unknown
Failed
Trying to pull quay.io/nginx...ERRO[0031] Error pulling image ref //quay.io/nginx:latest: Error initializing source docker://quay.io/nginx:latest: Error reading manifest latest in quay.io/ngi
nx: error parsing HTTP 404 response body: invalid character '<' looking for beginning of value: "<!DOCTYPE HTML PUBLIC \"-//W3C//DTD HTML 3.2 Final//EN\">\n<title>404 Not Found</title>\n<h1>N
ot Found</h1>\n<p>The requested URL was not found on the server. If you entered the URL manually please check your spelling and try again.</p>\n"
Failed
Trying to pull registry.access.redhat.com/nginx...ERRO[0032] Error pulling image ref //registry.access.redhat.com/nginx:latest: Error initializing source docker://registry.access.redhat.com/n
ginx:latest: Error reading manifest latest in registry.access.redhat.com/nginx: name unknown: Repo not found
Failed
Trying to pull registry.centos.org/nginx...ERRO[0033] Error pulling image ref //registry.centos.org/nginx:latest: Error initializing source docker://registry.centos.org/nginx:latest: Error re
ading manifest latest in registry.centos.org/nginx: manifest unknown: manifest unknown
Failed
Error: unable to pull nginx: 5 errors occurred:
* Error committing the finished image: error adding layer with blob "sha256:743f2d6c1f65c793009f30acb07845ba2ef968192732afdab2ecf9a475515393": ApplyLayer exit status 1 stdout: stderr
: there might not be enough IDs available in the namespace (requested 0:42 for /etc/gshadow): lchown /etc/gshadow: invalid argument
* Error initializing source docker://registry.fedoraproject.org/nginx:latest: Error reading manifest latest in registry.fedoraproject.org/nginx: manifest unknown: manifest unknown
* Error initializing source docker://quay.io/nginx:latest: Error reading manifest latest in quay.io/nginx: error parsing HTTP 404 response body: invalid character '<' looking for begi
nning of value: "<!DOCTYPE HTML PUBLIC \"-//W3C//DTD HTML 3.2 Final//EN\">\n<title>404 Not Found</title>\n<h1>Not Found</h1>\n<p>The requested URL was not found on the server. If you entered
the URL manually please check your spelling and try again.</p>\n"
* Error initializing source docker://registry.access.redhat.com/nginx:latest: Error reading manifest latest in registry.access.redhat.com/nginx: name unknown: Repo not found
* Error initializing source docker://registry.centos.org/nginx:latest: Error reading manifest latest in registry.centos.org/nginx: manifest unknown: manifest unknown
Additional information you deem important (e.g. issue happens only occasionally):
100% reproducible
Output of podman version:
Version: 1.3.2-dev
RemoteAPI Version: 1
Go Version: go1.12.4
Git Commit: bc7afd6d71da4173e4894ff352667a25987fa2ea
Built: Tue May 28 20:50:47 2019
OS/Arch: linux/amd64
Output of podman info --debug:
debug: [10/641]
compiler: gc
git commit: bc7afd6d71da4173e4894ff352667a25987fa2ea
go version: go1.12.4
podman version: 1.3.2-dev
host:
BuildahVersion: 1.9.0-dev
Conmon:
package: Unknown
path: /usr/bin/conmon
version: 'conmon version , commit: 8fba206232c249a8fc4e2fac1469fb2fddbf5cf7'
Distribution:
distribution: manjaro
version: unknown
MemFree: 2967359488
MemTotal: 7769694208
OCIRuntime:
package: Unknown
path: /usr/bin/runc
version: |-
runc version 1.0.0-rc8
commit: 425e105d5a03fabd737a126ad93d62a9eeede87f
spec: 1.0.1-dev
SwapFree: 9448923136
SwapTotal: 9448923136
arch: amd64
cpus: 4
hostname: adel-pc
kernel: 4.19.45-1-MANJARO
os: linux
rootless: true
uptime: 3h 48m 10.33s (Approximately 0.12 days)
registries:
blocked: null
insecure: null
search:
- docker.io
- registry.fedoraproject.org
- quay.io
- registry.access.redhat.com
- registry.centos.org
store:
ConfigFile: /home/adel/.config/containers/storage.conf
ContainerStore:
number: 0
GraphDriverName: vfs
GraphOptions: null
GraphRoot: /home/adel/.local/share/containers/storage
GraphStatus: {}
ImageStore:
number: 0
RunRoot: /tmp/1000
VolumePath: /home/adel/.local/share/containers/storage/volumes
About this issue
- Original URL
- State: closed
- Created 5 years ago
- Comments: 17 (17 by maintainers)
@adel-mamin, can you try
podman stop -a; kill -9 $(cat $XDG_RUNTIME_DIR/libpod/pause.pid); rm $XDG_RUNTIME_DIR/libpod/pause.pid?I am afraid the pause process keeps alive the old namespace that was configured with a single mapping and you modified the configuration for
/etc/subuidand/etc/subgid.