moby: Installation fails on RedHat 7.3

@andrewhsu asked me to file this on the Docker Slack Community.

When I use get.docker.com to install Docker Engine on RedHat 7.3, I receive the following errors.

warning: /var/cache/yum/x86_64/7Server/docker-main-repo/packages/docker-engine-selinux-1.12.3-1.el7.centos.noarch.rpm: Header V4 RSA/SHA512 Signature, key ID 2c52609d: NOKEY
Public key for docker-engine-selinux-1.12.3-1.el7.centos.noarch.rpm is not installed
Importing GPG key 0x2C52609D:
 Userid     : "Docker Release Tool (releasedocker) <docker@docker.com>"
 Fingerprint: 5811 8e89 f3a9 1289 7c07 0adb f762 2157 2c52 609d
 From       : https://yum.dockerproject.org/gpg
Re-declaration of boolean virt_sandbox_use_fusefs
Failed to create node
Bad boolean declaration at /etc/selinux/targeted/tmp/modules/100/virt/cil:159
/usr/sbin/semodule:  Failed!
libsemanage.semanage_direct_install_info: Overriding docker module at lower priority 100 with module at priority 400.
restorecon:  lstat(/var/lib/docker) failed:  No such file or directory
warning: %post(docker-engine-selinux-1.12.3-1.el7.centos.noarch) scriptlet failed, exit status 255
Non-fatal POSTIN scriptlet failure in rpm package docker-engine-selinux-1.12.3-1.el7.centos.noarch

If you would like to use Docker as a non-root user, you should now consider
adding your user to the "docker" group with something like:

  sudo usermod -aG docker ec2-user

Remember that you will have to log out and back in for this to take effect!

Cheers, Trevor Sullivan Docker Captain Microsoft MVP: Cloud & Data Center Management https://trevorsullivan.net https://twitter.com/pcgeek86

About this issue

  • Original URL
  • State: closed
  • Created 8 years ago
  • Comments: 51 (35 by maintainers)

Most upvoted comments

This is very easily reproducible. The following logs are from a fresh GCE RHEL instance.

[root@ab-leo-test-rhel ~]# uname -a
Linux ab-leo-test-rhel 3.10.0-327.36.3.el7.x86_64 #1 SMP Thu Oct 20 04:56:07 EDT 2016 x86_64 x86_64 x86_64 GNU/Linux
[root@ab-leo-test-rhel ~]# cat /etc/redhat-release
Red Hat Enterprise Linux Server release 7.2 (Maipo)
[root@ab-leo-test-rhel ~]#


[root@ab-leo-test-rhel ~]#
[root@ab-leo-test-rhel ~]# curl -fsSL https://get.docker.com/ | sh
+ sh -c 'sleep 3; yum -y -q install docker-engine'
Delta RPMs disabled because /usr/bin/applydeltarpm not installed.
warning: /var/cache/yum/x86_64/7Server/docker-main-repo/packages/docker-engine-selinux-1.12.3-1.el7.centos.noarch.rpm: Header V4 RSA/SHA512 Signature, key ID 2c52609d: NOKEY
Public key for docker-engine-selinux-1.12.3-1.el7.centos.noarch.rpm is not installed
Importing GPG key 0x2C52609D:
 Userid     : "Docker Release Tool (releasedocker) <docker@docker.com>"
 Fingerprint: 5811 8e89 f3a9 1289 7c07 0adb f762 2157 2c52 609d
 From       : https://yum.dockerproject.org/gpg
warning: /etc/selinux/targeted/seusers created as /etc/selinux/targeted/seusers.rpmnew
‘/etc/selinux/targeted/modules/active/seusers’ -> ‘/etc/selinux/targeted/active/seusers.local’
/usr/libexec/selinux/selinux-policy-migrate-local-changes.sh: line 66: semanage: command not found
/usr/libexec/selinux/selinux-policy-migrate-local-changes.sh: line 66: semanage: command not found
Re-declaration of boolean virt_sandbox_use_fusefs
Failed to create node
Bad boolean declaration at /etc/selinux/targeted/tmp/modules/100/virt/cil:159
/usr/sbin/semodule:  Failed!
libsemanage.semanage_direct_install_info: Overriding docker module at lower priority 100 with module at priority 400.
restorecon:  lstat(/var/lib/docker) failed:  No such file or directory
warning: %post(docker-engine-selinux-1.12.3-1.el7.centos.noarch) scriptlet failed, exit status 255
Non-fatal POSTIN scriptlet failure in rpm package docker-engine-selinux-1.12.3-1.el7.centos.noarch
warning: /etc/selinux/targeted/modules/active/seusers.final saved as /etc/selinux/targeted/modules/active/seusers.final.rpmsave

If you would like to use Docker as a non-root user, you should now consider
adding your user to the "docker" group with something like:

  sudo usermod -aG docker your-user

Remember that you will have to log out and back in for this to take effect!

[root@ab-leo-test-rhel ~]#
+2
leodotcloud on Nov 19, 2016

I’m able to reproduce the error on AWS with RHEL 7.3 instance. There are hints to what has changed in selinux here: https://bugzilla.redhat.com/show_bug.cgi?id=1388616

When I installed with RHEL 7.3 packages, stuff worked:

# rpm -qa|grep docker
docker-selinux-1.10.3-57.el7.x86_64
docker-rhel-push-plugin-1.10.3-57.el7.x86_64
docker-1.10.3-57.el7.x86_64
docker-common-1.10.3-57.el7.x86_64

The bugzilla ticket hints at docker-selinux-1.10.3-46.el7.14.x86_64 having issues. Perhaps something changed in between? Needs investigation.

+1
andrewhsu on Nov 14, 2016
Read more comments on GitHub
← moby: Install script fails in raspberry pi 3
moby: Installation fails on Ubuntu 16.04 (Xenial Xerus) →