Docker permission denied errors | Alpine Linux forums

4 posts / 0 new

#1 Sun, 2015-11-22 09:27

pwFoo

Offline
Last seen: 7 months 1 week ago
Joined: 2015-08-27

Hello,

tried to use docker @ alpine (http://wiki.alpinelinux.org/wiki/Docker).

Docker starts, but images can't be pulled.
Error message looks like that.

Pulling repository mini/base
1368a1a90cf7: Error pulling image (latest) from mini/base, ApplyLayer exit status 1 stdout:  stderr: chmod /bin/bbsuid: permission denied tderr: chmod /bin/bbsuid: permission denied 
ba9c48244eff: Download complete 
122be1d98fe4: Error downloading dependent layers 
FATA[0007] Error pulling image (latest) from mini/base, ApplyLayer exit status 1 stdout:  stderr: chmod /bin/bbsuid: permission denied

With the following workaround image pull seems to work sometimes, but not every time.

kernel.grsecurity.chroot_deny_chmod=0
kernel.grsecurity.chroot_deny_mknod=0

Is it a bug or is there just an info missing in the wiki article?

#2 Sun, 2015-11-22 09:55

pwFoo

Offline
Last seen: 7 months 1 week ago
Joined: 2015-08-27

Same as chromium segfault @ fluxbox...
Pull images works fine if xfce is used instead of fluxbox, but I don't understand why?

*UPDATE*
There are still errors...

d38fbab55429: Error pulling image (latest) from docker.io/jonathonf/manjaro, ApplyLayer exit status 1 stdout:  stderr: operation not permitted 
Error pulling image (latest) from docker.io/jonathonf/manjaro, ApplyLayer exit status 1 stdout:  stderr: operation not permitted

#3 Sun, 2015-11-22 13:44 (Reply to #2)

pwFoo

Offline
Last seen: 7 months 1 week ago
Joined: 2015-08-27

Removed linux-grsec with linux-vanilla which solved some problems.

Now some container starts fail with
mounting mqueue mqueue : no such device

#4 Sun, 2015-11-22 22:09 (Reply to #3)

pwFoo

Offline
Last seen: 7 months 1 week ago
Joined: 2015-08-27

Next problem for some use cases with docker is the missing kernel user namespace support.
https://blog.samcater.com/docker-arch-linux-and-user-namespaces/