Unable to mount /var/run/podman.sock inside container #21001

dimon222 · 2023-12-13T13:21:27Z

dimon222
Dec 13, 2023

Host machine has rootless setup, podman socket is created by this non-root user, and then mounted via -v /var/run,/podman.sock to new container. Now if I enter this container I can communicate with podman socket remotely just fine for all the basic stuff, but I can't create new container to mount it one more level down - Error: statfs /var/run/podman.sock Permission denied. How to grant permission to go "deeper"? SELinux is disabled, I already tried to run with --priviliged but it didn't help.

Answered by dimon222

Dec 13, 2023

Closing, it's the misunderstanding on my side.
The volume mapping is always relative to source host that opens the socket, so it cannot refer to local path in current container - command is running remotely on the host that opens socket so that's where security implication comes.

View full answer

dimon222 · 2023-12-13T18:11:55Z

dimon222
Dec 13, 2023
Author

Closing, it's the misunderstanding on my side.
The volume mapping is always relative to source host that opens the socket, so it cannot refer to local path in current container - command is running remotely on the host that opens socket so that's where security implication comes.

0 replies

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Unable to mount /var/run/podman.sock inside container #21001

Uh oh!

{{title}}

Uh oh!

Replies: 1 comment

Uh oh!

{{title}}

Uh oh!

Select a reply

Uh oh!

Unable to mount /var/run/podman.sock inside container #21001

Uh oh!

dimon222 Dec 13, 2023

Replies: 1 comment

Uh oh!

dimon222 Dec 13, 2023 Author

dimon222
Dec 13, 2023

dimon222
Dec 13, 2023
Author