Error: cannot setup namespace using newuidmap: exit status 1

Question

Error: cannot setup namespace using newuidmap: exit status 1

ariansvirsky opened this issue 3 years ago · 3 comments

When trying to run it on k8s, getting the error Error: cannot setup namespace using newuidmap: exit status 1

Answer 1 · 2022-01-02T21:48:16.000Z

@ariansvirsky it should work if you run podman within a privileged container - you can still let it run as unprivileged user.

I think it might even work without running the parent container as privileged when using CRI-O because it grants certain permissions by default that are required to run rootless containers but when using other container engines like containerd you still need to add a couple of capabilities and/or provide a custom seccomp profile or simply run podman within a privileged container (using an unprivilged user).

Answer 2 · 2022-01-07T22:03:49.000Z

@ariansvirsky actually please try using the mgoltzsche/podman:3.4.2-minimal image. Since it does not create a user namespace in the first place, the uidmap error should not occur.
(I guess so far you used mgoltzsche/podman:3.4.2 (without *-minimal tag).)

Answer 3 · 2023-03-24T00:26:06.000Z

This should have been fixed with the 4.4.1 release.