mirror/podman
1
0
Fork 0
mirror of https://github.com/containers/podman.git synced 2026-05-23 08:00:12 -04:00
Code Issues Packages Projects Releases Wiki Activity

troubleshooting: document setgroups requirement

Browse Source 
Signed-off-by: Erik Sjölund <erik.sjolund@gmail.com>
This commit is contained in:
Erik Sjölund
2026-05-11 07:56:57 +02:00
parent a7ed92280a
commit 33db50ab24
1 changed files with 3 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files

5
troubleshooting.md
View File

@@ -531,8 +531,9 @@ Any access inside the container is rejected with "Permission denied".
The runtime uses `setgroups(2)` hence the process loses all additional groups
the non-root user has. Use the `--group-add keep-groups` flag to pass the
user's supplementary group access into the container. Currently only available
with the `crun` OCI runtime.
user's supplementary group access into the container. For it to work,
the container itself must not call `setgroups()`.
Currently only available with the `crun` OCI runtime.
### 21) A rootless container running in detached mode is closed at logout
<!-- This is the same as section 17 above and should be deleted -->