Uploaded image for project: 'OpenShift Bugs'
  1. OpenShift Bugs
  2. OCPBUGS-10548

[enterprise-4.12] Issue in file cicd/pipelines/unprivileged-building-of-container-images-using-buildah.adoc

XMLWordPrintable

    • Important
    • No
    • False
    • Hide

      None

      Show
      None

      Description of problem:

      The supplied documentation on this page does not work if used exactly as described.  Builds fail with error messages "target process XY is owned by a different user" or "insufficient UIDs available"

      Ā 

      Version-Release number of selected component (if applicable):

      Ā 

      How reproducible:

      Always

      Steps to Reproduce:

      1. follow example provided in doc

      Actual results:

      build fails

      Expected results:

      build succeeds

      Additional info:

      1. the section: Example: Modified Buildah task with build user contains 2 "volumeMount declaration" and should only be present once. 
2. the SCC "pipelines-scc-userid-1000" needs "allowPrivilegeEscalation: true" otherwise buildah fails to map the uid and gid to the usernamespace. at least in our testing.

              mramendi Mikhail Ramendik
              felix.hochleitner@gepardec.com Felix Hochleitner (Inactive)
              Khurram Baig, Shubham Minglani, Vincent Demeester
              Votes:
              2 Vote for this issue
              Watchers:
              9 Start watching this issue

                Created:
                Updated:
                Resolved: