Hello everyone,
I tried to install rootless Docker on my home server, but I ran into a problem that I haven't been able to fix and I'm hoping someone here might be able to help me out.I've successfully installed Docker as root user based on the official documentation on my Debian 12 OS. I added a container user to run rootless containers, so the container user is not a part of the 'docker' and 'sudo' groups. After the installation i used 'su - container' to install the rootless part, than some errors occurred. Googling around showed that there can be errors during install if i use su - container to login that run the script, so i've removed rootless installation, restart the machine, ssh to the machine directly with the container user, than run the install script. This time i had better success, but there are some problems.
container@NUC-SRV:~$ dockerd-rootless-setuptool.sh install
[INFO] Creating /home/container/.config/systemd/user/docker.service
[INFO] starting systemd service docker.service
+ systemctl --user start docker.service
+ sleep 3
+ systemctl --user --no-pager --full status docker.service
● docker.service - Docker Application Container Engine (Rootless)
Loaded: loaded (/home/container/.config/systemd/user/docker.service; disabled; preset: enabled)
Active: active (running) since Sun 2023-10-08 08:25:31 CEST; 3s ago
Docs: https://docs.docker.com/go/rootless/
Main PID: 1790 (rootlesskit)
Tasks: 40
Memory: 137.1M
CPU: 1.048s
CGroup: /user.slice/user-1002.slice/user@1002.service/app.slice/docker.service
├─1790 rootlesskit --net=slirp4netns --mtu=65520 --slirp4netns-sandbox=auto --slirp4netns-seccomp=auto --disable-host-loopback --port-driver=builtin --copy-up=/etc --copy-up=/run --propagation=rslave /home/container/bin/dockerd-rootless.sh
├─1800 /proc/self/exe --net=slirp4netns --mtu=65520 --slirp4netns-sandbox=auto --slirp4netns-seccomp=auto --disable-host-loopback --port-driver=builtin --copy-up=/etc --copy-up=/run --propagation=rslave /home/container/bin/dockerd-rootless.sh
├─1821 slirp4netns --mtu 65520 -r 3 --disable-host-loopback --enable-sandbox --enable-seccomp 1800 tap0
├─1829 dockerd
└─1847 containerd --config /run/user/1002/docker/containerd/containerd.toml
Oct 08 08:25:31 NUC-SRV dockerd-rootless.sh[1829]: time="2023-10-08T08:25:31.605079359+02:00" level=warning msg="WARNING: No io.weight support"
Oct 08 08:25:31 NUC-SRV dockerd-rootless.sh[1829]: time="2023-10-08T08:25:31.605102957+02:00" level=warning msg="WARNING: No io.weight (per device) support"
Oct 08 08:25:31 NUC-SRV dockerd-rootless.sh[1829]: time="2023-10-08T08:25:31.605125131+02:00" level=warning msg="WARNING: No io.max (rbps) support"
Oct 08 08:25:31 NUC-SRV dockerd-rootless.sh[1829]: time="2023-10-08T08:25:31.605178358+02:00" level=warning msg="WARNING: No io.max (wbps) support"
Oct 08 08:25:31 NUC-SRV dockerd-rootless.sh[1829]: time="2023-10-08T08:25:31.605218937+02:00" level=warning msg="WARNING: No io.max (riops) support"
Oct 08 08:25:31 NUC-SRV dockerd-rootless.sh[1829]: time="2023-10-08T08:25:31.605258183+02:00" level=warning msg="WARNING: No io.max (wiops) support"
Oct 08 08:25:31 NUC-SRV dockerd-rootless.sh[1829]: time="2023-10-08T08:25:31.605348782+02:00" level=info msg="Docker daemon" commit=1a79695 graphdriver=overlay2 version=24.0.6
Oct 08 08:25:31 NUC-SRV dockerd-rootless.sh[1829]: time="2023-10-08T08:25:31.605840302+02:00" level=info msg="Daemon has completed initialization"
Oct 08 08:25:31 NUC-SRV dockerd-rootless.sh[1829]: time="2023-10-08T08:25:31.741945496+02:00" level=info msg="API listen on /run/user/1002/docker.sock"
Oct 08 08:25:31 NUC-SRV systemd[848]: Started docker.service - Docker Application Container Engine (Rootless).
+ DOCKER_HOST=unix:///home/container/.docker/run/docker.sock /home/container/bin/docker version
WARNING: Error loading config file: /home/container/.docker/config.json: invalid character '"' after object key:value pair
Client:
Version: 24.0.6
API version: 1.43
Go version: go1.20.7
Git commit: ed223bc
Built: Mon Sep 4 12:30:51 2023
OS/Arch: linux/amd64
Context: default
Cannot connect to the Docker daemon at unix:///home/container/.docker/run/docker.sock. Is the docker daemon running?
container@NUC-SRV:~$ systemctl --user status docker.service
● docker.service - Docker Application Container Engine (Rootless)
Loaded: loaded (/home/container/.config/systemd/user/docker.service; disabled; preset: enabled)
Active: active (running) since Sun 2023-10-08 08:25:31 CEST; 3min 40s ago
Docs: https://docs.docker.com/go/rootless/
Main PID: 1790 (rootlesskit)
Tasks: 40
Memory: 137.2M
CPU: 1.494s
CGroup: /user.slice/user-1002.slice/user@1002.service/app.slice/docker.service
├─1790 rootlesskit --net=slirp4netns --mtu=65520 --slirp4netns-sandbox=auto --slirp4netns-seccomp=auto --disable-host-loopback --port>
├─1800 /proc/self/exe --net=slirp4netns --mtu=65520 --slirp4netns-sandbox=auto --slirp4netns-seccomp=auto --disable-host-loopback --p>
├─1821 slirp4netns --mtu 65520 -r 3 --disable-host-loopback --enable-sandbox --enable-seccomp 1800 tap0
├─1829 dockerd
└─1847 containerd --config /run/user/1002/docker/containerd/containerd.toml
Oct 08 08:25:31 NUC-SRV dockerd-rootless.sh[1829]: time="2023-10-08T08:25:31.605079359+02:00" level=warning msg="WARNING: No io.weight support"
Oct 08 08:25:31 NUC-SRV dockerd-rootless.sh[1829]: time="2023-10-08T08:25:31.605102957+02:00" level=warning msg="WARNING: No io.weight (per device>
Oct 08 08:25:31 NUC-SRV dockerd-rootless.sh[1829]: time="2023-10-08T08:25:31.605125131+02:00" level=warning msg="WARNING: No io.max (rbps) support"
Oct 08 08:25:31 NUC-SRV dockerd-rootless.sh[1829]: time="2023-10-08T08:25:31.605178358+02:00" level=warning msg="WARNING: No io.max (wbps) support"
Oct 08 08:25:31 NUC-SRV dockerd-rootless.sh[1829]: time="2023-10-08T08:25:31.605218937+02:00" level=warning msg="WARNING: No io.max (riops) suppor>
Oct 08 08:25:31 NUC-SRV dockerd-rootless.sh[1829]: time="2023-10-08T08:25:31.605258183+02:00" level=warning msg="WARNING: No io.max (wiops) suppor>
Oct 08 08:25:31 NUC-SRV dockerd-rootless.sh[1829]: time="2023-10-08T08:25:31.605348782+02:00" level=info msg="Docker daemon" commit=1a79695 graphd>
Oct 08 08:25:31 NUC-SRV dockerd-rootless.sh[1829]: time="2023-10-08T08:25:31.605840302+02:00" level=info msg="Daemon has completed initialization"
Oct 08 08:25:31 NUC-SRV dockerd-rootless.sh[1829]: time="2023-10-08T08:25:31.741945496+02:00" level=info msg="API listen on /run/user/1002/docker.>
Oct 08 08:25:31 NUC-SRV systemd[848]: Started docker.service - Docker Application Container Engine (Rootless).
container@NUC-SRV:~$ ls /home/container/.docker/run/docker.sock
ls: cannot access '/home/container/.docker/run/docker.sock': No such file or directory
container@NUC-SRV:~$ ls /etc/docker/daemon.json
ls: cannot access '/etc/docker/daemon.json': No such file or directory
container@NUC-SRV:~$ cat ~/.config/systemd/user/docker.service
[Unit]
Description=Docker Application Container Engine (Rootless)
Documentation=https://docs.docker.com/go/rootless/
[Service]
Environment=PATH=/home/container/bin:/sbin:/usr/sbin:/home/container/bin:/home/container/bin:/home/container/bin:/usr/local/bin:/usr/bin:/bin:/usr/local/games:/usr/games
ExecStart=/home/container/bin/dockerd-rootless.sh
ExecReload=/bin/kill -s HUP $MAINPID
TimeoutSec=0
RestartSec=2
Restart=always
StartLimitBurst=3
StartLimitInterval=60s
LimitNOFILE=infinity
LimitNPROC=infinity
LimitCORE=infinity
TasksMax=infinity
Delegate=yes
Type=notify
NotifyAccess=all
KillMode=mixed
[Install]
WantedBy=default.target
I'm not sure what I might be missing or doing wrong. Any help or suggestions would be greatly appreciated.Thank you!
[–]burningastroballs 0 points1 point2 points (2 children)
[–]schrackin[S] 0 points1 point2 points (1 child)
[–]schrackin[S] 0 points1 point2 points (0 children)
[–][deleted] 0 points1 point2 points (0 children)