Closed asarubbo closed 4 days ago
It even works for me if I sync the wrong way: musl2.log
It's clear that your text isn't a verbatim copy and paste, are we sure you haven't omitted anything from your command lines?
Please share the output of: docker run -it gentoo/stage3:musl bash -c "emerge-webrsync && emerge -v push"
Let's prefer a screenshot over a copy-paste so at least you cannot say that I have omitted something
I also took the liberty to replace emerge-webrsync
with emerge --sync -q
and this is the result:
(NOTE that I added -q on purpose otherwise the output was too much long for a screenshot)
I can make a video with media-video/recordmydesktop
if you still don't trust the output.
What's the host? What docker version?
This is a freshly-installed and up-to-date CentOS 7
~ # rpm -qa | grep docker
docker-client-1.13.1-209.git7d71120.el7.centos.x86_64
docker-common-1.13.1-209.git7d71120.el7.centos.x86_64
docker-1.13.1-209.git7d71120.el7.centos.x86_64
Note that the system where I originally reproduced the issue and the system where I did further tests are different, so it is very probably that you can reproduce on a fresh-installed up-to-date CentOS 7.
You might have better luck running the container with the --privileged
flag, but TBH v1.13.1 is ancient. For the record, I also didn't encounter any issues in a stable Gentoo system (Docker Engine v20.10.22).
privileged container works for me, I don't undertstand why but at least I can use it.
The tl;dr explanation is that Docker's default security profile blocks certain syscalls made by portage. The security profile for v1.13.1 can be found here in case you want to pinpoint the blocked syscall that is giving you issues.
Thanks for the hint so I think that one of those are true:
1) CentOS 7 Changed its security profile 2) Recent versions of portage make syscall that didn't do in the past
Yeah, that makes sense. It's an old docker version problem, so I'm not sure we can do anything about it from the image's perspective:
Perhaps a README note would be useful, since this is an issue affecting any Docker version to a certain extent.
CentOS 7 is now EOL and I can't find anything else still-alive which is packaging a version of Docker near this old (https://repology.org/project/docker/versions), so I think we can call this obsolete as nobody should be using a Docker that old in modern times.
On the host:
Then in the container: