Why user namespace container fails to start on Red Hat Enterprise Linux 7.5 beta with the message "operation not permitted" ?

Solution Verified - Updated -

Issue

  • Why user namespace container fails to start on Red Hat Enterprise Linux 7.5 beta with the message "operation not permitted" ?
    Complete message
[root@test runc]# runc  run    -b rhel-runc1 c9
container_linux.go:262: starting container process caused "process_linux.go:339: container init caused \"rootfs_linux.go:57: mounting \\\"sysfs\\\" to rootfs \\\"/root/runc/rhel-runc1/rootfs\\\" at \\\"/sys\\\" caused \\\"operation not permitted\\\"\""

Environment

  • Red Hat Enterprise Linux 7.5 Beta
  • runc-1.0.0-12.1.gitf8ce01d.el7.x86_64
  • Container configured with user namespace and also to use host network

Subscriber exclusive content

A Red Hat subscription provides unlimited access to our knowledgebase, tools, and much more.

Current Customers and Partners

Log in for full access

Log In

New to Red Hat?

Learn more about Red Hat subscriptions

Using a Red Hat product through a public cloud?

How to access this content