Description
I'm running dockerd-rootless with DOCKERD_ROOTLESS_ROOTLESSKIT_NET=lxc-user-nic
After upgrading from 24.0.x to 25.0.x the /etc/resolv.conf contains no ip,
so even docker pull fails with
docker: Error response from daemon: Get "https://registry-1.docker.io/v2/": dial tcp: lookup registry-1.docker.io on [::1]:53: read udp [::1]:59084->[::1]:53: read: connection refused.
version 24.0.9:
nsenter -U --preserve-credentials -n -m -t $(cat $XDG_RUNTIME_DIR/docker.pid) cat /etc/resolv.conf
nameserver 192.178.0.1
version 25.0.2
nsenter -U --preserve-credentials -n -m -t $(cat $XDG_RUNTIME_DIR/docker.pid) cat /etc/resolv.conf
nameserver
Reproduce
- configure /etc/lxc/lxc-usernet
- set DOCKERD_ROOTLESSKIT_NET=lxc-user-nic
- try to pull an image
works with 24.0.x, but fails with 25.0.x
Expected behavior
resolv.conf should be setup correctly
docker version
Client: Docker Engine - Community
Version: 25.0.2
API version: 1.44
Go version: go1.21.6
Git commit: 29cf629
Built: Thu Feb 1 00:22:57 2024
OS/Arch: linux/amd64
Context: default
Server: Docker Engine - Community
Engine:
Version: 25.0.2
API version: 1.44 (minimum version 1.24)
Go version: go1.21.6
Git commit: fce6e0c
Built: Thu Feb 1 00:22:57 2024
OS/Arch: linux/amd64
Experimental: false
containerd:
Version: 1.6.28
GitCommit: ae07eda36dd25f8a1b98dfbf587313b99c0190bb
runc:
Version: 1.1.12
GitCommit: v1.1.12-0-g51d5e94
docker-init:
Version: 0.19.0
GitCommit: de40ad0
rootlesskit:
Version: 2.0.0
ApiVersion: 1.1.1
NetworkDriver: lxc-user-nic
PortDriver: builtin
StateDir: /run/user/500/dockerd-rootless
docker info
Client: Docker Engine - Community
Version: 25.0.2
Context: default
Debug Mode: false
Plugins:
buildx: Docker Buildx (Docker Inc.)
Version: v0.12.1
Path: /usr/libexec/docker/cli-plugins/docker-buildx
compose: Docker Compose (Docker Inc.)
Version: v2.24.5
Path: /usr/libexec/docker/cli-plugins/docker-compose
Server:
Containers: 0
Running: 0
Paused: 0
Stopped: 0
Images: 0
Server Version: 25.0.2
Storage Driver: overlay2
Backing Filesystem: xfs
Supports d_type: true
Using metacopy: false
Native Overlay Diff: false
userxattr: true
Logging Driver: json-file
Cgroup Driver: systemd
Cgroup Version: 2
Plugins:
Volume: local
Network: bridge host ipvlan macvlan null overlay
Log: awslogs fluentd gcplogs gelf journald json-file local splunk syslog
Swarm: inactive
Runtimes: io.containerd.runc.v2 runc
Default Runtime: runc
Init Binary: docker-init
containerd version: ae07eda36dd25f8a1b98dfbf587313b99c0190bb
runc version: v1.1.12-0-g51d5e94
init version: de40ad0
Security Options:
seccomp
Profile: builtin
rootless
cgroupns
Kernel Version: 6.5.0-15-generic
Operating System: Ubuntu 22.04.3 LTS
OSType: linux
Architecture: x86_64
CPUs: 4
Total Memory: 7.712GiB
Name: ci-bmm-test02
ID: 027e6558-280f-4400-a648-aee57ecd215d
Docker Root Dir: /home/gitlab-runner/.local/share/docker
Debug Mode: false
Experimental: false
Insecure Registries:
127.0.0.0/8
Registry Mirrors:
https://some.private.registry:5000/
Live Restore Enabled: false
Default Address Pools:
Base: 192.168.12.0/24, Size: 27
WARNING: No cpu cfs quota support
WARNING: No cpu cfs period support
WARNING: No cpu shares support
WARNING: No cpuset support
WARNING: No io.weight support
WARNING: No io.weight (per device) support
WARNING: No io.max (rbps) support
WARNING: No io.max (wbps) support
WARNING: No io.max (riops) support
WARNING: No io.max (wiops) supportAdditional Info
No response
Description
I'm running dockerd-rootless with
DOCKERD_ROOTLESS_ROOTLESSKIT_NET=lxc-user-nicAfter upgrading from 24.0.x to 25.0.x the /etc/resolv.conf contains no ip,
so even docker pull fails with
docker: Error response from daemon: Get "https://registry-1.docker.io/v2/": dial tcp: lookup registry-1.docker.io on [::1]:53: read udp [::1]:59084->[::1]:53: read: connection refused.version 24.0.9:
version 25.0.2
Reproduce
works with 24.0.x, but fails with 25.0.x
Expected behavior
resolv.conf should be setup correctly
docker version
docker info
Additional Info
No response