Unable to run podman without sudo

LXD
1

Hi,

I’m unable to run podman containers inside lxd container without sudo:

$ podman run hello-world
Error: container_linux.go:380: starting container process caused: process_linux.go:545: container init caused: process_linux.go:508: setting cgroup config for procHooks process caused: openat2 /sys/fs/cgroup/user.slice/user-1000.slice/user@1000.service/user.slice/libpod-8f2b41cc3eac9238dbfb5ab882367e7fff44c9ff944ce41922e67de6e1b4824a.scope/pids.max: no such file or directory: OCI runtime attempted to invoke a command that was not found

If I run sudo podman run hello-world everything is fine. My host is Fedora 35, which runs privileged lxd container.

Thanks!

2

Did you set security.nesting=true?

3

Yeah, but it didn’t help :frowning:

4 
Error: container_linux.go:380: starting container process caused: process_linux.go:545: container init caused: process_linux.go:508: setting cgroup config for procHooks process caused: openat2 /sys/fs/cgroup/user.slice/user-1000.slice/user@1000.service/user.slice/libpod-8f2b41cc3eac9238dbfb5ab882367e7fff44c9ff944ce41922e67de6e1b4824a.scope/pids.max: no such file or directory: OCI runtime attempted to invoke a command that was not found

This reads like the cgroup setup is borked.