Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Accessing devices in rootless containers with --group-add keep-groups #390

Open
cycneuramus opened this issue Nov 26, 2024 · 0 comments
Open

Comments

@cycneuramus
Copy link

As of Podman 3.2, there is the feature --group-add keep-groups which lets the container process maintain the groups of its parent process. This is useful for the case where one wants to access (and not simply mount) devices inside a rootless container, as explained in Red Hat's blog post Using files and devices in Podman rootless containers .

I feel like I might be missing something, but it seems that accessing devices in rootless containers is currently not possible using this driver, since as far as I can tell, there is no way of passing the keep-groups option. So, for instance, if one would like to run something like Home Assistant (passing a Zigbee USB device) or Jellyfin (passing a video device for hardware acceleration), one would need to use rootful containers instead of the recommended Podman solution of adding the rootless user to the respective device groups and passing --group-add keep-groups.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Projects
None yet
Development

No branches or pull requests

1 participant