Bug 1214612 - rootless ipv6 containers can't be started
Summary: rootless ipv6 containers can't be started
Status: NEW
Alias: None
Product: openSUSE Tumbleweed
Classification: openSUSE
Component: Containers (show other bugs)
Version: Current
Hardware: Other Other
: P5 - None : Normal (vote)
Target Milestone: ---
Assignee: Containers Team
QA Contact: E-mail List
URL:
Whiteboard:
Keywords:
Depends on:
Blocks:
 
Reported: 2023-08-25 09:47 UTC by Frederic Crozat
Modified: 2023-08-25 09:47 UTC (History)
0 users

See Also:
Found By: ---
Services Priority:
Business Priority:
Blocker: ---
Marketing QA Status: ---
IT Deployment: ---

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.
Description Frederic Crozat 2023-08-25 09:47:43 UTC 
ip6_tables module is not preloaded and regular users have no right to modprobe it (and it is not auto-modprobed). 

I would suggest to add ip6_tables to /usr/lib/modules-load.d/podman.conf

to reproduce:
as regular user:

~/.config/containers/containers.conf :
[network]
network_backend="netavark"

podman network create --ipv6 --gateway fd00::1:8:1 --subnet fd00::1:8:0/112 ipv6

podman run --network ipv6 -ti registry.opensuse.org/opensuse/tumbleweed

it will fail unless ip6_tables is loaded