无法构建 docker 图像,"must be a root user"
Unable to build docker image, "must be a root user"
我正在通过在容器内安装一个应用程序(应该是根用户来安装)来创建一个 Docker 图像。
# cat Dockerfile
FROM ubuntu:16.04
COPY $pwd/intel_virtual_gateway_console64_1_9_0.tar /root/
COPY $pwd/login.exp /root/
WORKDIR /root/
RUN tar -xvf intel_virtual_gateway_console64_1_9_0.tar
RUN apt-get update && apt-get install -y expect \
expect-dev \
libxml2-utils
RUN whoami
RUN expect login.exp
docker 图像的构建过程:
root@labadmin-VirtualBox:~/RAGHU/krishna# docker build -t release:4.0 .
Sending build context to Docker daemon 633.5MB
Step 1/8 : FROM ubuntu:16.04
---> 6a2f32de169d
Step 2/8 : COPY $pwd/intel_virtual_gateway_console64_1_9_0.tar /root/
---> Using cache
---> 36e9ea407082
Step 3/8 : COPY $pwd/login.exp /root/
---> Using cache
---> 0fad538973d4
Step 4/8 : WORKDIR /root/
---> Using cache
---> f5d7f36bc37f
Step 5/8 : RUN tar -xvf intel_virtual_gateway_console64_1_9_0.tar
---> Using cache
---> 6cab428f1bc2
Step 6/8 : RUN apt-get update && apt-get install -y expect expect-dev libxml2-utils
---> Using cache
---> 5bb1ee67332f
确认容器 运行正在以 root 用户身份运行:
Step 7/8 : RUN whoami
---> Running in 112b87d77a08
root
---> 0c7eb38cc06b
Removing intermediate container 112b87d77a08
Step 8/8 : RUN expect login.exp
---> Running in 5f186baf2f8d
spawn ./virtualgatewayconsole_package/virtual_gateway_console_intel64
Install Error
--------------------------------------------------------------------------------
To install the application, you must be a root user.
--------------------------------------------------------------------------------
Type any key to exit: ^C
无法找出应用程序安装失败的原因,即使它是 运行 root 用户。
编辑:添加 login.exp 脚本: 这个脚本非常基础,无法完成我的功能。
#cat login.exp
#!/usr/bin/expect -f
if 0 {
*************************READ THIS BEFORE START*********************
User password must consist of at least 3 of the following categories:
uppercase, lowercase, numeric, and non-alphanumeric. In case of violation
of this rule the Installation will fail!
********************************************************************
}
set passwd "ISHAAN@p2017"
set username "raghu"
spawn ./virtualgatewayconsole_package/virtual_gateway_console_intel64
expect "Press Enter key to continue or q to quit:"
send "\n"
expect "Press ENTER for more, or q when done"
send "q"
sleep 5
#expect "conditions of this license agreement?"
expect "*(accept/decline): "
send "accept\n"
#Product installation
expect "*Please type a selection \[1\]:"
send "\n"
expect "*Please type a selection (Press Enter to next):"
send "\n"
sleep 2
#Configure TLS settings
expect "*Enter TLS keystore password (only numbers, letters and !@#$%^*()_+{}|.:?=-):"
send $passwd
send "\n"
expect "*Retype TLS keystore password:"
send $passwd
send "\n"
sleep 2
expect "Please type a selection (Press Enter to next):"
send "\n"
#Configure host
expect "Please type a selection (Press Enter to next):"
send "\n"
expect "Please type a selection (Press Enter to next):"
send "\n"
#Configure user for logging on the management console
expect "Please type a selection (Press Enter to next):"
send "\n"
sleep 2
expect "Enter user password (only numbers, letters, spaces and !@#$%^*()_+{}|.:?=-):"
send $passwd
send "\n"
expect "Retype user password:"
send $passwd
send "\n"
expect "Please type a selection (Press Enter to next):"
send "\n"
sleep 2
#Configure PostgreSQL service
expect "Please type a selection (Press Enter to next):"
send "\n"
expect "Enter PostgreSQL user password (only numbers, letters and !@#$%^*()_+{}|.:?=-):"
send $passwd
send "\n"
expect "Retype PostgreSQL user password:"
send $passwd
send "\n"
expect "Please type a selection (Press Enter to next):"
send "\n"
sleep 60
#Create Keystore
expect "What is your first and last name?"
send $username
send "\n"
expect "What is the name of your organizational unit?"
send "radisys"
send "\n"
expect "What is the name of your organization?"
send "radisys"
send "\n"
sleep 2
expect "What is the name of your City or Locality?"
send "banglore"
send "\n"
expect "What is the name of your State or Province?"
send "karnataka"
send "\n"
expect "What is the two-letter country code for this unit?"
send "IND"
send "\n"
sleep 2
expect "Is CN=raghu, OU=radisys, O=radisys, L=banglore, ST=karnataka, C=IND correct?"
send "yes"
send "\n"
sleep 2
expect "Please type a selection \[q\]:"
send "q"
expect eof
root的容器版本和你在主机上知道的root不一定是一回事。最大的区别是 docker 删除了 root 用户的各种功能以防止他们突破容器,因此用户无法访问物理硬件设备,他们可以直接在容器内安装硬盘驱动器,或调整 cgroup 设置以转义命名空间。
从您 运行 的文件名来看,您似乎正在尝试安装需要访问硬件的 KVM。我不认为这将是容器的最佳用例,容器是为可移植性和与硬件隔离而设计的,而这个应用程序很可能是根据硬件特定配置和访问作为关键要求设计的。
虽然 docker build 不允许访问硬件,但您可以使用 docker run --privileged 手动执行安装,然后 docker commit 将该容器保存到映像中。这通常是您想要构建图像的最后一种方式,但在这种情况下,它可能是唯一的方式,假设它是可能的。
我正在通过在容器内安装一个应用程序(应该是根用户来安装)来创建一个 Docker 图像。
# cat Dockerfile
FROM ubuntu:16.04
COPY $pwd/intel_virtual_gateway_console64_1_9_0.tar /root/
COPY $pwd/login.exp /root/
WORKDIR /root/
RUN tar -xvf intel_virtual_gateway_console64_1_9_0.tar
RUN apt-get update && apt-get install -y expect \
expect-dev \
libxml2-utils
RUN whoami
RUN expect login.exp
docker 图像的构建过程:
root@labadmin-VirtualBox:~/RAGHU/krishna# docker build -t release:4.0 .
Sending build context to Docker daemon 633.5MB
Step 1/8 : FROM ubuntu:16.04
---> 6a2f32de169d
Step 2/8 : COPY $pwd/intel_virtual_gateway_console64_1_9_0.tar /root/
---> Using cache
---> 36e9ea407082
Step 3/8 : COPY $pwd/login.exp /root/
---> Using cache
---> 0fad538973d4
Step 4/8 : WORKDIR /root/
---> Using cache
---> f5d7f36bc37f
Step 5/8 : RUN tar -xvf intel_virtual_gateway_console64_1_9_0.tar
---> Using cache
---> 6cab428f1bc2
Step 6/8 : RUN apt-get update && apt-get install -y expect expect-dev libxml2-utils
---> Using cache
---> 5bb1ee67332f
确认容器 运行正在以 root 用户身份运行:
Step 7/8 : RUN whoami
---> Running in 112b87d77a08
root
---> 0c7eb38cc06b
Removing intermediate container 112b87d77a08
Step 8/8 : RUN expect login.exp
---> Running in 5f186baf2f8d
spawn ./virtualgatewayconsole_package/virtual_gateway_console_intel64
Install Error
--------------------------------------------------------------------------------
To install the application, you must be a root user.
--------------------------------------------------------------------------------
Type any key to exit: ^C
无法找出应用程序安装失败的原因,即使它是 运行 root 用户。
编辑:添加 login.exp 脚本: 这个脚本非常基础,无法完成我的功能。
#cat login.exp
#!/usr/bin/expect -f
if 0 {
*************************READ THIS BEFORE START*********************
User password must consist of at least 3 of the following categories:
uppercase, lowercase, numeric, and non-alphanumeric. In case of violation
of this rule the Installation will fail!
********************************************************************
}
set passwd "ISHAAN@p2017"
set username "raghu"
spawn ./virtualgatewayconsole_package/virtual_gateway_console_intel64
expect "Press Enter key to continue or q to quit:"
send "\n"
expect "Press ENTER for more, or q when done"
send "q"
sleep 5
#expect "conditions of this license agreement?"
expect "*(accept/decline): "
send "accept\n"
#Product installation
expect "*Please type a selection \[1\]:"
send "\n"
expect "*Please type a selection (Press Enter to next):"
send "\n"
sleep 2
#Configure TLS settings
expect "*Enter TLS keystore password (only numbers, letters and !@#$%^*()_+{}|.:?=-):"
send $passwd
send "\n"
expect "*Retype TLS keystore password:"
send $passwd
send "\n"
sleep 2
expect "Please type a selection (Press Enter to next):"
send "\n"
#Configure host
expect "Please type a selection (Press Enter to next):"
send "\n"
expect "Please type a selection (Press Enter to next):"
send "\n"
#Configure user for logging on the management console
expect "Please type a selection (Press Enter to next):"
send "\n"
sleep 2
expect "Enter user password (only numbers, letters, spaces and !@#$%^*()_+{}|.:?=-):"
send $passwd
send "\n"
expect "Retype user password:"
send $passwd
send "\n"
expect "Please type a selection (Press Enter to next):"
send "\n"
sleep 2
#Configure PostgreSQL service
expect "Please type a selection (Press Enter to next):"
send "\n"
expect "Enter PostgreSQL user password (only numbers, letters and !@#$%^*()_+{}|.:?=-):"
send $passwd
send "\n"
expect "Retype PostgreSQL user password:"
send $passwd
send "\n"
expect "Please type a selection (Press Enter to next):"
send "\n"
sleep 60
#Create Keystore
expect "What is your first and last name?"
send $username
send "\n"
expect "What is the name of your organizational unit?"
send "radisys"
send "\n"
expect "What is the name of your organization?"
send "radisys"
send "\n"
sleep 2
expect "What is the name of your City or Locality?"
send "banglore"
send "\n"
expect "What is the name of your State or Province?"
send "karnataka"
send "\n"
expect "What is the two-letter country code for this unit?"
send "IND"
send "\n"
sleep 2
expect "Is CN=raghu, OU=radisys, O=radisys, L=banglore, ST=karnataka, C=IND correct?"
send "yes"
send "\n"
sleep 2
expect "Please type a selection \[q\]:"
send "q"
expect eof
root的容器版本和你在主机上知道的root不一定是一回事。最大的区别是 docker 删除了 root 用户的各种功能以防止他们突破容器,因此用户无法访问物理硬件设备,他们可以直接在容器内安装硬盘驱动器,或调整 cgroup 设置以转义命名空间。
从您 运行 的文件名来看,您似乎正在尝试安装需要访问硬件的 KVM。我不认为这将是容器的最佳用例,容器是为可移植性和与硬件隔离而设计的,而这个应用程序很可能是根据硬件特定配置和访问作为关键要求设计的。
虽然 docker build 不允许访问硬件,但您可以使用 docker run --privileged 手动执行安装,然后 docker commit 将该容器保存到映像中。这通常是您想要构建图像的最后一种方式,但在这种情况下,它可能是唯一的方式,假设它是可能的。