尝试正式运行Docker时,运行'docker-compose up'引发权限被拒绝
[英]Running 'docker-compose up' throws permission denied when trying official samaple of Docker
问题描述
I am using Docker 1.13 community edition on a CentOS 7 x64 machine. 
我在CentOS 7 x64机器上使用Docker 1.13社区版。 When I was following a Docker Compose sample from Docker official tutorial , all things were OK until I added these lines to the docker-compose.yml file: 当我遵循Docker官方教程中的Docker Compose示例时,一切正常,直到我将以下行添加到docker-compose.yml文件中为止:
volumes:
- .:/code
After adding it, I faced the following error: can't open file 'app.py': [Errno 13] Permission denied. 添加后,我遇到以下错误:无法打开文件'app.py':[Errno 13]权限被拒绝。 It seems that the problem is due to a SELinux limit. 看来问题出在SELinux限制。 Using this post I ran the following command: 在这篇文章中,我运行了以下命令:
su -c "setenforce 0"
to solve the problem temporarily, but running this command: 暂时解决问题,但运行以下命令:
chcon -Rt svirt_sandbox_file_t /path/to/volume
couldn't help me. 无法帮助我。
1 个解决方案
解决方案1
0 2018-10-01 12:39:58
Finally I found the correct rule to add to SELinux: 最后,我找到了添加到SELinux的正确规则:
# ausearch -c 'python' --raw | audit2allow -M my-python
# semodule -i my-python.pp
I found it when I opened the SELinux Alert Browser and clicked on 'Details' button on the row related to this error. 当我打开SELinux警报浏览器并单击与此错误相关的行上的“详细信息”按钮时,找到了它。 The more detailed information from SELinux: 来自SELinux的更详细的信息:
SELinux is preventing /usr/local/bin/python3.4 from read access on the file app.py.
***** Plugin catchall (100. confidence) suggests **************************
If you believe that python3.4 should be allowed read access on the app.py file by default.
ausearch -c 'python' --raw | audit2allow -M my-python
semodule -i my-python.pp
声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.