Hi Devs, I have an issue with podman search xxx
when searching for images.
I get this error:
podman search oraclelinux
Error: 2 errors occurred:
* couldn't search registry "container-registry.oracle.com": Get "https://container-registry.oracle.com/auth?service=Oracle+Registry": dial tcp [2a02:26f0:a1:5a4::a15]:443: connect: network is unreachable
* couldn't search registry "docker.io": Get "https://index.docker.io/v2/_catalog": dial tcp [2600:1f18:2148:bc02:445d:9ace:d20b:c303]:443: connect: network is unreachable
I think this is failing because the dns entries for the registry are returning an ipv6 and not ipv4 address. I am not using ipv6 and have disable that on the system. When doing an nslookup
I get an ipv4 and ipv6 resolution, again I am only doing lookups against an ipv4 domain server..
nslookup container-registry.oracle.com
Server: 192.168.1.254
Address: 192.168.1.254#53
Non-authoritative answer:
container-registry.oracle.com canonical name = ds-container-registry.oracle.com.edgekey.net.
ds-container-registry.oracle.com.edgekey.net canonical name = e2581.dscx.akamaiedge.net.
Name: e2581.dscx.akamaiedge.net
Address: 104.115.34.94
Name: e2581.dscx.akamaiedge.net
Address: 2a02:26f0:a1:58c::a15
Name: e2581.dscx.akamaiedge.net
Address: 2a02:26f0:a1:5a4::a15
nslookup docker.io
Server: 192.168.1.254
Address: 192.168.1.254#53
Non-authoritative answer:
Name: docker.io
Address: 54.156.140.159
Name: docker.io
Address: 52.44.227.212
Name: docker.io
Address: 44.221.37.199
Name: docker.io
Address: 2600:1f18:2148:bc01:1983:8fd2:2dfc:a04c
Name: docker.io
Address: 2600:1f18:2148:bc02:a090:6a5b:b2ff:3152
Name: docker.io
Address: 2600:1f18:2148:bc00:a81:7e44:4669:3426
I fully expect to get the connect: network is unreachable
error against ipv6 as I don't have a route:
nmcli
enp0s31f6: connected to enp0s31f6
"Intel I219-V"
ethernet (e1000e), 00:00:00:00:00:00, hw, mtu 1500 #removed
ip4 default
inet4 192.168.1.252/24
route4 default via 192.168.1.254 metric 100
route4 192.168.1.0/24 metric 100
ip route show
default via 192.168.1.254 dev enp0s31f6 proto dhcp src 192.168.1.252 metric 100
192.168.1.0/24 dev enp0s31f6 proto kernel scope link src 192.168.1.252 metric 100
Is this a bug or is there configuration somewhere I need to resolve? I have been searching for hours and my understanding is aardvark-dns
is only used when containers are doing dns lookups.
host:
arch: amd64
buildahVersion: 1.31.3
cgroupControllers:
- memory
- pids
cgroupManager: systemd
cgroupVersion: v2
conmon:
package: conmon-2.1.8-1.el9.x86_64
path: /usr/bin/conmon
version: 'conmon version 2.1.8, commit: 15abe24cd0636f146554bf9502bc3a0549f22a2a'
cpuUtilization:
idlePercent: 99.97
systemPercent: 0.02
userPercent: 0.01
cpus: 4
databaseBackend: boltdb
distribution:
distribution: '"ol"'
variant: server
version: "9.3"
eventLogger: journald
freeLocks: 2048
hostname: xxxxxxxxx
idMappings:
gidmap:
- container_id: 0
host_id: 1000
size: 1
- container_id: 1
host_id: 100000
size: 65536
uidmap:
- container_id: 0
host_id: 1000
size: 1
- container_id: 1
host_id: 100000
size: 65536
kernel: 5.15.0-203.146.5.1.el9uek.x86_64
linkmode: dynamic
logDriver: journald
memFree: 15386644480
memTotal: 16149819392
networkBackend: netavark
networkBackendInfo:
backend: netavark
dns:
package: aardvark-dns-1.7.0-1.el9.x86_64
path: /usr/libexec/podman/aardvark-dns
version: aardvark-dns 1.7.0
package: netavark-1.7.0-2.el9_3.x86_64
path: /usr/libexec/podman/netavark
version: netavark 1.7.0
ociRuntime:
name: crun
package: crun-1.8.7-1.el9.x86_64
path: /usr/bin/crun
version: |-
crun version 1.8.7
commit: 53a9996ce82d1ee818349bdcc64797a1fa0433c4
rundir: /run/user/1000/crun
spec: 1.0.0
+SYSTEMD +SELINUX +APPARMOR +CAP +SECCOMP +EBPF +CRIU +YAJL
os: linux
pasta:
executable: ""
package: ""
version: ""
remoteSocket:
path: /run/user/1000/podman/podman.sock
security:
apparmorEnabled: false
capabilities: CAP_CHOWN,CAP_DAC_OVERRIDE,CAP_FOWNER,CAP_FSETID,CAP_KILL,CAP_NET_BIND_SERVICE,CAP_SETFCAP,CAP_SETGID,CAP_SETPCAP,CAP_SETUID,CAP_SYS_CHROOT
rootless: true
seccompEnabled: true
seccompProfilePath: /usr/share/containers/seccomp.json
selinuxEnabled: true
serviceIsRemote: false
slirp4netns:
executable: /usr/bin/slirp4netns
package: slirp4netns-1.2.1-1.el9.x86_64
version: |-
slirp4netns version 1.2.1
commit: 09e31e92fa3d2a1d3ca261adaeb012c8d75a8194
libslirp: 4.4.0
SLIRP_CONFIG_VERSION_MAX: 3
libseccomp: 2.5.2
swapFree: 0
swapTotal: 0
uptime: 4h 6m 56.00s (Approximately 0.17 days)
plugins:
authorization: null
log:
- k8s-file
- none
- passthrough
- journald
network:
- bridge
- macvlan
- ipvlan
volume:
- local
registries:
search:
- container-registry.oracle.com
- docker.io
store:
configFile: /home/xxxxxxx/.config/containers/storage.conf
containerStore:
number: 0
paused: 0
running: 0
stopped: 0
graphDriverName: overlay
graphOptions: {}
graphRoot: /home/xxxxx/.local/share/containers/storage
graphRootAllocated: 163736944640
graphRootUsed: 1175609344
graphStatus:
Backing Filesystem: xfs
Native Overlay Diff: "true"
Supports d_type: "true"
Using metacopy: "false"
imageCopyTmpDir: /var/tmp
imageStore:
number: 0
runRoot: /run/user/1000/containers
transientStore: false
volumePath: /home/xxxxxx/.local/share/containers/storage/volumes
version:
APIVersion: 4.6.1
Built: 1707215417
BuiltTime: Tue Feb 6 10:30:17 2024
GitCommit: ""
GoVersion: go1.20.10
Os: linux
OsArch: linux/amd64
Version: 4.6.1
I would appreciate your assistance very much if you have ideas or have come across this also. Thanks for your time.