From 6eeb3384fe34cb8f2e560f8433c44a00ce9ddb78 Mon Sep 17 00:00:00 2001 From: mace Date: Sun, 7 Jun 2026 17:31:46 +0200 Subject: [PATCH] fixed rootless docker setup --- README.md | 13 ++++++++++++- 1 file changed, 12 insertions(+), 1 deletion(-) diff --git a/README.md b/README.md index 65a6a6c..0144277 100644 --- a/README.md +++ b/README.md @@ -187,7 +187,7 @@ After=network.target [Service] User=rss-svc Group=rss-svc -Environment=PATH=/home/rss-svc/bin:/usr/bin:/bin +Environment=PATH=/home/rss-svc/bin:/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/bin Environment=XDG_RUNTIME_DIR=/home/rss-svc/.docker/run ExecStart=/home/rss-svc/bin/dockerd-rootless.sh Restart=always @@ -216,6 +216,17 @@ Verify it came up (as `rss-svc`, with the `.bashrc` exports loaded): docker info ``` +> **cgroup driver note**: rootless Docker defaults to the **systemd** cgroup driver, which expects a per-user slice (`user-.slice`) created by a logind session — something we don't have here by design. If `docker compose up --build` later fails with `open /sys/fs/cgroup/user.slice/user-.slice/cgroup.controllers: no such file or directory`, switch dockerd to manage cgroups itself instead. As `rss-svc`: +> ```sh +> mkdir -p ~/.config/docker +> cat > ~/.config/docker/daemon.json << 'EOF' +> { +> "exec-opts": ["native.cgroupdriver=cgroupfs"] +> } +> EOF +> ``` +> then, as your sudo-capable user, `sudo systemctl restart docker-rss-svc`. + **3. Deploy the stack as `rss-svc`:** ```sh