CODEWITHSUNDEEP
dockergoogle-cloud-platform
invalid
invalid

Reputation: 1505

What permissions do I need to run executable with container on gce

What permissions do I need?

I created an instance with the gcloud compute instance create-with-container command.

Then, the following was displayed in the log.

Error: Failed to start container: Error response from daemon: 
{\" message \ ": \" OCI runtime create failed: container_linux.go: 349: starting container process caused \\\ "exec: \\\\\\\ "./foo\\\\\\\": permission denied \\\ ": unknown \"}

./foo is executable.
image is built by google cloud build.

Dockerfile

# Use the offical golang image to create a binary.
# This is based on Debian and sets the GOPATH to /go.
# https://hub.docker.com/_/golang
FROM golang:1.15-buster as builder

# Create and change to the app directory.
WORKDIR /app

# Retrieve application dependencies.
# This allows the container build to reuse cached dependencies.
# Expecting to copy go.mod and if present go.sum.
COPY go.* ./
RUN go mod download

# Copy local code to the container image.
COPY . ./

# Build the binary.
RUN go build -mod=readonly -v -o foo

# Use the official Debian slim image for a lean production container.
# https://hub.docker.com/_/debian
# https://docs.docker.com/develop/develop-images/multistage-build/#use-multi-stage-builds
FROM debian:buster-slim
RUN set -x && apt-get update && DEBIAN_FRONTEND=noninteractive apt-get install -y \
    ca-certificates && \
    rm -rf /var/lib/apt/lists/*

# Copy the binary to the production image from the builder stage.
COPY --from=builder /app/foo /app/foo

# Run the task on container startup.
WORKDIR /app
CMD ["./foo"]

this works fine on cloud run.

Upvotes: 1

Views: 420

Answers (1)

invalid
invalid

Reputation: 1505

Fix build command
go build -o foo

Original build command generate foo directory and output execution file in it.

Upvotes: 1

Related Questions