Description
As of Podman 3.2, there is the feature --group-add keep-groups which lets the container process maintain the groups of its parent process. This is useful for the case where one wants to access (and not simply mount) devices inside a rootless container, as explained in Red Hat's blog post Using files and devices in Podman rootless containers .
I feel like I might be missing something, but it seems that accessing devices in rootless containers is currently not possible using this driver, since as far as I can tell, there is no way of passing the keep-groups option. So, for instance, if one would like to run something like Home Assistant (passing a Zigbee USB device) or Jellyfin (passing a video device for hardware acceleration), one would need to use rootful containers instead of the recommended Podman solution of adding the rootless user to the respective device groups and passing --group-add keep-groups.