ratigorsk/podman-in-docker
2
0
Fork 0
Code Actions Packages Activity
184 Commits 1 Branch 3 Tags
817e64c04706537353322c5b82701e1c06cb12d2
Go to file
Clone
Open with VS Code Open with VSCodium Open with Intellij IDEA
Download ZIP Download TAR.GZ Download BUNDLE
James Jones 817e64c047
Some checks failed
Build podman-dind-like / build-and-push (GITHUB_TOKEN, HOME_NEXUS_DOCKER_PASSWORD, NEXUS_DOCKER_USER, ghcr.io, $NEXUS_PROXY_REGISTRY, GITHUB_DOCKER_USER) (push) Has been cancelled
Details
Merge branch 'develop' into 'main' 
Adding operator-sdk CLI

See merge request ymdllc/containers/podman-dind-like!27
2025-06-07 13:01:16 -04:00
.github/workflows
Switching to OKD hosted runners that have Nexus credentials already
2025-01-25 19:14:19 -05:00
.gitlab-ci.yml
Adding proxy for pypi
2023-10-01 10:38:04 -04:00
Dockerfile
Getting the new image ready
2025-06-07 11:54:36 -04:00
LICENSE
Initial commit
2022-11-16 12:06:10 -05:00
README.md
Updating the README before release
2022-12-07 06:02:02 -05:00
rpm-sign-expect
Switching the hosted registry
2023-01-03 20:01:16 -05:00
ssh_ansible.conf
Removing the dnf cache and condensing this a bit
2023-03-04 09:43:05 -05:00

README.md

podman-dind-like

A Docker-in-Docker like container using Podman

Description

This takes the quay.io/podman/stable image and extends it with some enhancements to make it more docker like and able to use docker as a command as well as includes docker-compose.

Notes on Github Actions

This job runs on a self-hosted Github Actions agent and publishes to Github's container registry ghcr.io as a 'public' image and can be downloaded via a simple docker command or other means as you see fit.

Note: The build-push action doesn't work with 'podman' (commented out in the pipeline) as it tightly coupled with 'buildx' which is only supported with native docker.

docker pull ghcr.io/jamesjonesconsulting/podman-dind-like:latest

Why is there a second container in the matrix?

The matrix defined in the pipeline pushes the public container (as described above), but also publishes a private container to my instance of Nexus Repository for my home lab usage. Having this container 'local' to my home lab saves bandwidth and accellerates my use cases. In addition, it's an example of the usage of the 'matrix' feature in a repository I have public so others may benefit from seeing the pattern in use.

Notes on GitLab

This job also runs on a self-hosted gitlab agent with the following in the /etc/gitlab-runner/config.toml file so this is also compatible with other self-hosted agents for other CI/CD self-hosted agents.

  [runners.docker]
    host = "unix:///run/podman/podman.sock"
    tls_verify = false
    image = "quay.io/podman/stable"
    privileged = true
    network_mode = "host"

Setting up Podman socket on build machines for use with muliple flavors of CI/CD agents

First, install podman.socket

sudo dnf install -y podman.socket; sudo systemctl enable --now podman.socket

Create an systemd overlay to use the docker group on the socket file (note: you'll have to create this group yourself separately).

aka: Create a file as /etc/systemd/system/podman.socket.d/overlay.conf containing:

[Socket]
SocketMode=0660
SocketUser=root
SocketGroup=docker

Created a tmpfiles.d entry as /etc/tmpfiles.d/podman.conf file containing (ensuring that folder will retain the correct permissions after reboots)

d /run/podman 0770 root docker

Note: This ensures that the group docker has permissions to use this socket.

Finally, add the agent users to the docker group (whichever agent you are using).

Run sudo systemctl reload-daemon and reboot (quickest way).

View Git Blame Copy Permalink
Description
A Docker-in-Docker like container using Podman for use with Gitea Runner
dinddockerpodman
Readme Apache-2.0 144 KiB
Languages
Dockerfile 100%