54 lines
1.4 KiB
Markdown
54 lines
1.4 KiB
Markdown
# podman-dind-like
|
|
|
|
A Docker-in-Docker like container using Podman
|
|
|
|
## Description
|
|
|
|
This takes the quay.io/podman/stable image and extends it with some enhancements to make it more docker like
|
|
and able to use `docker` as a command as well as includes `docker-compose`.
|
|
|
|
## Notes
|
|
|
|
This job runs on a self-hosted gitlab agent with the following in the config.toml so this is also compatible with
|
|
other self-hosted agents for other CI/CD self-hosted agents
|
|
|
|
```
|
|
[runners.docker]
|
|
host = "unix:///run/podman/podman.sock"
|
|
tls_verify = false
|
|
image = "quay.io/podman/stable"
|
|
privileged = true
|
|
network_mode = "host"
|
|
```
|
|
|
|
## Setting up Podman socket on build machines for use with muliple flavors of CI/CD agents
|
|
|
|
Installed podman.socket
|
|
|
|
```
|
|
sudo dnf install -y podman.socket; sudo systemctl enable --now podman.socket
|
|
```
|
|
|
|
Created an systemd overlay to use the docker `group` on the socket file
|
|
|
|
|
|
aka: Create a file as `/etc/systemd/system/podman.socket.d/overlay.conf` containing:
|
|
|
|
```
|
|
[Socket]
|
|
SocketMode=0660
|
|
SocketUser=root
|
|
SocketGroup=docker
|
|
```
|
|
|
|
Created a cat /etc/tmpfiles.d/podman.conf file containing
|
|
|
|
```
|
|
d /run/podman 0770 root docker
|
|
```
|
|
|
|
Note: This ensures that the group `docker` has permissions to use this socket.
|
|
|
|
Finally, add the agent users to the `docker` group (whichever agent you are using).
|
|
|
|
Run `sudo systemctl reload-daemon` and reboot (quickest way). |