On 19/02/2020 19.52, Michael Catanzaro wrote:
> Have you tested this? I've tried many times and afaik GitLab is simply
> incompatible with podman images. I don't remember the exact error
> message offhand, but GitLab fails to detect podman containers as valid
> containers, even when using 'podman build --format=docker'.
I'm pretty sure --format=docker is enough to maintain compatibility with
older Docker running on some runners.
However, I did not test it after described changes. I recall it used to
be possible to run buildah in an unprivileged container, but just in
case, I have also configured additional privileged runner available only
to projects in GNOME group. Add "privileged" to tags to use it.
Note that Leak Sanitizer (lsan) does not work in unprivileged docker containers, as it needs to use ptrace (docker --cap-add SYS_PTRACE). (Hopefully this saves someone else some googling.)
Is it possible to run the CI with this particular privilege added?
Regards,