bootc-image-builder icon indicating copy to clipboard operation
bootc-image-builder copied to clipboard
verified publisher icon osbuild

Fails to run in GitLab with privileged runner

Open SNThrailkill opened this issue 9 months ago • 0 comments

In conjunction with #881 I tried to get around this issue by running the pipeline with a privileged kubernetes executor with the following config:

[[runners]]
      [runners.kubernetes]
        privileged = true
        [[runners.kubernetes.volumes.host_path]]
          name = "docker"
          mount_path = "/var/run/docker.sock"
          host_path = "/var/run/docker.sock"

Which results in the following error:

sudo podman run --privileged --security-opt label=type:unconfined_t \ # collapsed multi-line command
Trying to pull quay.io/centos-bootc/bootc-image-builder:latest...
Getting image source signatures
Copying blob sha256:b8c44d83ae915bd8f219306f9a23cfa0651aa18bb4d02d69b211dc8f9183181f
Copying blob sha256:cce08eb61cfa1d9d3562d6ccd2b139662bfca173e661a2dffb29b1f5482c5ced
Copying config sha256:0f2821b38708fbae382012feb70086bad71177c1ade8ebd663f1d32b7a8e3653
Writing manifest to image destination
error: cannot validate the setup: this command requires a privileged container

The Kubernetes nodes themselves are running Ubuntu 24.04 with docker installed.

SNThrailkill avatar Apr 02 '25 14:04 SNThrailkill