otterwiki icon indicating copy to clipboard operation
otterwiki copied to clipboard
verified publisher icon redimp

Podman and SELinux fixes to the Docker setup

Open mattock opened this issue 1 year ago • 2 comments

The current Docker / Docker Compose setup does not work on Podman due to volume mount issues. It also does not work if SELinux is in enforcing mode, because volume mounts are not correctly labeled.

After applying these changes the setup will work with rootless Podman and SELinux. The changes have been tested on Rocky Linux 9.

mattock avatar Sep 24 '24 10:09 mattock

I will set up a VM with Rocky Linux 9 and SELINUX=enforcing and dig into this.

redimp avatar Sep 25 '24 10:09 redimp

I will set up a VM with Rocky Linux 9 and SELINUX=enforcing and dig into this.

Great! Let me know if you want me to test out something - I'm more than happy to do it. The more I can upstream the better :smile:.

mattock avatar Sep 27 '24 10:09 mattock

I've tested deploying An Otter Wiki on Rocky9 with SELINUX=enforcing with both podman and docker it worked well. For podman the :z flag for the bind-mount was required, docker seems to set the required flags per default.

I covered this in the bran dnew FAQ and added a info box to the podman part of the Install Documentation.

Thank yor for bringing this to my attention!

redimp avatar Oct 19 '24 19:10 redimp