github-personal/debos
1
0
Fork 0
mirror of https://github.com/outbackdingo/debos.git synced 2026-01-27 18:18:45 +00:00
Code Issues Packages Projects Releases Wiki Activity
Files
main
debos/docker/README.md
Dalton Durst 51537f17b1 docker: Add troubleshooting for permission errors on /dev/kvm 
I got a `permission denied` error when trying to use the KVM fakemachine backend on a host. The Docker documentation indicates that "the docker container process runs with the supplementary groups looked up for the specified user," but I suspect this means the groups _inside_ the container are looked up. I added the owning group of `/dev/kvm` (which happened to be `kvm`) to the container and all is well.
2024-01-10 14:31:39 +00:00

38 lines
1.6 KiB
Markdown
Raw Permalink Blame History

# debos
Docker container for ['debos' tool](https://github.com/go-debos/debos).
## Installation
```
docker pull godebos/debos
```
Debos needs virtualization to be enabled on the host and shared with the container.
Check that `kvm` is enabled and writable by the user running the docker container by running ```ls /dev/kvm```
## Usage
/!\ This container should be used as an executable, i.e. there is no need to add `debos` after `godebos/debos`.
To build `recipe.yaml`:
```
cd <PATH_TO_RECIPE_DIR>
docker run --rm --interactive --tty --device /dev/kvm --user $(id -u) --workdir /recipes --mount "type=bind,source=$(pwd),destination=/recipes" --security-opt label=disable godebos/debos <RECIPE.yaml>
```
If debos fails to run the KVM fakemachine backend and the `/dev/kvm` device exists on your host, you may need to add the owning group of the device as a supplementary group of the container. This will work if `ls -l /dev/kvm` indicates that the owning group has read-write access to the device. Adding the supplementary group may be unsafe depending on the owning group of `/dev/kvm`, but it could be required depending on your login provider. To add the group, add `--group-add "$(stat -c '%g' /dev/kvm)"` to your `docker run` command before `godebos/debos`. See [Docker run reference -- Additional Groups](https://docs.docker.com/engine/reference/run/#additional-groups) for more information.
## Container build
To build the debos container image from current git branch:
```
docker build -f docker/Dockerfile -t godebos/debos .
```
## Tests
### Unit tests
Run unit tests:
```
docker-compose -f docker/unit-tests.test.yml up --build --exit-code-from=sut
```
Reference in New Issue View Git Blame Copy Permalink