github.com/containers/podman/v2@v2.2.2-0.20210501105131-c1e07d070c4c/contrib/podmanimage/README.md (about) 1  2 3 # podmanimage 4 5 ## Overview 6 7 This directory contains the Dockerfiles necessary to create the podmanimage container 8 images that are housed on quay.io under the Podman account. All repositories where 9 the images live are public and can be pulled without credentials. These container images are secured and the 10 resulting containers can run safely with privileges within the container. 11 12 The container images are built using the latest Fedora and then Podman is installed into them. 13 The PATH in the container images is set to the default PATH provided by Fedora. Also, the 14 ENTRYPOINT and the WORKDIR variables are not set within these container images, as such they 15 default to `/`. 16 17 The container images are: 18 19 * quay.io/containers/podman - This image is built using the latest stable version of Podman in a Fedora based container. Built with [podmanimage/stable/Dockerfile](stable/Dockerfile). 20 * quay.io/podman/stable - This image is built using the latest stable version of Podman in a Fedora based container. Built with [podmanimage/stable/Dockerfile](stable/Dockerfile). 21 * quay.io/podman/upstream - This image is built using the latest code found in this GitHub repository. When someone creates a commit and pushes it, the image is created. Due to that the image changes frequently and is not guaranteed to be stable. Built with [podmanimage/upstream/Dockerfile](upstream/Dockerfile). 22 * quay.io/podman/testing - This image is built using the latest version of Podman that is or was in updates testing for Fedora. At times this may be the same as the stable image. This container image will primarily be used by the development teams for verification testing when a new package is created. Built with [podmanimage/testing/Dockerfile](testing/Dockerfile). 23 * quay.io/podman/stable:version - This image is built manually using a Fedora based container. An RPM is first pulled from the [Fedora Updates System](https://bodhi.fedoraproject.org/) and the image is built from there. For more details, see the Containerfile used to build it, [podmanimage/stable/manual/Containerfile](stable/manual/Containerfile). 24 ## Sample Usage 25 26 27 ``` 28 podman pull docker://quay.io/podman/stable:latest 29 30 podman run --privileged stable podman version 31 32 # Create a directory on the host to mount the container's 33 # /var/lib/container directory to so containers can be 34 # run within the container. 35 mkdir /var/lib/mycontainer 36 37 # Run the image detached using the host's network in a container name 38 # podmanctr, turn off label and seccomp confinement in the container 39 # and then do a little shell hackery to keep the container up and running. 40 podman run --detach --name=podmanctr --net=host --security-opt label=disable --security-opt seccomp=unconfined --device /dev/fuse:rw -v /var/lib/mycontainer:/var/lib/containers:Z --privileged stable sh -c 'while true ;do sleep 100000 ; done' 41 42 podman exec -it podmanctr /bin/sh 43 44 # Now inside of the container 45 46 podman pull alpine 47 48 podman images 49 50 exit 51 ``` 52 53 **Note:** If you encounter a `fuse: device not found` error when running the container image, it is likely that 54 the fuse kernel module has not been loaded on your host system. Use the command `modprobe fuse` to load the 55 module and then run the container image. To enable this automatically at boot time, you can add a configuration 56 file to `/etc/modules.load.d`. See `man modules-load.d` for more details.