Skip to content
/ diuid Public
forked from weber-software/diuid

Docker in UserModeLinux in Docker

0 stars 21 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

AkihiroSuda/diuid

BranchesTags
 
 

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

10 Commits
Dockerfile
Dockerfile
 
 
KERNEL.config
KERNEL.config
 
 
README.md
README.md
 
 
entrypoint.sh
entrypoint.sh
 
 
init.sh
init.sh
 
 
kernel.sh
kernel.sh
 
 

Repository files navigation

Docker in User Mode Linux

An image for running a dockerd inside a user mode linux kernel. This way it is possible to run and build docker images without forwarding the docker socket or using privileged flags. Therefore this image can be used to build docker images with the gitlab-ci-multi-runner docker executor.

How it works

It starts a user mode linux kernel with a dockerd inside. The network communication is bridged by slirp. I didn't managed to get the "redir" of slirp to work and so i'm forwarding the docker socket using TCP reverse tunneling over an SSH connection from the uml kernel to the container.

Security

Because uml linux is using ptrace the image has to be started with --cap-add=SYS_PTRACE.

Example

Uml linux requires a tmpfs with exec access:

docker run -it --rm --cap-add=SYS_PTRACE -e TMPDIR=/umlshm --tmpfs /umlshm:rw,nosuid,nodev,exec,size=8g weberlars/diuid docker info

About

Docker in UserModeLinux in Docker

Resources

Readme
Activity

Stars

0 stars

Watchers

2 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages

  • Shell 62.1%
  • Dockerfile 37.9%