ion...
>
> is anybody use containers with podman in any real environment?
>
> let's just assume a database and a service (where we can't put them into
> the same pod)?
> eg. we've a db cluster and a few service which use that cluster.
>
> thanks in advance.
>
> On Fri, May 17, 2019
here
https://download.fedoraproject.org/pub/fedora/linux/releases/30/Cloud/x86_64/images/
On Sat, Jun 22, 2019 at 4:46 AM Dusty Mabe wrote:
>
>
> On 6/11/19 5:28 PM, Feilong Wang wrote:
> > Hi there,
> >
> > I'm new for the fedora atomic community, so please bear me if the
> question is
I found the answer for first question, which is
rpm-ostree cancel
but how show progress
On Mon, May 20, 2019 at 5:12 PM Muayyad AlSadi wrote:
> Hi,
>
> I was about to upgrade my fedora 29 silverblue to 30
>
> https://fedoramagazine.org/how-to-rebase-to-fedora-30-beta-on-si
Hi,
I was about to upgrade my fedora 29 silverblue to 30
https://fedoramagazine.org/how-to-rebase-to-fedora-30-beta-on-silverblue/
I was about rebase
# rpm-ostree rebase fedora-workstation:fedora/30/x86_64/silverblue
error: System transaction in progress
# rpm-ostree status
State: busy
was able to run this complex stack having:
a django web interface
Postgres database
rabbitmq
memcached
tasks
all linked to gather and non-exported to host except the django web
interface
https://github.com/muayyad-alsadi/podman-compose/blob/master/examples/awx/docker-compose.yml
the trick is like
there were two ways I used to do this with docker and it can also be done
with podman
1. stateless way, always fresh
ExecStartPre=-/bin/podman stop -t=1 mycnt
ExecStartPre=-/bin/podman remove mycnt
ExecStart=/bin/podman run -i --name mycnt -v myimg mycmd
ExecReload=-/bin/podman restart -t=1
> Oh, and forgot, would like to see it in EPEL for reasons that you will
likely see this week :-)
thank you very much
On Mon, May 6, 2019 at 12:29 PM Scott McCarty wrote:
> Oh, and forgot, would like to see it in EPEL for reasons that you will
> likely see this week :-)
>
> On Mon, May 6,
> SUSE has a variation of these patches for their docker package[1],
> maybe these could help with moby-engine?
I guess fedora's moby-engine .src.rpm would be just fine
https://src.fedoraproject.org/rpms/moby-engine/tree/master
On Mon, May 6, 2019 at 11:57 AM Neal Gompa wrote:
> On Mon,
bility
maybe we should ship moby-engine in a different repo just like we used to
do with docker and docker-latest
https://access.redhat.com/articles/2317361
On Sun, May 5, 2019 at 2:34 PM Daniel Walsh wrote:
> On 5/5/19 4:33 AM, Muayyad AlSadi wrote:
> > Hi,
> >
> > it se
Hi,
it seems that fedora had shipped moby-engine,
when can we ship it for centos/epel?
if not in epel,link for that repo?
ree
registry.fedoraproject.org/fedora-minimal /bin/bash
bash-4.4#
[image: Screenshot from 2018-05-31 16-09-12.png]
On Thu, May 31, 2018 at 4:02 PM arnaud gaboury
wrote:
> On 05/31/2018 02:53 PM, Muayyad AlSadi wrote:
>
> you can use "atomic" command line tool to run whatever you
you can use "atomic" command line tool to run whatever you want inside
a system container (even without docker daemon)
http://www.projectatomic.io/blog/2018/03/containers-w-skopeo-ostree-oci/
http://www.projectatomic.io/blog/2017/06/creating-system-containers/
On Thu, May 31, 2018 at 3:04 PM
Hi,
in /etc/dnf/dnf.conf I have
fastestmirror=1
max_parallel_downloads=20
what is the of that in rpm-ostree?
Then it's might be a good time to have detas for ws.
On Thu, Mar 29, 2018, 6:39 PM Micah Abbott <miabb...@redhat.com> wrote:
> On 03/29/2018 12:34 PM, Muayyad AlSadi wrote:
> > > rpm-ostree upgrade --check
> >
> > it gives me,
> >
>
> rpm-ostree upgrade --check
it gives me,
mporting metadata [=] 100%
**
ERROR:src/app/rpmostree-dbus-helpers.c:1362:rpmostree_print_cached_update:
assertion failed: (g_variant_dict_lookup (, "ref-has-new-commit", "b",
_new_checksum))
Aborted (core dumped)
while "rpm-ostree upgrade"
dae?
rpm-ostree has all needed information to do this.
it knows they were added in the past
it knows they are still missing in the update
it knows how to merge (or rebase) them
On Fri, Mar 23, 2018 at 7:34 PM, Dusty Mabe <du...@dustymabe.com> wrote:
>
>
> On 03/23/2018 11:56
hi,
I've installed the latest atomic workstation on a vm
I tried to run cockpit by typing
atomic install registry.fedoraproject.org/f27/cockpit
but it gives
cockpit-bridge must be installed on host
is there a way to run cockpit on atomic workstation?
BTW: I wrote a review in Arabic for
thank you, after making it permissive it worked
On Fri, Mar 23, 2018 at 3:26 AM, Dusty Mabe <du...@dustymabe.com> wrote:
>
>
> On 03/22/2018 07:39 PM, Muayyad AlSadi wrote:
> > hi,
> >
> > I'm using qemu-kvm with virt-manager on Fedora 27
> > and
hi,
I'm using qemu-kvm with virt-manager on Fedora 27
and trying to install atomic ws, from here
https://kojipkgs.fedoraproject.org/compose/branched/Fedora-28-20180322.n.0/compose/AtomicWorkstation/x86_64/iso/
the installation progress bar is very wrong, but that is not a problem.
I waited for
Make it public?
On Wed, Mar 14, 2018, 8:29 PM Chris Negus wrote:
> I have a draft of a write-up for running Kubernetes on Fedora or Fedora
> Atomic, using kubeadm, that I'd like to submit to upstream Kubernetes. I
> would appreciate people reviewing the document and trying
> Well actually... the main way I've used these system containers is
> with the ansible scripts at:
> https://github.com/kubernetes/contrib/tree/master/ansible but those
> have been deprecated.
>
You can say that they have been moved to
https://github.com/kubernetes-incubator/kubespray
>
what about requiring sudo to do nsenter? (even when using runc rootless)
On Mon, Mar 5, 2018 at 4:09 PM, Giuseppe Scrivano <gscri...@redhat.com>
wrote:
> Muayyad AlSadi <als...@gmail.com> writes:
>
> > when using runc
> >
> > $ mypid=`runc list | tail -n
if I'm root
On Mon, Mar 5, 2018 at 1:23 PM, Giuseppe Scrivano <gscri...@redhat.com>
wrote:
> Muayyad AlSadi <als...@gmail.com> writes:
>
> > it seems there is no bwrap-oci exec and nsenter does not work as regular
> user.
> >
> > how to enter an existi
it seems there is no bwrap-oci exec and nsenter does not work as regular
user.
how to enter an existing user name space just like "runc exec redis /bin/sh"
using bubble wrap or nsenter?
On Sun, Feb 25, 2018 at 10:58 PM, Muayyad AlSadi <als...@gmail.com> wrote:
> > is thi
-0.2-1.fc27.x86_64
your PR and branch works fine
On Sun, Feb 25, 2018 at 4:29 PM, Giuseppe Scrivano <gscri...@redhat.com>
wrote:
>
> Muayyad AlSadi <als...@gmail.com> writes:
>
> > no, it did not work for me
> >
> > I've removed the entire mount secti
d /dev/tty
/dev/tty --hostname runc --remount-ro / sh
the config is attached
On Sun, Feb 25, 2018 at 2:01 PM, Giuseppe Scrivano <gscri...@redhat.com>
wrote:
> Hi Muayyad,
>
> Muayyad AlSadi <als...@gmail.com> writes:
>
> > here is my blog post
> >
> >
ot;/sys",
"type": "none",
"source": "/sys",
"options": [
"rbind",
"nosuid",
"noexec",
"nodev",
after that, the following worked
cd cont1
runc spec
runc run myname
I also tried "runc spec --rootless" and it worked but bwrap-oci did not
$ bwrap-oci run
bwrap-oci: unknown mount type none
On Fri, Feb 23, 2018 at 1:33 AM, Muayyad AlSadi <als...@gmail.com> wrote:
> ostre
ostree checkout ociimage/nginx_3Alatest cont1
cat cont1/manifest.json | jq '.layers[]|.digest' | sed -re 's/"//g' | cut
-d ':' -f 2 | while read a; do echo ostree checkout --union ociimage/$a
cont1/rootfs; done
what's next?
On Fri, Feb 23, 2018 at 12:18 AM, Muayyad AlSadi <als...@g
hi,
I'm running fedora as regular user
and I wonder how can I use skopeo+ostree+bwrap-oci to run a docker image
using bwrap-oci having files stored as ostree
$ mkdir ostree
$ cd ostree
$ ostree init --mode=bare-user --repo=$PWD
$ skopeo copy docker://redis:alpine ostree:redis@$PWD
$ skopeo copy
You can just symbolic link that to /data or /tmp
Or adjust config /etc/httpd/ to use /dev/stdout and /dev/stderr
On Mon, Apr 24, 2017, 7:49 PM Josh Berkus wrote:
> Folks,
>
> I've been building some containers for our libraries, and I'm noticing
> that there's a serious
with a working alpine qcow2 + ostree +
fedora's grub2
how to make that into ostree ?
it seems that their initrd is just a simple script, and it seems that
supporting LVM in alpine is not fun
so I'll stop here
On Sat, Mar 18, 2017 at 12:01 AM, Muayyad AlSadi <als...@gmail.com> wrote:
> after ad
after adding grub
OK: 129 MiB in 68 packages
On Fri, Mar 17, 2017 at 11:59 PM, Muayyad AlSadi <als...@gmail.com> wrote:
> I've done the following so far
>
> since I'm considering very minimal installation suitable for appliance, I
> considered fedora's busybox, but in that
I've done the following so far
since I'm considering very minimal installation suitable for appliance, I
considered fedora's busybox, but in that case I would need to create a
statically linked ostree
as I mentioned I'm not doing this to be for production server nor a
workstation
I tried to
https://admin.fedoraproject.org/pkgdb/package/rpms/dumb-init/
https://copr.fedorainfracloud.org/coprs/alsadi/dumb-init/
On Tue, Mar 7, 2017 at 4:42 PM, Muayyad AlSadi <als...@gmail.com> wrote:
> typical use is a Dockerfile having
>
> RUN curl -sSL -o /usr/local/bin/dumb-init htt
typical use is a Dockerfile having
RUN curl -sSL -o /usr/local/bin/dumb-init
https://github.com/Yelp/dumb-init/releases/download/v1.0.2/dumb-init_1.0.2_amd64
&& chmod +x /usr/local/bin/dumb-init
ENTRYPOINT ["dumb-init", "--", "/start.sh"]
On Tue, Mar 7
I've packaged dumb-init, it's in copr
And there was a package review for official repos
> Anyone using these today?
yes, I use it along with oneway <
https://github.com/muayyad-alsadi/oneway/releases/
> What does dumb-init or tini get me that systemd doesn't?
simply dumb init does
> So trishna just put out some content recently on how to build
yes, I've seen them, and such articles triggered the idea
and I have made some custom os-tree builds in the past
> your goals ... project
typically I use fedora/centos for my REAL work (I work for web company)
but the
hi,
I have an idea to demonstrate (in a blog post, video, ..etc.) the power of
os-tree and project atomic, outside the word of production servers
I have two example use cases,
a headless appliance (busybox, simple go http server)
a graphical wayland application that display animated project
Hi,
I have a kube spec like this (full yaml here
https://paste.fedoraproject.org/527041/48440635/raw/)
...
spec:
containers:
- name: mypod
image: fedora
imagePullPolicy: Always
command:
- /bin/bash
args:
- "-c"
I have a serious question about a way to map UIDs inside the container to
UIDs outside it. And a way to specify UID for mounted volumes like /data/
and /app/code/
Let's look to the topic from developer point of view.
I have vagrant sshfs mouting my home into the box.
My home have volumes owned
Hi
Checkout this simple project
https://github.com/muayyad-alsadi/docker-jumpshell
Here
https://github.com/fedora-cloud/Fedora-Dockerfiles
And here
https://admin.fedoraproject.org/pkgdb/package/rpms/fedora-dockerfiles/
On Wed, Sep 14, 2016, 9:56 PM Daniel J Walsh <dwa...@redhat.com> wrote:
> Sure, but I have no idea how to?
>
> On 09/14/2016 12:34 PM, Muayy
would you please update this
https://hub.docker.com/r/fedora/systemd-systemd/
On Wed, Sep 14, 2016 at 4:14 PM, Muayyad AlSadi <als...@gmail.com> wrote:
> Awesome!
>
> On Wed, Sep 14, 2016, 3:51 PM Daniel J Walsh <dwa...@redhat.com> wrote:
>
>>
>> On 09/14
Awesome!
On Wed, Sep 14, 2016, 3:51 PM Daniel J Walsh <dwa...@redhat.com> wrote:
>
> On 09/14/2016 05:26 AM, Muayyad AlSadi wrote:
>
> Nice article.
>
> I would like to stress that docker is intended to be process container not
> system container.
>
> In adeal (a
it to
do?
On Tue, Sep 6, 2016, 9:22 PM Daniel J Walsh <dwa...@redhat.com> wrote:
>
>
> On 09/06/2016 02:16 PM, Muayyad AlSadi wrote:
>
> I only want two processes
>
> confd and my application (apache or php-fpm or node . or uwsgi ...)
>
> The role of confd is to wa
?
https://github.com/muayyad-alsadi/oneway/blob/master/README.md
etcd, kube*, .. )
but I'm not sure if this is even a good idea or not
On Thu, Jul 14, 2016 at 12:02 AM, Muayyad AlSadi <als...@gmail.com> wrote:
> Try fake runtime which provides systemd (fake one indeed).
>
> On Wed, Jul 13, 2016, 11:55 PM Colin Walters <walt...@verbum.org> wrote:
The commands are here
https://fedoraproject.org/wiki/Atomic_Host_upgrade
On Jul 14, 2016 1:05 AM, "Muayyad AlSadi" <als...@gmail.com> wrote:
> Yes it's a simple ostree rebase
>
> But no, it's not recommended I guess because 23 is more recent and
> maintained.
>
&
Yes it's a simple ostree rebase
But no, it's not recommended I guess because 23 is more recent and
maintained.
As you can see here f24 atomic is not released. The latest build is a month
ago, while f23 is a week ago
https://getfedora.org/en/cloud/download/atomic.html
On Jul 14, 2016 12:55 AM,
Try fake runtime which provides systemd (fake one indeed).
On Wed, Jul 13, 2016, 11:55 PM Colin Walters wrote:
>
>
> On Mon, Jun 20, 2016, at 01:57 PM, Micah Abbott wrote:
> > On 06/20/2016 09:38 AM, Joe Brockmeier wrote:
> > > Have we published any comparisons of an Alpine
I'll be happy if arg parsing is missing but the assumed default is nodocs
On Wed, Jul 13, 2016, 11:47 PM Colin Walters <walt...@verbum.org> wrote:
> On Wed, Jul 13, 2016, at 04:40 PM, Muayyad AlSadi wrote:
>
> What about my question about the equivalent of "--setopt tsflags=
What about my question about the equivalent of "--setopt tsflags=nodocs"
@walters does micro-yuminst assume this option
On Wed, Jul 13, 2016, 11:25 PM Colin Walters wrote:
> On Wed, Jul 13, 2016, at 09:40 AM, Tim St. Clair wrote:
>
> Awesome!
>
> Do we have a formal
@telenordigital.com>
wrote:
> Thanks for help replying.
> I am not sure how cluster IP will work, let me go through the links, and I
> will revert go to you.
>
> On Mon, Jul 11, 2016 at 1:55 PM, Muayyad AlSadi <als...@gmail.com> wrote:
>
>> I guess you can speci
does your minimal micro-yuminst assume "--setopt tsflags=nodocs"
On Tue, Jul 12, 2016 at 9:30 PM, Colin Walters wrote:
> ...3 weeks later:
>
> On Tue, Jun 21, 2016, at 04:59 PM, Colin Walters wrote:
>
>
> It does seem viable to create a `centosmin` image that in some cases
I guess you can specify type=NodePort
or use specify externalIPs with type=ClusterIP (which is the default type)
kubectl describe service NAME
http://kubernetes.io/docs/api-reference/v1/definitions/#_v1_servicespec
http://kubernetes.io/docs/user-guide/services/
Maybe if it has hithub, then in github
On Fri, Jun 24, 2016, 9:37 PM Tim St. Clair wrote:
> I typically file under one and clone for other product.
>
> On Fri, Jun 24, 2016 at 1:14 PM, Josh Berkus wrote:
> > Folks,
> >
> > So, where do I file bugs
I use docker-glue (which can easily be made as a privileged container with
host networking / "nsenter --net")
that watch specific labels on containers to adjust haproxy/ipvsadm
https://github.com/muayyad-alsadi/docker-glue
Thank you
On Wed, Jun 22, 2016, 6:49 PM Jonathan Lebon <jle...@redhat.com> wrote:
> - Original Message -
> > On 06/22/2016 11:36 AM, Muayyad AlSadi wrote:
> > > What about developer mode in grub menu?
> >
> > The grub entry won't be added as part
What about developer mode in grub menu?
On Wed, Jun 22, 2016, 6:09 PM Colin Walters <walt...@verbum.org> wrote:
> https://bugzilla.redhat.com/show_bug.cgi?id=1309075
>
> On Wed, Jun 22, 2016, at 10:56 AM, Micah Abbott wrote:
> > On 06/22/2016 09:34 AM, Muayyad AlSadi wrote:
it worked with "setenforce 0", for some reason I can't see developer mode
in grub menu
On Wed, Jun 22, 2016 at 4:34 PM, Muayyad AlSadi <als...@gmail.com> wrote:
> now, it gave me
>
> error: fsetxattr: Invalid argument
>
> I'll try "setenforce 0" and and see
>
now, it gave me
error: fsetxattr: Invalid argument
I'll try "setenforce 0" and and see
hi,
is there a command to upgrade to fedora atomic 24?
rnetes users in
> the community that have that goal and want to charge local disk usage to
> the pod (including shared image layers). Admittedly, there are other users
> that do not want to do that, but it does mean the on disk format matters
> for some folks.
>
> On Monday, June
I gave up shrinking locales because they compress will
There are two use cases for small images
1. The on disk format, which is shared between multiple containers via
layers
2. When export tarball and pass it.
For 1. Fat does not matter and for 2 it also does not matter because ~100mb
becomes
AM, Muayyad AlSadi <als...@gmail.com> wrote:
> >localedef --prefix $OSROOT --list-archive xargs localedef --prefix
> $OSROOT --delete-from-archive
>
> the line was
>
> localedef --prefix $OSROOT --list-archive | grep -v en_US | xargs
> localedef --prefix $OSROOT --delete-from-archive
>
>localedef --prefix $OSROOT --list-archive xargs localedef --prefix
$OSROOT --delete-from-archive
the line was
localedef --prefix $OSROOT --list-archive | grep -v en_US | xargs
localedef --prefix $OSROOT --delete-from-archive
> I hacked up some quick Dockerfiles for this particular example (httpd)
and the end result is that alpine was still smaller - 8.652 MB vs. 232.8 MB
you can use this trick to strip ~100MB
localedef --prefix $OSROOT --list-archive xargs localedef --prefix
$OSROOT --delete-from-archive
mv
I was socked by the size of the following file
ls -lh /usr/lib/locale/locale-archive
-rw-r--r--. 1 root root 107M Jun 8 11:07 /usr/lib/locale/locale-archive
but I was socked more that even after stripping it the total compressed
image size did not change at all (because more of the content of
alpine is something like busybox,
It does not use the true and tested gnu glibc, it uses musl instead.
It has its use case which is different than fedora.
Usage of Alpine in official docker images is also political decision
because they have hired its main developer.
The size of the base image
why setuid? why not just do the non-privileged part, then fire a dbus event
to some root service to do the privileged part of adding network config.
(and uses policy kit to validate the request).
or a root daemon that do the privileged part of network configuration.
so in summary
an unprivileged
here are what I install
bash grep tar coreutils findutils rpm sed cpio cyrus-sasl file nc file-libs
gawk xz openssh-server vi setup filesystem man passwd sudo iproute
procps-ng iputils which net-tools psmisc
sometimes when I over optimize I replace systemd (by a fake runtime rpm
that claim to
guys playing with this, if there is a problem so
> we can figure out how to fix it.
>
>
> On 02/10/2016 03:22 AM, Muayyad AlSadi wrote:
>
> my concern is the built in DNS in new docker 1.10 and how to disable it to
> use the one provided by freeipa and dnsmasq backed by consul or skydns
>
>
&g
Antonio gave it to me
https://github.com/nalind/graphc
On Mon, Jan 4, 2016, 5:51 PM Daniel J Walsh <dwa...@redhat.com> wrote:
> Nalin has been working on an update to this, but I was unable to find his
> github.
>
> Nalin?
>
>
> On 01/02/2016 07:54 AM, Muayyad AlSadi
>> Yes critical to this is to get the graphdriver (COW File Systems) out as
a separate package. graphc so to speak. We are working on this.
> is there a link for graphc?
I guess I found it
https://github.com/willmtemple/graphc
On Sat, Jan 2, 2016 at 2:36 PM, Muayyad AlSadi <als.
13:43 +0200, Muayyad AlSadi wrote:
> > > systemd-importd since v221
> >
> > awesome! is this in F23?
> >
>
> Yes, Fedora 23 has v222. Note that `machinectl` is the correct name for
> the command:
>
> $ machinectl pull-dkr --dkr-index-url=http://in
e working on this.
>
> Once you have graphc you can mount up an image in any of the backends that
> Docker supports, Devmapper, Btrfs,
> overlayfs and run a container on them. What would we need next to save a
> layered image?
>
>
> On 10/30/2015 05:15 PM, Muayyad AlSadi wr
Hi,
dockerlite is way to provide minimal docker features using scripts on btrfs
and lxc
https://github.com/docker/dockerlite
maybe it was aimed to demonstrate how simple docker can be implemented.
but I like that the idea of having containers independent of the daemon
(ie. we can run non-root
re trying to say?
>
> Thanks
> Vivek
>
> On Fri, Sep 04, 2015 at 04:59:08PM +, Muayyad AlSadi wrote:
> > It's xfs so it will just expand.
> >
> > On Fri, Sep 4, 2015, 7:51 PM Vivek Goyal <vgo...@redhat.com> wrote:
> >
> > > Hi,
> >
quote from https://github.com/projectatomic/atomic-reactor
Features: build inside a docker container (so your builds are separated
between each other)
I was consulting with upstream docker and found they have a milestone to
separate builder outside of docker, ie docker build at some point would
80 matches
Mail list logo