User Tools

Site Tools


f30_podman

This is an old revision of the document!


Overview

Setting up and running podman on Fedora 30 (currently Branched):

Libpod provides a library for applications looking to use the
Container Pod concept, popularized by Kubernetes. Libpod also
contains the Pod Manager tool (Podman). Podman manages pods,
containers, container images, and container volumes.

Some links:Source and package links:

Tutorial links:

Dan Walsh's opensource.com articles:

There should theoretically be no need for docker-related RPMs for any of this.

DESCRIPTION

Podman (Pod Manager) is a fully featured container engine that
is a simple daemonless tool.  Podman provides a Docker-CLI
comparable command line that eases the transition from other
container engines and allows the management of pods, containers
and images.  Simply put: alias docker=podman.  Most Podman
commands can be run as a regular user, without requiring
additional privileges.

Podman uses Buildah(1) internally to create container images.
Both tools share image (not container) storage, hence each can
use or manipulate images (but not containers) created by the
other.

Necessary pre-configuration for podman

sssd

If you have sssd installed and running and you aren't using it, you need to disable it. One approach is to simply:

$ sudo dnf remove sssd sssd-common

Alternatively, I suspect you could just disable it through systemd.

Adding subuids and subgids

Discussed here, you may need to manually add subuids and subgids for the account that will be running podman:

$ sudo usermod --add-subuids 558752-624287 rpjday
$ sudo usermod --add-subgids 558752-624287 rpjday

Testing the setup

Once the above is done, the following should just work:

$ podman run hello-world

Hello from Docker!
This message shows that your installation appears to be working correctly.

To generate this message, Docker took the following steps:
 1. The Docker client contacted the Docker daemon.
 2. The Docker daemon pulled the "hello-world" image from the Docker Hub.
    (amd64)
 3. The Docker daemon created a new container from that image which runs the
    executable that produces the output you are currently reading.
 4. The Docker daemon streamed that output to the Docker client, which sent it
    to your terminal.

To try something more ambitious, you can run an Ubuntu container with:
 $ docker run -it ubuntu bash

Share images, automate workflows, and more with a free Docker ID:
 https://hub.docker.com/

For more examples and ideas, visit:
 https://docs.docker.com/get-started/

$

podman command list

ASSORTED

  • cp
  • generate-kube
  • generate
  • login
  • logout
  • play-kube
  • play
  • search
  • tag
  • unmount
  • varlink

container

  • attach
  • checkpoint
  • cleanup
  • commit
  • create
  • diff
  • exec
  • exists
  • export
  • inspect
  • kill
  • logs
  • mount
  • pause
  • port
  • prune
  • ps [aka ls, list]
  • restart
  • restore
  • rm
  • run
  • runlabel
  • start
  • stats
  • stop
  • top
  • umount
  • unmount [aka umount]
  • unpause
  • wait

image

  • build
  • exists
  • history
  • import
  • inspect
  • list
  • load
  • ls
  • prune
  • pull
  • push
  • rm
  • save
  • sign
  • tag
  • trust

pod

  • create
  • exists
  • inspect
  • kill
  • pause
  • ps
  • restart
  • rm
  • start
  • stats
  • stop
  • top
  • unpause

system

  • info
  • prune
  • renumber

volume

  • create
  • inspect
  • ls
  • prune
  • rm

Informational commands

version

Regular output:

$ podman version
Version:            1.1.2
RemoteAPI Version:  1
Go Version:         go1.12
OS/Arch:            linux/amd64
$

Using Go template:

$ podman version --format '{{.Version}}'
1.1.2
$

JSON format:

$ podman version --format json
{
    "RemoteAPIVersion": 1,
    "Version": "1.1.2",
    "GoVersion": "go1.12",
    "GitCommit": "",
    "Built": 0,
    "OsArch": "linux/amd64"
}
$

info

$ podman info
$ podman info --debug
$ podman info --format json
$ podman info --format '{{.registries}}'
map[registries:[docker.io registry.fedoraproject.org quay.io registry.access.redhat.com registry.centos.org]]

Equivalent:

$ podman system info

Listing containers/images

images

$ podman images
$ podman images [-a|--all]       [include intermediate images]

$ podman image [list|ls]

containers

$ podman ps
CONTAINER ID  IMAGE  COMMAND  CREATED  STATUS  PORTS  NAMES
$ podman container ps -a                   [include non-running containers]
$ podman search hello-world
$ podman search --limit 3 hello-world  [limit from each registry]
$ podman search docker.io/hello-world

inspect

$ docker inspect fedora:28
$ docker inspect --latest

cp

NAME
       podman-cp - Copy files/folders between a container and the
       local filesystem

SYNOPSIS
       podman cp [CONTAINER:]SRC_PATH [CONTAINER:]DEST_PATH

Start a Ubuntu container:

$ podman run -it --rm ubuntu bash

Identify it, and copy the file /etc/os-release to local /tmp:

$ podman ps
CONTAINER ID  IMAGE                            COMMAND  CREATED        STATUS            PORTS  NAMES
cb29f21de0df  docker.io/library/ubuntu:latest  bash     3 minutes ago  Up 3 minutes ago         pensive_lamport
$ podman cp pensive_lamport:etc/os-release /tmp/os
$ cat/tmp/os
NAME="Ubuntu"
VERSION="18.04.2 LTS (Bionic Beaver)"
ID=ubuntu
ID_LIKE=debian
PRETTY_NAME="Ubuntu 18.04.2 LTS"
VERSION_ID="18.04"
...  etc etc ...

Copy from local filesystem to container:

$ podman cp /etc/os-release pensive_lamport:tmp
f30_podman.1554019174.txt.gz · Last modified: 2019/03/31 07:59 by rpjday