Fix dev build (docker-compose) problems

Prevent deletion of nginx user by entrypoint.sh - Fixes: https://github.com/ansible/awx/issues/9552 Enable fuse-overlayfs in all images - native overlay not supported until kernel 5.13+ - Fixes: https://github.com/ansible/awx/issues/10099 Refs: https://www.redhat.com/sysadmin/podman-rootless-overlay https://www.redhat.com/en/blog/working-container-storage-library-and-tools-red-hat-enterprise-linux
2026-02-01 01:28:09 -03:30 · 2021-10-27 15:55:25 -06:00
parent e447b667e5
commit 3a636c29ab
2 changed files with 6 additions and 0 deletions
--- a/tools/ansible/roles/dockerfile/templates/Dockerfile.j2
+++ b/tools/ansible/roles/dockerfile/templates/Dockerfile.j2
@@ -171,6 +171,11 @@ RUN dnf install -y podman
 RUN echo -e '[engine]\ncgroup_manager = "cgroupfs"\nevents_logger = "file"\nruntime = "crun"' > /etc/containers/containers.conf
 {% endif %}

+# Fix overlay filesystem issue
+{% if build_dev|bool %}
+RUN sed -i '/^#mount_program/s/^#//' /etc/containers/storage.conf
+{% endif %}
+
 # Ensure we must use fully qualified image names
 # This prevents podman prompt that hangs when trying to pull unqualified images
 RUN mkdir -p /etc/containers/registries.conf.d/ && echo "unqualified-search-registries = []" >> /etc/containers/registries.conf.d/force-fully-qualified-images.conf && chmod 644 /etc/containers/registries.conf.d/force-fully-qualified-images.conf
--- a/tools/docker-compose/entrypoint.sh
+++ b/tools/docker-compose/entrypoint.sh
@@ -5,6 +5,7 @@ if [ `id -u` -ge 500 ] || [ -z "${CURRENT_UID}" ]; then
 cat << EOF > /etc/passwd
 root:x:0:0:root:/root:/bin/bash
 awx:x:`id -u`:`id -g`:,,,:/var/lib/awx:/bin/bash
+nginx:x:`id -u nginx`:`id -g nginx`:Nginx web server:/var/lib/nginx:/sbin/nologin
 EOF

 cat <<EOF >> /etc/group