Update installation instructions #3068
Conversation
openshift-ci-robot
added
size/L
needs-ok-to-test
|
Hi @h-vetinari. Thanks for your PR. I'm waiting for a containers or openshift member to verify that this patch is reasonable to test. If it is, they should reply with Once the patch is verified, the new status will be reflected by the I understand the commands that are listed here. Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository. |
|
Can one of the admins verify this patch?
|
| @@ -8,114 +8,9 @@ commands with Podman. | |||
| **NOTE**: the code samples are intended to be run as a non-root user, and use `sudo` where | |||
| root escalation is required. | |||
|
|
|||
There was a problem hiding this comment.
Everything from this file that was not already available in install.md has been moved there.
| @@ -53,8 +52,12 @@ sudo yum module enable -y container-tools:1.0 | |||
| sudo yum module install -y container-tools:1.0 | |||
| ``` | |||
|
|
|||
| ### Installing development versions of podman | |||
|
|
|||
There was a problem hiding this comment.
New subsection for installing dev builds on Fedora/Ubuntu
| A proper description of setting up CNI networking is given in the [`cni` README](cni/README.md). | ||
| But the gist is that you need to have some basic network configurations enabled and | ||
| CNI plugins installed on your system. | ||
| ## Building from scratch |
There was a problem hiding this comment.
Followed by the section to rebuild from scratch...
| btrfs-tools \ | ||
| git \ | ||
| golang-go \ | ||
| go-md2man \ | ||
| iptables \ | ||
| libassuan-dev \ | ||
| libc6-dev \ |
There was a problem hiding this comment.
Sorted this package alphabetically
| libdevmapper-dev \ | ||
| libglib2.0-dev \ | ||
| libc6-dev \ | ||
| libgpgme11-dev \ | ||
| libgpgme-dev \ |
There was a problem hiding this comment.
Update deprecated package name
| ```bash | ||
| git clone https://github.com/opencontainers/runc.git $GOPATH/src/github.com/opencontainers/runc | ||
| cd $GOPATH/src/github.com/opencontainers/runc | ||
| make BUILDTAGS="selinux seccomp" |
There was a problem hiding this comment.
This build tag has been changed compared to the tutorial due to this comment.
|
|
||
| #### Setup CNI networking | ||
|
|
||
| A proper description of setting up CNI networking is given in the [`cni` README](cni/README.md). |
There was a problem hiding this comment.
Maintaining the link to the general description, while also providing a workable minimal setup.
|
|
||
| * A copy of the development libraries for `ostree`, either in the form of the `libostree-dev` package from the [flatpak](https://launchpad.net/~alexlarsson/+archive/ubuntu/flatpak) PPA, or built [from source](https://github.com/ostreedev/ostree) (more on that [here](https://ostree.readthedocs.io/en/latest/#building)). As of Ubuntu 18.04, `libostree-dev` is available in the main repositories, and the PPA is no longer required. |
There was a problem hiding this comment.
This whole block has been split up into the above sections (and expanded with the actual build commands, as in the tutorial).
| @@ -174,47 +264,32 @@ As with other Go projects, PODMAN must be cloned into a directory structure like | |||
| GOPATH | |||
| └── src | |||
| └── github.com | |||
| └── containers | |||
| └── libpod | |||
There was a problem hiding this comment.
Resolved a mix of tabs/spaces here
| mkdir -p $GOPATH/src/github.com/containers | ||
| cd $_ # or cd $GOPATH/src/github.com/containers | ||
| git clone https://github.com/containers/libpod # or your fork | ||
| cd libpod |
There was a problem hiding this comment.
Replaced with the build instructions from the tutorial, and added BUILDTAGS="selinux seccomp" due to the discussion in #3045. I also needed to add PREFIX= to make sure all the libraries get linked into the binary correctly (although I'd hope that this could be removed again somehow).
There was a problem hiding this comment.
Really nice start @h-vetinari thanks for taking this on. Just a few nits here and there.
docs/tutorials/podman_tutorial.md
Outdated
| make | ||
| sudo make install PREFIX=/usr | ||
| ``` | ||
| For installing or building podman, please see the [installation instructions](install.md). |
There was a problem hiding this comment.
nit Police! podman s/b "Podman" unless you're using it as a command.
install.md
Outdated
| @@ -53,8 +52,12 @@ sudo yum module enable -y container-tools:1.0 | |||
| sudo yum module install -y container-tools:1.0 | |||
| ``` | |||
|
|
|||
| ### Installing development versions of podman | |||
install.md
Outdated
|
|
||
| A proper description of setting up CNI networking is given in the [`cni` README](cni/README.md). | ||
|
|
||
| Using the CNI plugins from above, a most basic network config is achieved with: |
There was a problem hiding this comment.
suggest s/most basic/more basic/
install.md
Outdated
| ``` | ||
|
|
||
| Next, clone the source code using: | ||
| First, ensure that the go version that is found first on the $PATH (in case you built your own; see above) is sufficiently recent - |
There was a problem hiding this comment.
can you add a link to the golang line for "above"?
No problem. Do you want this for every push or just before the final merge? |
just final merge works for me, but I saw you already fixed it. Thanks! |
install.md
Outdated
| @@ -8,15 +8,14 @@ | |||
| sudo pacman -S podman | |||
| ``` | |||
|
|
|||
| If you have problems when running podman in [rootless](README.md#rootless) mode follow [these instructions](https://wiki.archlinux.org/index.php/Linux_Containers#Enable_support_to_run_unprivileged_containers_(optional)) | |||
| If you have problems when running Podman in [rootless](README.md#rootless) mode follow [these instructions](https://wiki.archlinux.org/index.php/Linux_Containers#Enable_support_to_run_unprivileged_containers_(optional)) | |||
There was a problem hiding this comment.
Maybe it's just me, but when I first read this when it's resolved to a web page, I missed the link and was looking on this page. Maybe s/these instructions/the instructions here/ and have the word "here" be the link?
| sudo cp runc /usr/bin/runc | ||
| ``` | ||
|
|
||
| #### CNI plugins |
There was a problem hiding this comment.
nice change to make these proper headings.
There was a problem hiding this comment.
Just following what was in the tutorial already. ;-)
|
@h-vetinari Please add a line like: |
|
/ok-to-test |
openshift-ci-robot
added
ok-to-test
and removed
needs-ok-to-test
h-vetinari
force-pushed
the
master
branch
2 times, most recently
from
2790180 to
5168618
Compare
Signed-off-by: h-vetinari <[email protected]>
|
Anything left for me to do here? |
|
/approve |
|
[APPROVALNOTIFIER] This PR is APPROVED This pull-request has been approved by: h-vetinari, jwhonce, mheon The full list of commands accepted by this bot can be found here. The pull request process is described here
Needs approval from an approver in each of these files:
Approvers can indicate their approval by writing |
openshift-ci-robot
added
the
approved
|
Tests are green. LGTM on my end |
|
/lgtm |
|
Thanks for merging. @rhatdan, following the install instructions for building on RHEL should give you a reproducible example for #3045, cf. your comment |
github-actions
bot
added
the
locked - please file new issue/PR
Closes #2250
As talked about at the end of that issue, @TomSweeneyRedHat and @rhatdan agreed with my suggestion to merge the installation instructions from
docs/tutorials/podman_tutorial.mdwithinstall.md, which I did here.I tried to not lose any currently existing information along the way, but rather expand it to a full set of commands necessary to build (e.g. ostree). I tested all the instructions on Ubuntu 18.04 and RHEL 7.6 (on an azure VM, without having an active subscription).
For RHEL, I ran into #3045, where the build instructions (before this PR) produced a build that would only run if
runc<1.0.0-rc7. In that issue, @rhatdan told me thatruncneeds to be built withBUILDTAGS="selinux seccomp", but that then also produces a build that is broken. Following the rabbit hole further, and also building podman withBUILDTAGS="selinux seccomp"runs into a selinux issue, which is reproducible for me (cf. this comment by @rhatdan).I documented the install instructions that allowed me to proceed as far as possible (i.e. all builds suceed, and the failure only occurs at runtime, i.e.
sudo podman build), but I presume there will be a few more kinks to iron out regarding this.I'll comment a few more things in the diff directly.