History

June e83b6ff318 docker(role): document gVisor issue with user-def. br. and provide help Document issue with containers on user-defined bridges and using the gVisor runsc runtime. Also provide a helper resolv.conf as a workaround.		2026-06-23 21:32:55 +02:00
..
defaults	docker(role): provide option to set up gVisor (runsc runtime)	2026-06-23 21:32:55 +02:00
files	docker(role): document gVisor issue with user-def. br. and provide help	2026-06-23 21:32:55 +02:00
handlers	docker(role): provide option to set up gVisor (runsc runtime)	2026-06-23 21:32:55 +02:00
meta	docker(role): provide option to set up gVisor (runsc runtime)	2026-06-23 21:32:55 +02:00
tasks	docker(role): document gVisor issue with user-def. br. and provide help	2026-06-23 21:32:55 +02:00
templates	docker(role): provide option to set up gVisor (runsc runtime)	2026-06-23 21:32:55 +02:00
README.md	docker(role): document gVisor issue with user-def. br. and provide help	2026-06-23 21:32:55 +02:00

README.md

Role `docker`

Ensures the Docker Engine and other related packages are installed from the Docker repos. For detailed list of packages see: tasks/main/02_docker_install.yaml.

Supported Distributions

The following distributions are supported:

Debian 11
Debian 12

Required Arguments

None.

Optional Arguments

docker__gvisor_setup: Whether or not to set up gVisor (runsc runtime).

Note: gVisor doesn't work with the embedded DNS server Docker forces for user-defined bridges (see the relevant GitHub issue). A workaround would be to bind mount a resolv.conf not relying on localhost DNS (note however that this still doesn't provide local container name resolution). When enabling this option such a helper resolv.conf pointing to Quad9 gets deployed to /etc/gvisor-helper-resolv.conf for bind-mounting. See the file for usage instructions.

Defaults to false.

Links & Resources

https://docs.docker.com/engine/install/debian/