CCCHH/ansible-infra
CCCHH/ansible-infra
2
2
Fork 1
Code Issues 10 Pull requests 10 Wiki Activity Actions
ansible-infra/roles/docker
History
June fdd9eadad1
Some checks failed
/ Ansible Lint (push) Successful in 3m53s
Details
/ build (pull_request) Failing after 2m40s
Details
/ Ansible Lint (pull_request) Successful in 2m41s
Details
docker(role): document gVisor issue with user-def. br. and provide help 
Document issue with containers on user-defined bridges and using the
gVisor runsc runtime. Also provide a helper resolv.conf as a workaround.
2026-06-23 21:00:33 +02:00
..
defaults docker(role): provide option to set up gVisor (runsc runtime) 2026-06-23 21:00:33 +02:00
files docker(role): document gVisor issue with user-def. br. and provide help 2026-06-23 21:00:33 +02:00
handlers docker(role): provide option to set up gVisor (runsc runtime) 2026-06-23 21:00:33 +02:00
meta docker(role): provide option to set up gVisor (runsc runtime) 2026-06-23 21:00:33 +02:00
tasks docker(role): document gVisor issue with user-def. br. and provide help 2026-06-23 21:00:33 +02:00
templates docker(role): provide option to set up gVisor (runsc runtime) 2026-06-23 21:00:33 +02:00
README.md docker(role): document gVisor issue with user-def. br. and provide help 2026-06-23 21:00:33 +02:00

README.md

Role docker

Ensures the Docker Engine and other related packages are installed from the Docker repos. For detailed list of packages see: tasks/main/02_docker_install.yaml.

Supported Distributions

The following distributions are supported:

  • Debian 11
  • Debian 12

Required Arguments

None.

Optional Arguments

  • docker__gvisor_setup: Whether or not to set up gVisor (runsc runtime).

    Note: gVisor doesn't work with the embedded DNS server Docker forces for user-defined bridges (see the relevant GitHub issue). A workaround would be to bind mount a resolv.conf not relying on localhost DNS (note however that this still doesn't provide local container name resolution). When enabling this option such a helper resolv.conf pointing to Quad9 gets deployed to /etc/gvisor-helper-resolv.conf for bind-mounting. See the file for usage instructions.

    Defaults to false.

Links & Resources