Skip to content

Commit

Permalink
Merge pull request os-autoinst#20905 from ricardobranco777/docker_rule
Browse files Browse the repository at this point in the history 
containers: Workaround for podman & docker
  • Loading branch information
@ricardobranco777
ricardobranco777 authored Jan 7, 2025
2 parents 5dcf36c + 503e20a commit 15b896a
Showing 1 changed file with 11 additions and 2 deletions.
13 changes: 11 additions & 2 deletions tests/containers/image.pm
View file
Original file line number Diff line number Diff line change
@@ -1,6 +1,6 @@
# SUSE's openQA tests
#
# Copyright 2020-2024 SUSE LLC
# Copyright 2020-2025 SUSE LLC
# SPDX-License-Identifier: FSFAP

# Package: podman & docker
Expand All @@ -17,7 +17,7 @@ use containers::container_images;
use containers::urls qw(get_image_uri);
use db_utils qw(push_image_data_to_db);
use containers::utils qw(reset_container_network_if_needed);
use version_utils qw(check_version get_os_release is_sle);
use version_utils qw(check_version get_os_release is_sle is_tumbleweed);

sub scc_apply_docker_image_credentials {
my $regcode = get_var 'SCC_DOCKER_IMAGE';
Expand Down Expand Up @@ -78,6 +78,15 @@ sub run {

scc_apply_docker_image_credentials() if (get_var('SCC_DOCKER_IMAGE') && $runtime eq 'docker');

# Running podman as root with docker installed may be problematic as netavark uses nftables
# while docker still uses iptables.
# Use workaround suggested in:
# - https://fedoraproject.org/wiki/Changes/NetavarkNftablesDefault#Known_Issue_with_docker
# - https://docs.docker.com/engine/network/packet-filtering-firewalls/#docker-on-a-router
if (is_tumbleweed && $runtime eq "podman" && get_var("CONTAINER_RUNTIMES") =~ /docker/) {
assert_script_run "iptables -I DOCKER-USER -j ACCEPT";
}

# We may test either one specific image VERSION or comma-separated CONTAINER_IMAGE_VERSIONS
my $versions = get_var('CONTAINER_IMAGE_VERSIONS', get_required_var('VERSION'));
for my $version (split(/,/, $versions)) {
Expand Down

0 comments on commit 15b896a

Please sign in to comment.