{"id":13562839,"url":"https://github.com/mgoltzsche/podman-static","last_synced_at":"2025-05-16T06:04:15.979Z","repository":{"id":37622743,"uuid":"169337581","full_name":"mgoltzsche/podman-static","owner":"mgoltzsche","description":"static podman binaries and container image","archived":false,"fork":false,"pushed_at":"2025-05-14T21:58:35.000Z","size":218,"stargazers_count":306,"open_issues_count":5,"forks_count":68,"subscribers_count":7,"default_branch":"master","last_synced_at":"2025-05-16T06:03:18.188Z","etag":null,"topics":["buildah","container-image","containerized","crun","docker","fuse-overlayfs","netavark","passt","podman","rootless-container","rootless-containers","rootless-docker","rootless-podman","runc","user-space"],"latest_commit_sha":null,"homepage":"","language":"Dockerfile","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"apache-2.0","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/mgoltzsche.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":"LICENSE","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null,"zenodo":null}},"created_at":"2019-02-06T01:01:41.000Z","updated_at":"2025-05-14T21:57:18.000Z","dependencies_parsed_at":"2024-02-03T02:20:40.501Z","dependency_job_id":"54d9b26a-f576-424f-a53d-b1748ffa88cc","html_url":"https://github.com/mgoltzsche/podman-static","commit_stats":{"total_commits":157,"total_committers":11,"mean_commits":"14.272727272727273","dds":0.1719745222929936,"last_synced_commit":"9b58fd7cea36ba93bea701a0e342869cb8019304"},"previous_names":[],"tags_count":79,"template":false,"template_full_name":null,"repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/mgoltzsche%2Fpodman-static","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/mgoltzsche%2Fpodman-static/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/mgoltzsche%2Fpodman-static/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/mgoltzsche%2Fpodman-static/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/mgoltzsche","download_url":"https://codeload.github.com/mgoltzsche/podman-static/tar.gz/refs/heads/master","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":254478186,"owners_count":22077675,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["buildah","container-image","containerized","crun","docker","fuse-overlayfs","netavark","passt","podman","rootless-container","rootless-containers","rootless-docker","rootless-podman","runc","user-space"],"created_at":"2024-08-01T13:01:12.716Z","updated_at":"2025-05-16T06:04:15.948Z","avatar_url":"https://github.com/mgoltzsche.png","language":"Dockerfile","funding_links":[],"categories":["Dockerfile"],"sub_categories":[],"readme":"# podman binaries and container images ![GitHub workflow badge](https://github.com/mgoltzsche/podman-static/workflows/Release/badge.svg)\n\nThis project provides alpine-based podman container images and statically linked (rootless) podman binaries for linux/amd64 and linux/arm64/v8 machines along with its dependencies _(without systemd support)_:\n* [podman](https://github.com/containers/podman)\n* [crun](https://github.com/containers/crun)\n* [runc](https://github.com/opencontainers/runc/)\n* [conmon](https://github.com/containers/conmon)\n* [fuse-overlayfs](https://github.com/containers/fuse-overlayfs) and [libfuse](https://github.com/libfuse/libfuse)\n* [Netavark](https://github.com/containers/netavark): container network stack and default in podman 5 or later\n  * [passt/pasta](https://passt.top/passt/)\n  * [aardvark-dns](https://github.com/containers/aardvark-dns)\n* [catatonit](https://github.com/openSUSE/catatonit)\n\nCNI networking has been replaced with Netavark since Podman version 5.\n\n## Container image\n\nThe following image tags are supported:\n\n| Tag | Description |\n| --- | ----------- |\n| `latest`, `\u003cVERSION\u003e` | podman with all dependencies: runc, crun, conmon, fuse-overlayfs, netavark, pasta, aardvark-dns, catatonit. |\n| `minimal`, `\u003cVERSION\u003e-minimal` | podman, crun, conmon, fuse-overlayfs and netavark binaries, configured to use the host's existing namespaces (low isolation level). |\n| `remote`, `\u003cVERSION\u003e-remote` | the podman remote binary. |\n\nBy default containers are run as user `root`.\nHowever the `podman` (uid/gid 1000) user can be used instead for which also a subuid/gid mapping is configured with the image (as described within the binary installation section below).  \n\nPlease note that, when running non-remote podman within a docker container, the docker container needs to be `--privileged`.\n\n### Container usage example\n\nRun podman in docker:\n```sh\ndocker run --privileged -u podman:podman mgoltzsche/podman:minimal docker run alpine:latest echo hello from nested container\n```\n_Within the container `docker` is linked to `podman` to support applications that use the `docker` command._\n\n## Binary installation on a host\n\n_In case you're using an arm64 machine (e.g. a Raspberry Pi), you need to substitute \"amd64\" with \"arm64\" within the commands below to make the installation work for you._  \n\nDownload the statically linked binaries of podman and its dependencies:\n```sh\ncurl -fsSL -o podman-linux-amd64.tar.gz https://github.com/mgoltzsche/podman-static/releases/latest/download/podman-linux-amd64.tar.gz\n```\n\nVerify the archive's signature (optional):\n```sh\ncurl -fsSL -o podman-linux-amd64.tar.gz.asc https://github.com/mgoltzsche/podman-static/releases/latest/download/podman-linux-amd64.tar.gz.asc\ngpg --keyserver hkps://keyserver.ubuntu.com --recv-keys 0CCF102C4F95D89E583FF1D4F8B5AF50344BB503\ngpg --batch --verify podman-linux-amd64.tar.gz.asc podman-linux-amd64.tar.gz\n```\n_This may fail every now and then due to desync/unavailable key servers. In that case please retry._  \n\nDownload a specific version:\n```sh\nVERSION=\u003cVERSION\u003e\ncurl -fsSL -o podman-linux-amd64.tar.gz https://github.com/mgoltzsche/podman-static/releases/download/$VERSION/podman-linux-amd64.tar.gz\n```\n\nInstall the binaries and configuration on your host after you've inspected the archive:\n```sh\ntar -xzf podman-linux-amd64.tar.gz\nsudo cp -r podman-linux-amd64/usr podman-linux-amd64/etc /\n```\n\n_If you have docker installed on the same host it might be broken until you remove the newly installed `/usr/local/bin/runc` binary since older docker versions are not compatible with the latest runc version provided here while podman is also compatible with the older runc version that comes e.g. with docker 1.19 on Ubuntu._\n\nTo install podman on a host without having any root privileges, you need to copy the binaries and configuration into your home directory and adjust the binary paths within the configuration correspondingly.\nFor more information see [podman's rootless installation instructions](https://github.com/containers/podman/blob/main/docs/tutorials/rootless_tutorial.md).\n\n### Host configuration\n\n#### Additional binaries\n\nThe following binaries should be installed on your host:\n* `iptables`\n* `nsenter`\n* `uidmap` (for rootless mode)\n\n[nftables](https://netfilter.org/projects/nftables/) (with or without optional iptables-nft wrapper) to be included in the future [WIP](https://github.com/containers/netavark/pull/883).  \n\n#### UID/GID mapping\n\nIn order to run rootless containers that use multiple uids/gids you may want to set up a uid/gid mapping for your user on your host:\n```sh\nsudo sh -c \"echo $(id -un):100000:200000 \u003e\u003e /etc/subuid\"\nsudo sh -c \"echo $(id -gn):100000:200000 \u003e\u003e /etc/subgid\"\n```\n_Please make sure you don't add the mapping multiple times._  \n\n#### apparmor profile\n\nOn an apparmor-enabled host such as Ubuntu \u003e=23.10, podman may fail with `reexec: Permission denied` the first time it is run.\nIn that case you have to change your podman apparmor profile at `/etc/apparmor.d/podman` so that it also applies to `/usr/local/bin/podman` as follows (also see [here](https://github.com/containers/podman/issues/24642#issuecomment-2582629496)):\n```sh\nsudo sed -Ei 's!^profile podman /usr/bin/podman !profile podman /usr/{bin,local/bin}/podman !' /etc/apparmor.d/podman\n```\n\n#### docker link\n\nTo support applications that rely on the `docker` command, a quick option is to link `podman` as follows:\n```sh\nsudo ln -s /usr/local/bin/podman /usr/local/bin/docker\n```\n\nBefore updating binaries on your host please terminate all corresponding processes.  \n\n#### Restart containers on boot\n\nTo restart containers with restart-policy=always on boot, enable the `podman-restart` systemd service:\n```sh\nsystemctl enable podman-restart\n```\n\n### Binary usage example\n\n```sh\npodman run alpine:latest echo hello from podman\n```\n\n## Default persistent storage location\n\nThe default storage location depends on the user:\n* For `root` storage is located at `/var/lib/containers/storage`.\n* For unprivileged users storage is located at `~/.local/share/containers/storage`.\n\n## Local build \u0026 test\n\n```sh\nmake images test\n```\n\n## Binary uninstallation\n\nBefore uninstalling the binaries, you may remove containers, pods, images, volumes, and so on to free up space:\n\n```sh\nsudo podman system reset\n```\n\nNext, remove all the copied binaries from the following folders:\n\n```sh\nsudo rm -rf /etc/containers/*\nsudo rm -rf /usr/local/bin/{crun,fuse-overlayfs,fusermount3,pasta,pasta.avx2,podman,runc}\nsudo rm -rf /usr/local/{lib,libexec}/podman\nsudo rm -rf /usr/local/lib/systemd/{system,user}/podman*\nsudo rm /usr/local/lib/systemd/{system,user}-generators/podman-*-generator\n```\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fmgoltzsche%2Fpodman-static","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fmgoltzsche%2Fpodman-static","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fmgoltzsche%2Fpodman-static/lists"}