Kevin Veen-Birkenbach bb4391d083 Fix Docker-in-Docker cgroup isolation issues by adding --cgroupns=host ...

The GitHub Actions DinD environment failed to start inner containers due to
cgroup v2 namespace isolation problems ('cannot enter cgroupv2 ... invalid state').
To resolve this, all docker run calls inside the CI workflow were updated
to include --cgroupns=host, ensuring the inner dockerd inherits the host
cgroup namespace instead of being sandboxed.

This aligns the CI runtime with the expectations of runc and prevents OCI-level
container creation failures.

Details and troubleshooting steps documented here:
https://chatgpt.com/share/6930e285-9604-800f-aad8-7a81c928548c

2025-12-04 02:41:20 +01:00

6.6 KiB

Raw Blame History

View Raw