{"id":1718,"date":"2025-10-11T15:29:31","date_gmt":"2025-10-11T20:29:31","guid":{"rendered":"https:\/\/zewwy.ca\/?p=1718"},"modified":"2025-11-17T13:51:09","modified_gmt":"2025-11-17T19:51:09","slug":"docker-on-core-linux","status":"publish","type":"post","link":"https:\/\/zewwy.ca\/index.php\/2025\/10\/11\/docker-on-core-linux\/","title":{"rendered":"Docker on Core Linux"},"content":{"rendered":"

<\/span>Docker Running on Core Linux<\/span><\/h1>\n

Is it possible? … Yes? However I didn’t write down some of the pre-requisites for the Core Server (whoops, maybe one day I’ll redo it from scratch). But if you do manage to get the base binaries installed this post should be helpful for all the caveats I faced along the way…<\/p>\n

In my previous post I mentioned that Docker wouldn’t run unless it was 64bit machine, so I created a Core Linux 64 bit image and showed how to get the base OS up and running… but what about Docker itself.<\/p>\n

Now I got this “working” but I didn’t exactly write down all my steps (it took a long time to figure out). From looking at the VM’s history looks like I simply used the tc account to download and extract the base Docker binaries:<\/p>\n

\"\"<\/a><\/p>\n

now this doesn’t tell me the relative path I was on when some of the relative paths are called, but I do know it was the tc account so some safe assumptions can be made.<\/p>\n

Reviewing my AI chat and notes I took, and getting it running again after a reboot, it seem after the “install” (copy base files to path shown above image, line 51) I also added “var\/lib\/docker” and “etc\/docker” to the filetool.lst file, so they stay persisted after reboot. Strangely only \/var\/lib\/docker is populated, but I can’t see how that’s the case from the history review. I was pretty positive the script itself failed to execute… I really should start from scratch else this post will be a bit useless…. butt…. F*** it….<\/p>\n

The next issues seems to be tired to cgroups and certificates…<\/p>\n

<\/span>Fixing Cgroups Error<\/span><\/h2>\n
sudo mount -t tmpfs cgroup_root \/sys\/fs\/cgroup\/\r\nsudo mkdir \/sys\/fs\/cgroup\/devices\r\nsudo mount -t cgroup -o devices none \/sys\/fs\/cgroup\/devices<\/pre>\n
That should be it… but we need this to be persisted and auto run at boot time so we don’t have to do this every time…<\/p>\n
sudo vi \/opt\/dockerd.sh\r\ni\r\nmount -t tmpfs cgroup_root \/sys\/fs\/cgroup\/\r\nmkdir \/sys\/fs\/cgroup\/devices\r\nmount -t cgroup -o devices none \/sys\/fs\/cgroup\/devices\r\nESC\r\n:wq\r\nsudo vi \/opt\/bootlocal.sh\r\n*append with*\r\n\/opt\/dockerd.sh\r\n:wq\r\nsudo chmod +x \/opt\/dockerd.sh\r\nfiletool.sh -b<\/pre>\n
\"\"<\/a><\/p>\n
The next issue seems that docker would load, but when pulling a container to load it would just seem to fail complaining about certificates.<\/p>\n
<\/span>Fixing Certificate Error<\/span><\/h2>\n
I found the point in my notes rambling with AI when I figured it out…<\/p>\n
“NO F***KIN WAY!!!!!!! https:\/\/stackoverflow.com\/questions\/75696690\/how-to-resolve-tls-failed-to-verify-certificate-x509-certificate-signed-by-un I read this thread and read the answer by Andrei Nicolae… which said just durr copy ca certs to \/etc\/ssl\/certs I was like, I bet docker is hard coded to look there, which is why it was first suggested but all other apps on tiny core linux know to use \/usr\/local\/etc\/ssl\/certs, so yeah docker never was using the expectects paths liek I suspected from the begining cause we manualy installed it for a OS not supported. so with this I did sudo mkdir -p \/etc\/ssl\/certs sudo cp \/usr\/local\/etc\/ssl\/certs\/* \/etc\/ssl\/certs sudo pkill dockerd sudo dockerd & sudo docker pull hello-world and guess what it finally freaking worked”<\/p>\n
But I realized instead of copying them I could just make a symlink<\/p>\n
sudo mkdir \/etc\/ssl\/\r\nln -s \/usr\/local\/etc\/ssl\/certs\/ \/etc\/ssl\/<\/pre>\n
I simply placed these lines in \/opt\/dockerd.sh file I created earlier, rebooted and verified that \/etc\/ssl\/certs was populated with certs and it was.<\/p>\n
And finally…<\/p>\n
<\/span>Running Dockerd<\/span><\/h2>\n
sudo DOCKER_RAMDISK=true dockerd &<\/pre>\n
\"\"<\/a><\/p>\n
<\/span>Pulling Image<\/span><\/h2>\n
sudo docker pull hello-world<\/pre>\n
\"\"<\/a><\/p>\n
<\/span>Running Image<\/span><\/h2>\n
sudo docker run --rm hello-world<\/pre>\n
\"\"<\/a><\/p>\n
Yay we actually ran a container from Core Linux.. Mind Blown… I swear I had it all running at only 90MB of RAM, but checking now show 116MB Bah…<\/p>\n
\"\"<\/a><\/p>\n
To get Docker to run at boot my final \/opt\/dockerd.sh looked like this:<\/p>\n
\"\"<\/p>\n
*Update* outisde of hello world I wasn’t able to spin up any other real containers due to other technical limitations, this was a huge waste of time.<\/p>\n","protected":false},"excerpt":{"rendered":"
Docker Running on Core Linux Is it possible? … Yes? However I didn’t write down some of the pre-requisites for the Core Server (whoops, maybe one day I’ll redo it from scratch). But if you do manage to get the base binaries installed this post should be helpful for all the caveats I faced along … <\/p>\n
Continue reading “Docker on Core Linux”<\/span><\/a><\/p>\n","protected":false},"author":3,"featured_media":0,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"sfsi_plus_gutenberg_text_before_share":"","sfsi_plus_gutenberg_show_text_before_share":"","sfsi_plus_gutenberg_icon_type":"","sfsi_plus_gutenberg_icon_alignemt":"","sfsi_plus_gutenburg_max_per_row":"","footnotes":""},"categories":[8],"tags":[24,280],"class_list":["post-1718","post","type-post","status-publish","format-standard","hentry","category-server-administration","tag-core","tag-docker"],"_links":{"self":[{"href":"https:\/\/zewwy.ca\/index.php\/wp-json\/wp\/v2\/posts\/1718","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/zewwy.ca\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/zewwy.ca\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/zewwy.ca\/index.php\/wp-json\/wp\/v2\/users\/3"}],"replies":[{"embeddable":true,"href":"https:\/\/zewwy.ca\/index.php\/wp-json\/wp\/v2\/comments?post=1718"}],"version-history":[{"count":2,"href":"https:\/\/zewwy.ca\/index.php\/wp-json\/wp\/v2\/posts\/1718\/revisions"}],"predecessor-version":[{"id":1729,"href":"https:\/\/zewwy.ca\/index.php\/wp-json\/wp\/v2\/posts\/1718\/revisions\/1729"}],"wp:attachment":[{"href":"https:\/\/zewwy.ca\/index.php\/wp-json\/wp\/v2\/media?parent=1718"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/zewwy.ca\/index.php\/wp-json\/wp\/v2\/categories?post=1718"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/zewwy.ca\/index.php\/wp-json\/wp\/v2\/tags?post=1718"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}