cstor-dist

This project exposes containers-storage (as used by podman) via the standard OCI distribution spec (also known as a container registry).

The registry is read-only and provides a way to serve local container images over HTTP.

Use Cases

Enable local virtual machines to fetch content directly from the host's container storage
Particularly useful with bootc for local development workflows (see below)

Running the Service

While this project can run outside of a container, it currently requires a patched version of skopeo. Therefore, running it as a container is recommended.

A pre-built container image is available for x86_64; see below.

Requirements

Storage Configuration

You must bind mount your host's container storage into /var/lib/containers/storage in the container:

For rootless podman: ~/.local/share/containers/storage
For rootful podman: /var/lib/containers/storage

Privileges

The container requires --privileged mode for two reasons:

Write access to storage for locking (this requirement will be removed in a future update)
SELinux labeling support

Network Configuration

The service listens on port 8000 by default. You can map this to any desired host port.

Example Usage

Start the registry proxy:

podman run --name regproxy --privileged --rm -d \
    -p 8000:8000 \
    -v ~/.local/share/containers/storage/:/var/lib/containers/storage \
    ghcr.io/cgwalters/cstor-dist:latest

Using the Registry

Important: By default, the server does not use TLS. When using tools like skopeo, you must specify --src-tls-verify=false.

Example of copying an image:

skopeo copy --src-tls-verify=false \
    docker://127.0.0.1:8000/quay.io/fedora/fedora:latest \
    oci:/tmp/foo.oci

Building from Source

Clone the repository:

git clone https://github.com/cgwalters/cstor-dist.git
cd cstor-dist

Build using podman or docker:

podman build -t cstor-dist .

Integration with bootc

Overview

While containers are typically run on the same machine where they're built when using podman/docker, bootc is commonly used in a distributed setup where you build on one machine and test on another.

This project works particularly well with Anaconda on Linux host systems. You'll just need to point your ostreecontainer at the cstor-dist endpoint.

Efficient Development Workflow

This enables a quicker iteration workflow:

Build containers in your regular unprivileged podman storage
Use bootc upgrade to efficiently deploy changes without data transfer overhead

Name		Name	Last commit message	Last commit date
Latest commit History 9 Commits
.github/workflows		.github/workflows
src		src
.dockerignore		.dockerignore
.gitignore		.gitignore
Cargo.lock		Cargo.lock
Cargo.toml		Cargo.toml
Dockerfile		Dockerfile
LICENSE		LICENSE
Makefile		Makefile
README.md		README.md
build-dependencies.txt		build-dependencies.txt
dependencies.txt		dependencies.txt

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Repository files navigation

cstor-dist

Use Cases

Running the Service

Requirements

Storage Configuration

Privileges

Network Configuration

Example Usage

Using the Registry

Building from Source

Integration with bootc

Overview

Efficient Development Workflow

About

Uh oh!

Releases 1

Packages

Uh oh!

Uh oh!

Languages

License

cgwalters/cstor-dist

Folders and files

Latest commit

History

Repository files navigation

cstor-dist

Use Cases

Running the Service

Requirements

Storage Configuration

Privileges

Network Configuration

Example Usage

Using the Registry

Building from Source

Integration with bootc

Overview

Efficient Development Workflow

About

Resources

License

Uh oh!

Stars

Watchers

Forks

Releases 1

Packages 0

Uh oh!

Uh oh!

Languages

Packages