starred/act
1
0
Fork 0
mirror of https://github.com/nektos/act.git synced 2026-04-26 01:15:51 +03:00
Code Issues 289 Projects Releases 5 Packages Wiki Activity

[GH-ISSUE #5967] Docker-in-Docker not working with Colima on macOS M-series #1305

New issue
Open
opened 2026-03-01 21:50:15 +03:00 by kerem · 1 comment
kerem commented 2026-03-01 21:50:15 +03:00
Owner
Copy link

Originally created by @eirisdg on GitHub (Nov 10, 2025).
Original GitHub issue: https://github.com/nektos/act/issues/5967

Bug report info

act version:            0.2.82
GOOS:                   darwin
GOARCH:                 arm64
NumCPU:                 12
Docker host:            unix:///Users/adominguez/.colima/docker.sock
Sockets found:
        /Users/adominguez/.colima/docker.sock
Docker Engine:
        Engine version:        colima version 0.9.1
        Engine runtime:        runc
        Cgroup version:        [Your version]
        Cgroup driver:         cgroupfs
        Storage driver:        overlay2
        Registry URI:          https://index.docker.io/v1/
        OS:                    [Your Colima OS]
        OS type:               linux
        OS version:            MacOs 26.1
        OS arch:               aarch64
        OS kernel:             [Your kernel]
        OS CPU:                [Your CPU count]
        OS memory:             [Your memory]
        Security options:
                [Your security options]

Command used with act

act --workflows ".github/workflows/ci.yaml" \
    --platform arc-runners="ghcr.io/catthehacker/ubuntu:full-latest" \
    --container-daemon-socket "/Users/adominguez/.colima/docker.sock"

Describe issue

I'm running act on macOS with an M-series chip (Apple Silicon) using Colima as the Docker provider. When executing workflows that require Docker-in-Docker capabilities (actions that run docker run commands inside the workflow), the Docker socket is not accessible within the container.

Current Behavior:

  • act correctly detects the Colima Docker socket: unix:///Users/adominguez/.colima/docker.sock
  • The container starts successfully using ghcr.io/catthehacker/ubuntu:full-latest
  • However, when a GitHub Action tries to execute docker run inside the container, it fails with:
    docker: Cannot connect to the Docker daemon at unix:///var/run/docker.sock. Is the docker daemon running?

What Works:

  • Using -P arc-runners=-self-hosted works perfectly (executes directly on the host)
  • Docker commands work fine when executed directly on the macOS host through Colima

What Doesn't Work:

  • Running workflows inside the ghcr.io/catthehacker/ubuntu:full-latest container
  • The Docker socket is not being mounted/accessible inside the nested container

Root Cause: The --container-daemon-socket flag doesn't seem to properly mount the Colima socket inside the container, or there's an issue with how Colima sockets are handled compared to Docker Desktop on macOS.

Expected behavior

When using --container-daemon-socket with Colima on macOS M-series chips, the Docker socket should be mounted inside the container at /var/run/docker.sock, allowing GitHub Actions to execute Docker commands (Docker-in-Docker).

This should work similarly to how it works with Docker Desktop or when using -P arc-runners=-self-hosted.

Link to GitHub repository

No response

Workflow content

jobs:
  release:
    runs-on: arc-runners
    permissions:
      contents: write
      pull-requests: read

    steps:
      - name: Checkout code
        uses: actions/checkout@v5
        with:
          fetch-depth: 0

      - name: Set up Git
        run: |
          ls -lah /var/run/docker.sock
          docker --version
          docker run hello-world

Relevant log output

act --workflows ".github/workflows/ci.yaml" --secret-file "" --var-file "" --input-file "" --platform arc-runners="pk-registry.seidor.es/docker/catthehacker/ubuntu:full-latest" --eventpath "" --container-daemon-socket "/Users/adominguez/.colima/default/docker.sock"

Using docker host 'unix:///Users/adominguez/.colima/docker.sock', and daemon socket '/Users/adominguez/.colima/default/docker.sock'
[Auto-Version and Release/release] ⭐ Run Set up job
[Auto-Version and Release/release] 🚀  Start image=pk-registry.seidor.es/docker/catthehacker/ubuntu:full-latest
[Auto-Version and Release/release]   🐳  docker pull image=pk-registry.seidor.es/docker/catthehacker/ubuntu:full-latest platform= username= forcePull=true
[Auto-Version and Release/release] using DockerAuthConfig authentication for docker pull
[Auto-Version and Release/release]   🐳  docker create image=pk-registry.seidor.es/docker/catthehacker/ubuntu:full-latest platform= entrypoint=["tail" "-f" "/dev/null"] cmd=[] network="host"
[Auto-Version and Release/release]   🐳  docker run image=pk-registry.seidor.es/docker/catthehacker/ubuntu:full-latest platform= entrypoint=["tail" "-f" "/dev/null"] cmd=[] network="host"
[Auto-Version and Release/release]   🐳  docker exec cmd=[chown -R 1001:1001 /Users/adominguez/github/platform/platform-test-autoversioning] user=0 workdir=
[Auto-Version and Release/release]   🐳  docker exec cmd=[node --no-warnings -e console.log(process.execPath)] user= workdir=
[Auto-Version and Release/release]   ✅  Success - Set up job
[Auto-Version and Release/release]   ☁  git clone 'https://github.com/devops-actions/actionlint' # ref=v0.1.9
[Auto-Version and Release/release] ⭐ Run Pre devops-actions/actionlint@v0.1.9
[Auto-Version and Release/release]   ✅  Success - Pre devops-actions/actionlint@v0.1.9 [19.769375ms]
[Auto-Version and Release/release]   ☁  git clone 'https://github.com/mathieudutour/github-tag-action' # ref=v6.2
[Auto-Version and Release/release] ⭐ Run Main Checkout code
[Auto-Version and Release/release]   🐳  docker cp src=/Users/adominguez/github/platform/platform-test-autoversioning/. dst=/Users/adominguez/github/platform/platform-test-autoversioning
[Auto-Version and Release/release]   🐳  docker exec cmd=[chown -R 1001:1001 /Users/adominguez/github/platform/platform-test-autoversioning] user=0 workdir=
[Auto-Version and Release/release]   ✅  Success - Main Checkout code [35.18175ms]
[Auto-Version and Release/release] ⭐ Run Main Set up Git
[Auto-Version and Release/release]   🐳  docker exec cmd=[bash -e /var/run/act/workflow/1] user= workdir=
[Auto-Version and Release/release] srw-rw-rw- 1 501 dialout 0 Nov 10 10:11 /var/run/docker.sock
[Auto-Version and Release/release] Docker version 28.0.4, build b8034c0
[Auto-Version and Release/release] docker: Cannot connect to the Docker daemon at unix:///var/run/docker.sock. Is the docker daemon running?
[Auto-Version and Release/release]
[Auto-Version and Release/release] Run 'docker run --help' for more information

Additional information

No response

Originally created by @eirisdg on GitHub (Nov 10, 2025). Original GitHub issue: https://github.com/nektos/act/issues/5967 ### Bug report info ```plain text act version: 0.2.82 GOOS: darwin GOARCH: arm64 NumCPU: 12 Docker host: unix:///Users/adominguez/.colima/docker.sock Sockets found: /Users/adominguez/.colima/docker.sock Docker Engine: Engine version: colima version 0.9.1 Engine runtime: runc Cgroup version: [Your version] Cgroup driver: cgroupfs Storage driver: overlay2 Registry URI: https://index.docker.io/v1/ OS: [Your Colima OS] OS type: linux OS version: MacOs 26.1 OS arch: aarch64 OS kernel: [Your kernel] OS CPU: [Your CPU count] OS memory: [Your memory] Security options: [Your security options] ``` ### Command used with act ```sh act --workflows ".github/workflows/ci.yaml" \ --platform arc-runners="ghcr.io/catthehacker/ubuntu:full-latest" \ --container-daemon-socket "/Users/adominguez/.colima/docker.sock" ``` ### Describe issue I'm running act on macOS with an M-series chip (Apple Silicon) using Colima as the Docker provider. When executing workflows that require Docker-in-Docker capabilities (actions that run docker run commands inside the workflow), the Docker socket is not accessible within the container. **Current Behavior:** - act correctly detects the Colima Docker socket: unix:///Users/adominguez/.colima/docker.sock - The container starts successfully using ghcr.io/catthehacker/ubuntu:full-latest - However, when a GitHub Action tries to execute docker run inside the container, it fails with: `docker: Cannot connect to the Docker daemon at unix:///var/run/docker.sock. Is the docker daemon running?` **What Works:** - Using -P arc-runners=-self-hosted works perfectly (executes directly on the host) - Docker commands work fine when executed directly on the macOS host through Colima **What Doesn't Work:** - Running workflows inside the ghcr.io/catthehacker/ubuntu:full-latest container - The Docker socket is not being mounted/accessible inside the nested container **Root Cause:** The --container-daemon-socket flag doesn't seem to properly mount the Colima socket inside the container, or there's an issue with how Colima sockets are handled compared to Docker Desktop on macOS. **Expected behavior** When using --container-daemon-socket with Colima on macOS M-series chips, the Docker socket should be mounted inside the container at /var/run/docker.sock, allowing GitHub Actions to execute Docker commands (Docker-in-Docker). This should work similarly to how it works with Docker Desktop or when using -P arc-runners=-self-hosted. ### Link to GitHub repository _No response_ ### Workflow content ```yml jobs: release: runs-on: arc-runners permissions: contents: write pull-requests: read steps: - name: Checkout code uses: actions/checkout@v5 with: fetch-depth: 0 - name: Set up Git run: | ls -lah /var/run/docker.sock docker --version docker run hello-world ``` ### Relevant log output ```sh act --workflows ".github/workflows/ci.yaml" --secret-file "" --var-file "" --input-file "" --platform arc-runners="pk-registry.seidor.es/docker/catthehacker/ubuntu:full-latest" --eventpath "" --container-daemon-socket "/Users/adominguez/.colima/default/docker.sock" Using docker host 'unix:///Users/adominguez/.colima/docker.sock', and daemon socket '/Users/adominguez/.colima/default/docker.sock' [Auto-Version and Release/release] ⭐ Run Set up job [Auto-Version and Release/release] 🚀 Start image=pk-registry.seidor.es/docker/catthehacker/ubuntu:full-latest [Auto-Version and Release/release] 🐳 docker pull image=pk-registry.seidor.es/docker/catthehacker/ubuntu:full-latest platform= username= forcePull=true [Auto-Version and Release/release] using DockerAuthConfig authentication for docker pull [Auto-Version and Release/release] 🐳 docker create image=pk-registry.seidor.es/docker/catthehacker/ubuntu:full-latest platform= entrypoint=["tail" "-f" "/dev/null"] cmd=[] network="host" [Auto-Version and Release/release] 🐳 docker run image=pk-registry.seidor.es/docker/catthehacker/ubuntu:full-latest platform= entrypoint=["tail" "-f" "/dev/null"] cmd=[] network="host" [Auto-Version and Release/release] 🐳 docker exec cmd=[chown -R 1001:1001 /Users/adominguez/github/platform/platform-test-autoversioning] user=0 workdir= [Auto-Version and Release/release] 🐳 docker exec cmd=[node --no-warnings -e console.log(process.execPath)] user= workdir= [Auto-Version and Release/release] ✅ Success - Set up job [Auto-Version and Release/release] ☁ git clone 'https://github.com/devops-actions/actionlint' # ref=v0.1.9 [Auto-Version and Release/release] ⭐ Run Pre devops-actions/actionlint@v0.1.9 [Auto-Version and Release/release] ✅ Success - Pre devops-actions/actionlint@v0.1.9 [19.769375ms] [Auto-Version and Release/release] ☁ git clone 'https://github.com/mathieudutour/github-tag-action' # ref=v6.2 [Auto-Version and Release/release] ⭐ Run Main Checkout code [Auto-Version and Release/release] 🐳 docker cp src=/Users/adominguez/github/platform/platform-test-autoversioning/. dst=/Users/adominguez/github/platform/platform-test-autoversioning [Auto-Version and Release/release] 🐳 docker exec cmd=[chown -R 1001:1001 /Users/adominguez/github/platform/platform-test-autoversioning] user=0 workdir= [Auto-Version and Release/release] ✅ Success - Main Checkout code [35.18175ms] [Auto-Version and Release/release] ⭐ Run Main Set up Git [Auto-Version and Release/release] 🐳 docker exec cmd=[bash -e /var/run/act/workflow/1] user= workdir= [Auto-Version and Release/release] srw-rw-rw- 1 501 dialout 0 Nov 10 10:11 /var/run/docker.sock [Auto-Version and Release/release] Docker version 28.0.4, build b8034c0 [Auto-Version and Release/release] docker: Cannot connect to the Docker daemon at unix:///var/run/docker.sock. Is the docker daemon running? [Auto-Version and Release/release] [Auto-Version and Release/release] Run 'docker run --help' for more information ``` ### Additional information _No response_
kerem commented 2026-03-01 21:50:16 +03:00
Author
Owner
Copy link

@ChristopherHX commented on GitHub (Nov 11, 2025):

Set env DOCKER_HOST=unix:///Users/adominguez/.colima/docker.sock

Then --container-daemon-socket "/Users/adominguez/.colima/docker.sock" needs to be changed to the socket path inside the colima VM. However idk what path is needed, because I am not a colima user.

Podman Desktop has a much easier way, just enable Docker Compatibility using admin rights and act works out of box.

<!-- gh-comment-id:3519114530 --> @ChristopherHX commented on GitHub (Nov 11, 2025): Set env `DOCKER_HOST=unix:///Users/adominguez/.colima/docker.sock` Then `--container-daemon-socket "/Users/adominguez/.colima/docker.sock"` needs to be changed to the socket path inside the colima VM. However idk what path is needed, because I am not a colima user. --- Podman Desktop has a much easier way, just enable Docker Compatibility using admin rights and act works out of box.
Sign in to join this conversation.
No Branch/Tag specified
Branches Tags
master
dependabot/go_modules/github.com/go-git/go-git/v5-5.18.0
dependabot/go_modules/dependencies-08815e2262
mergify/configuration-deprecated-update
dependabot/github_actions/dependencies-a3a104477f
chore/simplify-ci-and-makefile
dependabot/go_modules/golang.org/x/crypto-0.45.0
dependabot/go_modules/github.com/go-viper/mapstructure/v2-2.4.0
panekj/ci/improve-jobs
fix-skip-non-yaml-files-in-dir
normalize-pull-rebuild-flags
fix-no-recurse-by-default
2517-poor-error-for-incomplete-action-step
2472-make-use-new-action-cache-the-new-default-for-downloading-actions
act-tart
act-lxc
act-oidc
act-dind
avoid-slash-in-actor
dependabot/go_modules/github.com/docker/docker-26.1.4incompatible
meta-keep-filetime
local-repository-action-cache
pr-merger
update-docker-deps
follow_local_action_symlink
boltdb-lock-in-handler
use-socket-path
no-pull-no-rebuild
path-issues
fix/env
feat/podman
refactor/testdata
v0.2.87
v0.2.86
v0.2.85
v0.2.84
v0.2.83
v0.2.82
v0.2.81
v0.2.80
v0.2.79
v0.2.78
v0.2.77
v0.2.76
v0.2.75
v0.2.74
v0.2.73
v0.2.72
v0.2.71
v0.2.70
v0.2.69
v0.2.68
v0.2.67
v0.2.66
v0.2.65
v0.2.64
v0.2.63
v0.2.62
v0.2.61
v0.2.60
v0.2.59
v0.2.58
v0.2.57
v0.2.56
v0.2.55
v0.2.54
v0.2.53
v0.2.52
v0.2.51
v0.2.50
v0.2.49
v0.2.48
v0.2.47
v0.2.46
v0.2.45
v0.2.44
v0.2.43
v0.2.42
v0.2.41
v0.2.40
v0.2.39
v0.2.38
v0.2.37
v0.2.36
v0.2.35
v0.2.34
v0.2.33
v0.2.32
v0.2.31
v0.2.30
v0.2.29
v0.2.28
v0.2.27
v0.2.26
v0.2.25
v0.2.24
v0.2.23
v0.2.22
v0.2.21
v0.2.20
v0.2.19
v0.2.18
v0.2.17
v0.2.16
v0.2.15
v0.2.14
v0.2.13
v0.2.12
v0.2.11
v0.2.10
v0.2.9
v0.2.8
v0.2.7
v0.2.6
v0.2.5
v0.2.4
v0.2.3
v0.2.2
v0.2.1
v0.2.0
v0.1.3
v0.1.2
v0.1.1
v0.1.0
v0.0.5
v0.0.4
v0.0.3
v0.0.2
v0.0.1
Labels
Clear labels   
area/action

   
area/cli

   
area/docs

   
area/image

   
area/runner

   
area/workflow

   
backlog

   
confirmed/not-planned

   
kind/bug

   
kind/discussion

   
kind/external

   
kind/feature-request

   
kind/question

   
meta/duplicate

   
meta/invalid

   
meta/need-more-info

   
meta/resolved

   
meta/wontfix

   
meta/workaround

   
needs-work

   
pull-request

Mirrored from GitHub Pull Request

  
review/not-planned

   
size/M

   
size/XL

   
size/XXL

   
stale

   
stale-exempt
No labels
area/action
area/cli
area/docs
area/image
area/runner
area/workflow
backlog
confirmed/not-planned
kind/bug
kind/discussion
kind/external
kind/feature-request
kind/question
meta/duplicate
meta/invalid
meta/need-more-info
meta/resolved
meta/wontfix
meta/workaround
needs-work
pull-request
review/not-planned
size/M
size/XL
size/XXL
stale
stale-exempt
Milestone
Clear milestone
No items
No milestone
Projects
Clear projects
No items
No project
Assignees
Clear assignees
No assignees
1 participant
Notifications
Due date
The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference
starred/act#1305
No description provided.