From 1f4ef7c7b9ae8717f99e519fccd805d802bfdde6 Mon Sep 17 00:00:00 2001
From: Michal <michal@itaz.eu>
Date: Mon, 9 Mar 2026 08:42:52 +0000
Subject: [PATCH] ci: add docker socket diagnostics + restore sudo -E

Add debug step to understand docker socket state in runner container.
Restore sudo -E for docker/skopeo commands and remove container block
(runner already mounts podman socket by default).

Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
---
 .gitea/workflows/ci.yml | 37 ++++++++++++++++++++++++-------------
 1 file changed, 24 insertions(+), 13 deletions(-)

diff --git a/.gitea/workflows/ci.yml b/.gitea/workflows/ci.yml
index c5780fc..d304a97 100644
--- a/.gitea/workflows/ci.yml
+++ b/.gitea/workflows/ci.yml
@@ -144,10 +144,6 @@ jobs:
     runs-on: ubuntu-latest
     needs: [build]
     if: github.ref == 'refs/heads/main' && github.event_name == 'push'
-    container:
-      image: docker.gitea.com/runner-images:ubuntu-latest
-      volumes:
-        - /var/run/docker.sock:/var/run/docker.sock
     env:
       REGISTRY: ${{ env.GITEA_REGISTRY }}
       OWNER: ${{ env.GITEA_OWNER }}
@@ -155,37 +151,52 @@ jobs:
     steps:
       - uses: actions/checkout@v4
 
+      - name: Debug docker socket
+        run: |
+          echo "=== User ==="
+          id
+          echo "=== Docker socket ==="
+          ls -la /var/run/docker.sock 2>&1 || echo "not found"
+          echo "=== Tools ==="
+          which docker podman buildah 2>&1 || true
+          echo "=== Docker info (direct) ==="
+          docker info 2>&1 | head -5 || true
+          echo "=== Docker info (sudo) ==="
+          sudo -E docker info 2>&1 | head -5 || true
+          echo "=== Socket stat ==="
+          stat /var/run/docker.sock 2>&1 || echo "stat failed"
+
       - name: Install skopeo
-        run: apt-get update && apt-get install -y skopeo
+        run: sudo apt-get update && sudo apt-get install -y skopeo
 
       - name: Build & push mcpd
         run: |
-          docker build -t mcpd:latest -f deploy/Dockerfile.mcpd .
-          skopeo copy --dest-tls-verify=false \
+          sudo -E docker build -t mcpd:latest -f deploy/Dockerfile.mcpd .
+          sudo -E skopeo copy --dest-tls-verify=false \
             --dest-creds "${{ env.OWNER }}:${{ secrets.PACKAGES_TOKEN }}" \
             docker-daemon:mcpd:latest \
             docker://${{ env.REGISTRY }}/${{ env.OWNER }}/mcpd:latest
 
       - name: Build & push node-runner
         run: |
-          docker build -t node-runner:latest -f deploy/Dockerfile.node-runner .
-          skopeo copy --dest-tls-verify=false \
+          sudo -E docker build -t node-runner:latest -f deploy/Dockerfile.node-runner .
+          sudo -E skopeo copy --dest-tls-verify=false \
             --dest-creds "${{ env.OWNER }}:${{ secrets.PACKAGES_TOKEN }}" \
             docker-daemon:node-runner:latest \
             docker://${{ env.REGISTRY }}/${{ env.OWNER }}/mcpctl-node-runner:latest
 
       - name: Build & push python-runner
         run: |
-          docker build -t python-runner:latest -f deploy/Dockerfile.python-runner .
-          skopeo copy --dest-tls-verify=false \
+          sudo -E docker build -t python-runner:latest -f deploy/Dockerfile.python-runner .
+          sudo -E skopeo copy --dest-tls-verify=false \
             --dest-creds "${{ env.OWNER }}:${{ secrets.PACKAGES_TOKEN }}" \
             docker-daemon:python-runner:latest \
             docker://${{ env.REGISTRY }}/${{ env.OWNER }}/mcpctl-python-runner:latest
 
       - name: Build & push docmost-mcp
         run: |
-          docker build -t docmost-mcp:latest -f deploy/Dockerfile.docmost-mcp .
-          skopeo copy --dest-tls-verify=false \
+          sudo -E docker build -t docmost-mcp:latest -f deploy/Dockerfile.docmost-mcp .
+          sudo -E skopeo copy --dest-tls-verify=false \
             --dest-creds "${{ env.OWNER }}:${{ secrets.PACKAGES_TOKEN }}" \
             docker-daemon:docmost-mcp:latest \
             docker://${{ env.REGISTRY }}/${{ env.OWNER }}/docmost-mcp:latest