Trying to use kitchen-docker. It works great when passing privileged: true
to the driver, but some hosted CI systems won't let you do that for security reasons. After trying a million different incantations, I got very close with:
image: ubuntu:18.04
run_options: --tmpfs=/run --tmpfs=/run/lock -v /sys/fs/cgroup/systemd:/sys/fs/cgroup/systemd --stop-signal=SIGRTMIN+3
run_command: /sbin/init
note: kitchen does some extra things like including -e container=docker