Akihiro Suda

icon indicating an email [email protected]

icon company NTT icon location Tokyo, Japan icon location A maintainer of containerd, Lima, Moby(dockerd), BuildKit, runc, etc.

Results 1883 comments of Akihiro Suda

seccomp listener: define the max size of Container Process State messages

cc @rata @alban @cyphar PTAL

seccomp listener: define the max size of Container Process State messages

Defining hard limit is not needed, but implementations have to raise an error when the message exceeds some implementation-specific threshold value anyway (to avoid malloccing too much), so it might...

libct/seccomp: enable seccomp binary tree optimization

> This should speed up doing syscalls from containers that were created > from OCI spec containing lots of seccomp rules. Any benchmark?

libct/seccomp: enable seccomp binary tree optimization

@cyphar LGTY?

ci: bump shfmt to 3.5.1, simplify CI setup

Needs rebase

Proposal to add Encrypted Layer Mediatype

What's current status of this?

Add eStargz specification to OCI v1 (support lazy pulling)

Needs rebase to make CI green

FYI: Archiving Rkt in CNCF

I think the README should be updated to reflect the current project status

Support fetching PSI stats for cgroupv2 containers

@kolyshkin Maybe we can address those issues after merging?

Hook: add type attribute to spec

> Through `annotations`, users can pass more metadata to runtime for handling hooks. The state object already has annotations. https://github.com/opencontainers/runtime-spec/blob/main/runtime.md#state Is this enough for your usecase?