Aleksa Sarai
Aleksa Sarai
This is something that will need to be implemented in the higher-level tools (containerd, docker, podman, ...) as part of their storage drivers. There's not really much for runc to...
@rata This would (in theory) be useful for Kubernetes because Kubernetes knows what volumes are used by what containers, and having ID mapped mounts would allow Kubernetes to run containers...
You need to add a `Signed-off-by:` line to your commit(s) which indicates that you attest the [Developer Certificate of Origin](https://developercertificate.org/) a statement about your contributions that you *must read* before...
Yeah, this would be post-1.0. As an aside, it looks like there's some (worrying) move to namespace these as well as a few other things in [a pretty insane way](https://lwn.net/SubscriberLink/723561/7c66c9c1ce021cf5/).
I'd prefer (since `noprefix` can be set on any cgroup controller) that we fix this in a much more complete manner. In particular, the `writeFile` calls in `libcontainer/cgroup/fs` should be...
The parent hierarchy logic should already be done within the rest of `libcontainer/cgroup/fs/cpu*` (though I admit it's been years since I've really touched this code, so I might be mixing...
Yeah some (non-normative) text on this wouldn't be a bad idea, to answer your questions in short: 1. I think most implementations don't follow symlinks (either existing ones from previous...
No I think it's entirely absent. The closest you get is that there's an implication in https://github.com/opencontainers/image-spec/blob/master/layer.md#populate-initial-filesystem that you scope all paths to the root of the container filesystem, but...
I'd be happy to hammer out a document with you to better explain how the tar archives are meant to be handled. > Charliecloud stores images as unpacked directories So...
Thanks for continually pinging me, I really am quite awful at multi-tasking it seems! I sat down and split out the sections and wrote what I feel is a more...