Rodrigo Campos
Rodrigo Campos
@tonistiigi thanks! It seems the cc_platform.mk was causing the build issues! I'm testing in: https://github.com/moby/moby/pull/48161 with this fix in runc: https://github.com/rata/runc/commits/rata/moby-fixes
Same here, if I run things locally (changing the setting so the container uses the iptables uses the nft backend, as that is what my host is using) those tests...
@AkihiroSuda In my tests, apparmor didn't make the difference. I booted the local host _without_ `apparmor=0` in the cmdline, the tests that fail in CI, locally pass just fine. I've...
How to repro this?
Yeap... I'm not sure why would we want to support a runc binary that you can't read? Also, as @kolyshkin said, you can download your own binary for rootless too....
Had another look, left [this comment](https://github.com/opencontainers/runc/pull/4661#discussion_r2021250686). The diff says it is outdated, that is why I'm highlighting it here, but it seems to be still relevant.
@lifubang why do you want to mount on top of that? Do you want to hide some stats? Or fake them? Is namespaces what is exposed there or the whole...
/assign @saad-ali
@lifubang I like the idea of the PR, but I'd prefer to merge this just after the 1.2.0 final release. I'd like to focus on bug-fixing now, to do the...
I'll focus on this after the 1.2 release. Thanks for working on this! :)