rootlesskit issues

using rootlesskit with preconfigured network namespace

4

I'd like to achieve the following setup for users who start docker rootless: docker uses a network config that is statically configured by root and cannot be changed by the...

chri2

question

mountSysfs needs to mount /sys/fs/selinux ?

4

https://github.com/rootless-containers/rootlesskit/blob/cde143e20a310dcca921caf8abe9bfb5de2a093d/pkg/child/child.go#L78-L95 According to https://github.com/podenv/silverkube/blob/eb3fac03bdbcc7a2e9a25c255a8146287269a2df/silverkube.py#L132 , it seems the function needs to mount `/sys/fs/selinux` as well as `/sys/fs/cgroup` ? cc @TristanCacqueray

AkihiroSuda

bug

[port-driver=builtin] intermittent error `dial unix /tmp/rootlesskit321516702/.bp.sock: connect: no such file or directory`

1

```console $ ntimes -n 100 rootlesskit --net=slirp4netns --port-driver=builtin --disable-host-loopback --copy-up=/etc true [rootlesskit:parent] error: dial unix /tmp/rootlesskit321516702/.bp.sock: connect: no such file or directory [rootlesskit:parent] error: write unix @->/tmp/rootlesskit633900245/.bp.sock: write: broken pipe...

AkihiroSuda

bug

Add reverse port forwarder API

Reverse port forwarder would be useful for exposing 127.0.0.1 ports on the parent to the child

AkihiroSuda

enhancement

Rename "--copy-up" to more descriptive and correct name

"--copy-up" is kinda misnomer, should be something like "--make-writable"

AkihiroSuda

help wanted

Unable to run buildkit. Missing binary?

2

Hi! Since the advent of Docker 20.10, I got exited to try out rootless for the first time. I'm quite familiar with Docker, but rootless is new territory for me....

lindhe

question

Pdeathsig

> The usage of `Pdeathsig` in #66 isn't quite right. It will guarantee that the child dies, but it won't ensure that the parent doesn't accidentally kill the child. See...

AkihiroSuda

bug

help wanted

Route traffic into rootlesskit netns

7

I'm using u7s to mock up a bare-metal cluster deployment and it would be nice to be able to easily enter an environment where I'm able to route traffic to...

maybe-sybr

enhancement

remove dependency on /sbin/ip binary

5

AkihiroSuda

enhancement

help wanted

priority/low

lxc-user-nic should support DHCP Renew

``` panic: expected to retain 10.0.3.206, got 10.0.3.207 goroutine 6 [running]: github.com/rootless-containers/rootlesskit/pkg/network/lxcusernic.dhcpRenewRoutine(0xc000190fc0, 0xc000029080, 0x4, 0xc000029a2c, 0x4, 0x4, 0x34630b8a000) /home/suda/gopath/src/github.com/rootless-containers/rootlesskit/pkg/network/lxcusernic/lxcusernic.go:147 +0x2d3 created by github.com/rootless-containers/rootlesskit/pkg/network/lxcusernic.(*childDriver).ConfigureNetworkChild /home/suda/gopath/src/github.com/rootless-containers/rootlesskit/pkg/network/lxcusernic/lxcusernic.go:129 +0x82a [rootlesskit:parent] error: child exited: exit...

AkihiroSuda

bug

experimental

priority/high

rootlesskit
rootlesskit copied to clipboard

Metadata

using rootlesskit with preconfigured network namespace

mountSysfs needs to mount /sys/fs/selinux ?

[port-driver=builtin] intermittent error `dial unix /tmp/rootlesskit321516702/.bp.sock: connect: no such file or directory`

Add reverse port forwarder API

Rename "--copy-up" to more descriptive and correct name

Unable to run buildkit. Missing binary?

Pdeathsig

Route traffic into rootlesskit netns

remove dependency on /sbin/ip binary

lxc-user-nic should support DHCP Renew

← Metadata

Owner

Metadata

rootlesskit rootlesskit copied to clipboard

Metadata

← Metadata

Owner

Metadata

rootlesskit
rootlesskit copied to clipboard