New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
app-emulation/libpod: Add missing seccomp.json and crun runtime dep #13743
Conversation
Pull Request assignmentSubmitter: @BinaryKhaos app-emulation/libpod: @zmedico Linked bugsNo bugs to link found. If your pull request references any of the Gentoo bug reports, please add appropriate GLEP 66 tags to the commit message and request reassignment. If you do not receive any reply to this pull request, please open or link a bug to attract the attention of maintainers. Missing GCO sign-offPlease read the terms of Gentoo Certificate of Origin and acknowledge them by adding a sign-off to all your commits. In order to force reassignment and/or bug reference scan, please append Docs: Code of Conduct ● Copyright policy (expl.) ● Devmanual ● GitHub PRs ● Proxy-maint guide |
Ah, sorry. While I was doing some last minute rewriting, somehow the sign-off get lost along the way. I just noticed it now. I will update it tomorrow. Sorry again! |
seccomp.json needs to be installed in /usr/share/containers and will be used by libpod as well as buildah. Without it, some containers will not work due to seccomp usage that is otherwise blocked. Fedora has switched to crun as the default container runtime. At the moment it is the only runtime that supports CGroup v2 which in-turn greatly helps with rootless mode. Support crun as an alternative to the runc dependency. Package-Manager: Portage-2.3.79, Repoman-2.3.18 Signed-off-by: Matthias Dahl <matthias.dahl@binary-island.eu>
28b0b06
to
fd37f9d
Compare
Ok, signed-off is now added back. Sorry again! |
Merged in 69fa809. Thanks! |
seccomp.json needs to be installed in /usr/share/containers and will be used by libpod as well as buildah. Without it, some containers will not work due to seccomp usage that is otherwise blocked.
Fedora has switched to crun as the default container runtime. At the moment it is the only runtime that supports CGroup v2 which in-turn greatly helps with rootless mode. Support crun as an alternative to
the runc dependency.