On 5/17/19 3:50 PM, Ogas, Jordan Andrew wrote: > > > I am really interested in rootless podman as an alternative to > Singularity, > > > And if there are any shortcomings. > > > > One of the limitations we need to work around in our production > environments > > is the inability to use setuid helpers, e.g., newuidmap and newgidmap. > > Unfortunately, container implementations with setuid helpers like > Singularity > > (and perhaps Podman?) are not an option for our production clusters. > Not that this changes things much, but newuidmap and newgidmap use FileCaps and thus
only have SETUID and SETGID respectively. getcap /usr/bin/new*idmap /usr/bin/newgidmap = cap_setgid+ep /usr/bin/newuidmap = cap_setuid+ep > > > Best, > > Jordan > > > > *From: *Daniel Walsh <dwa...@redhat.com> > *Organization: *Red Hat > *Reply-To: *"dwa...@redhat.com" <dwa...@redhat.com> > *Date: *Friday, May 17, 2019 at 11:56 AM > *To: *"Ogas, Jordan Andrew" <jo...@lanl.gov>, Development discussions > related to Fedora <devel@lists.fedoraproject.org> > *Subject: *Re: Self Introduction: Jordan Ogas > > > > On 5/17/19 11:15 AM, Ogas, Jordan Andrew wrote: > > Not personally but my team are experimenting with Buildah/Podman. > > I am really interested in rootless podman as an alternative to > Singularity, And if there are any shortcomings. > > > > *From: *Daniel Walsh <dwa...@redhat.com> <mailto:dwa...@redhat.com> > *Organization: *Red Hat > *Reply-To: *"dwa...@redhat.com" <mailto:dwa...@redhat.com> > <dwa...@redhat.com> <mailto:dwa...@redhat.com>, Development > discussions related to Fedora <devel@lists.fedoraproject.org> > <mailto:devel@lists.fedoraproject.org> > *Date: *Thursday, May 16, 2019 at 2:23 PM > *To: *"devel@lists.fedoraproject.org" > <mailto:devel@lists.fedoraproject.org> > <devel@lists.fedoraproject.org> <mailto:devel@lists.fedoraproject.org> > *Subject: *Re: Self Introduction: Jordan Ogas > > > > On 5/16/19 3:17 PM, Ogas, Jordan Andrew via devel wrote: > > Greetings, > > > > My name is Jordan, I'm a member of the Programming and Runtime > Environment > > team for the High Performance Computing Division (HPC) at the > Los Alamos > > National Laboratory (LANL). I have been encouraged by my > package reviewer, > > Dave Love, to introduce myself to the community in an effort > to assimilate > > Fedora packaging culture and increase the likely hood of being > sponsored. > > > > It is my goal to become the official Charliecloud package > maintainer and an expert > > in software packaging. The Charliecloud package under review > is the first package > > I've ever created. Thus, I am hoping to find a sponsor who > will be patient with me > > as I continue to grow and learn from my mistakes. > > > > As a member of the PRE team at LANL I am responsible for > testing and > > maintaining programming environments on a large collection of > super computers > > with various specifications, e.g., hardware, architecture > (hello aarch64), > > interconnects, size, etc. I spend a lot of time contributing > to LANL's novel > > unprivileged Linux container runtime, Charliecloud. > > Have you experimented and played with rootless podman? > > > > > Outside of work you can usually find me relaxing with my wife > or taming > > dinosaurs and dying to piranhas in the video game 'Ark: > Survival Evolved' with > > my 9 year old son. > > > > Package under review (in need of sponsorship): > > https://bugzilla.redhat.com/show_bug.cgi?id=1690046 > > > > Best, > > > > Jordan Ogas > > > > > _______________________________________________ > > devel mailing list -- devel@lists.fedoraproject.org > <mailto:devel@lists.fedoraproject.org> > > To unsubscribe send an email to devel-le...@lists.fedoraproject.org > <mailto:devel-le...@lists.fedoraproject.org> > > Fedora Code of Conduct: https://getfedora.org/code-of-conduct.html > > List Guidelines: > https://fedoraproject.org/wiki/Mailing_list_guidelines > > List Archives: > https://lists.fedoraproject.org/archives/list/devel@lists.fedoraproject.org > > > > >
_______________________________________________ devel mailing list -- devel@lists.fedoraproject.org To unsubscribe send an email to devel-le...@lists.fedoraproject.org Fedora Code of Conduct: https://getfedora.org/code-of-conduct.html List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/devel@lists.fedoraproject.org
