Handle sysroot.readyonly=true migration in other rpm-ostree Fedora(s)
Hi folks, in rpm-ostree based systems like fedora iot I would love to handle the migration process similar to what happens today in silverblue et all wrt sysroot.readonly https://pagure.io/workstation-ostree-config/blob/main/f/postprocess.sh - unfortunately that systemd service and script aren't packaged anywhere and I'd love to have it versioned in RPMs to be used by other spins too. I couldn't find any other conversations around this so I'm opening this one to discuss how and where such a migration should be handled/shipped/run in other systems. Thanks a lot in advance ___ devel mailing list -- devel@lists.fedoraproject.org To unsubscribe send an email to devel-le...@lists.fedoraproject.org Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/devel@lists.fedoraproject.org Do not reply to spam, report it: https://pagure.io/fedora-infrastructure/new_issue
Re: ship Fedora with /etc/{subuid|subgid}
- Messaggio originale - | Da: "Antonio Murdaca" | A: "Development discussions related to Fedora" | Inviato: Mercoledì, 17 febbraio 2016 19:56:04 | Oggetto: Re: ship Fedora with /etc/{subuid|subgid} | | | | - Messaggio originale - | | Da: "Nalin Dahyabhai" | | A: devel@lists.fedoraproject.org | | Inviato: Mercoledì, 17 febbraio 2016 19:52:55 | | Oggetto: Re: ship Fedora with /etc/{subuid|subgid} | | | | On Wed, Feb 17, 2016 at 01:31:41PM -0500, Daniel J Walsh wrote: | | > Strange package to include those. | | > | | > This also looks like an interesting package. | | > | | > http://manpages.ubuntu.com/manpages/vivid/man1/newuidmap.1.html | | | | Fedora packages the same source package and calls the result | | shadow-utils. | | but those /etc/{subuid,subgid} aren't packaged (right?) alright, I've seen Dan's bz | | | | | Cheers, | | | | Nalin | | -- | | devel mailing list | | devel@lists.fedoraproject.org | | http://lists.fedoraproject.org/admin/lists/devel@lists.fedoraproject.org | | | -- | devel mailing list | devel@lists.fedoraproject.org | http://lists.fedoraproject.org/admin/lists/devel@lists.fedoraproject.org | -- devel mailing list devel@lists.fedoraproject.org http://lists.fedoraproject.org/admin/lists/devel@lists.fedoraproject.org
Re: ship Fedora with /etc/{subuid|subgid}
- Messaggio originale - | Da: "Nalin Dahyabhai" | A: devel@lists.fedoraproject.org | Inviato: Mercoledì, 17 febbraio 2016 19:52:55 | Oggetto: Re: ship Fedora with /etc/{subuid|subgid} | | On Wed, Feb 17, 2016 at 01:31:41PM -0500, Daniel J Walsh wrote: | > Strange package to include those. | > | > This also looks like an interesting package. | > | > http://manpages.ubuntu.com/manpages/vivid/man1/newuidmap.1.html | | Fedora packages the same source package and calls the result | shadow-utils. but those /etc/{subuid,subgid} aren't packaged (right?) | | Cheers, | | Nalin | -- | devel mailing list | devel@lists.fedoraproject.org | http://lists.fedoraproject.org/admin/lists/devel@lists.fedoraproject.org | -- devel mailing list devel@lists.fedoraproject.org http://lists.fedoraproject.org/admin/lists/devel@lists.fedoraproject.org
Re: ship Fedora with /etc/{subuid|subgid}
- Messaggio originale - | Da: "Antonio Murdaca" | A: devel@lists.fedoraproject.org | Cc: "Daniel J Walsh" , "Nalin Dahyabhai" | Inviato: Mercoledì, 17 febbraio 2016 14:44:34 | Oggetto: ship Fedora with /etc/{subuid|subgid} | | Hello everyone, | | TL;DR; | a fresh Fedora installation won't have /etc/subuid and /etc/subgid | Docker user namespace implementation require those files to be present - | otherwise it fails | | Docker user ns relies on two files /etc/{subuid,subgid} to be on the rootfs | in order to | gather information about remapped root(s). AFAIK other distros ship those | files (empty by default IIRC). seems like "passwd" is providing those files on stock Ubuntu(s) http://manpages.ubuntu.com/manpages/wily/en/man5/subuid.5.html | The only exception is Fedora (as also stated in their official docs at [1]). | | Is there any particular issue|reason Fedora doesn't ship those two files? | | [1] | https://github.com/docker/docker/blob/master/docs/reference/commandline/daemon.md#starting-the-daemon-with-user-namespaces-enabled | | Thx, | Antonio (runcom) Murdaca | -- | devel mailing list | devel@lists.fedoraproject.org | http://lists.fedoraproject.org/admin/lists/devel@lists.fedoraproject.org | -- devel mailing list devel@lists.fedoraproject.org http://lists.fedoraproject.org/admin/lists/devel@lists.fedoraproject.org
ship Fedora with /etc/{subuid|subgid}
Hello everyone, TL;DR; a fresh Fedora installation won't have /etc/subuid and /etc/subgid Docker user namespace implementation require those files to be present - otherwise it fails Docker user ns relies on two files /etc/{subuid,subgid} to be on the rootfs in order to gather information about remapped root(s). AFAIK other distros ship those files (empty by default IIRC). The only exception is Fedora (as also stated in their official docs at [1]). Is there any particular issue|reason Fedora doesn't ship those two files? [1] https://github.com/docker/docker/blob/master/docs/reference/commandline/daemon.md#starting-the-daemon-with-user-namespaces-enabled Thx, Antonio (runcom) Murdaca -- devel mailing list devel@lists.fedoraproject.org http://lists.fedoraproject.org/admin/lists/devel@lists.fedoraproject.org