diff options
| author | Marc-André Lureau <marcandre.lureau@redhat.com> | 2019-07-12 16:46:13 +0400 |
|---|---|---|
| committer | Marc-André Lureau <marcandre.lureau@redhat.com> | 2019-08-22 17:30:25 +0400 |
| commit | 9459f754134bb786edf85ca9fc00f1805e67bd74 (patch) | |
| tree | 97b89a9ad8eff2835d4ddfff377d76b8284d09f4 /qapi/qobject-input-visitor.c | |
| parent | 2461d80e6c36dfefdcde1ec8735c317c31895c6b (diff) | |
| download | qemu-9459f754134bb786edf85ca9fc00f1805e67bd74.zip qemu-9459f754134bb786edf85ca9fc00f1805e67bd74.tar.gz qemu-9459f754134bb786edf85ca9fc00f1805e67bd74.tar.bz2 | |
docker.py: add podman support
Add a --engine option to select either docker, podman or auto.
Among other advantages, podman allows to run rootless & daemonless
containers, fortunately sharing compatible CLI with docker.
With current podman, we have to use a uidmap trick in order to be able
to rw-share the ccache directory with the container user.
With a user 1000, the default mapping is: 1000 (host) -> 0 (container).
So write access to /var/tmp/ccache ends will end with permission
denied error.
With "--uidmap 1000:0:1 --uidmap 0:1:1000", the mapping is:
1000 (host) -> 0 (container, 1st namespace) -> 1000 (container, 2nd namespace).
(the rest is mumbo jumbo to avoid holes in the range of UIDs)
A future podman version may have an option such as --userns-keep-uid.
Thanks to Debarshi Ray <rishi@redhat.com> for the help!
Signed-off-by: Marc-André Lureau <marcandre.lureau@redhat.com>
Acked-by: Alex Bennée <alex.bennee@linaro.org>
Reviewed-by: Daniel P. Berrangé <berrange@redhat.com>
Diffstat (limited to 'qapi/qobject-input-visitor.c')
0 files changed, 0 insertions, 0 deletions