Add ID-mapping capabilities #1392
Merged
Commits on Oct 31, 2024
-
Add id-mapped nerdctl to Makefile
nerdctl currently does not support ID mapping natively, so this commit adds the code for us to use a patched version of nerdctl that supports this. Once this is supported upstream natively, we can revert this. Signed-off-by: David Son <[email protected]>
-
Taken from containerd commit 83aaa89, this adds the necessary tools to add idmapping capabilities to SOCI. Signed-off-by: David Son <[email protected]>
Commits on Nov 1, 2024
-
Add support for idmapped layers
This commit adds ID mapping functionality in SOCI. ID mapping is enabled if the correct labels are passed through. To avoid having containerd handle the ID mapping, we must declare in the containerd config file that the snapshotter supports ID mapping. Note that usage of this feature requires proxy plugins to have capabilities, which is only supported in containerd v1.7.23 onwards. Signed-off-by: David Son <[email protected]>
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.