Skip to content
/ runlet_sh Public

Generate runlets from containerized Unix processes

License

ISC license
3 stars 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

msantos/runlet_sh

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

41 Commits

lib/runlet/cmd

lib/runlet/cmd

 
 

src

src

 
 

test

test

 
 

.dialyzer_ignore.exs

.dialyzer_ignore.exs

 
 

.formatter.exs

.formatter.exs

 
 

.gitignore

.gitignore

 
 

LICENSE

LICENSE

 
 

README.md

README.md

 
 

mix.exs

mix.exs

 
 

mix.lock

mix.lock

 
 

Repository files navigation

RunletSh

Package Version Hex Docs

Generate runlets from containerized Unix processes.

Installation

Add runlet_sh to your list of dependencies in mix.exs:

def deps do
  [{:runlet_sh, github: "msantos/runlet_sh"}]
end

Create Container Root Filesystem

mkdir -p priv/root/bin priv/root/sbin \
   priv/root/usr priv/root/lib priv/root/lib64 \
   priv/root/opt priv/root/tmp priv/root/home priv/root/proc

Configuration

UID/GID

The UID/GID of the containerized processes is selected from one of 65535 UIDs beginning from 0xF0000000. Systems may limit the maximum UID: setting a UID above the limit will fail with {:error, :einval}.

config/config.exs: Set Minimum UID

To set a lower UID offset:

import Config

config :runlet,
  uidmin: 0x80000

config/config.exs: Set Function to Select UID

import Config

config :runlet,
  uidfun: fn _uidmin -> 65577 end

Test

Privileges

youruser ALL = NOPASSWD: /path/to/runlet_sh/deps/prx/priv/prx

About

Generate runlets from containerized Unix processes

Topics

supervisor linux-namespaces

Resources

Readme

License

ISC license
Activity

Stars

3 stars

Watchers

3 watching

Forks

0 forks
Report repository

Releases

3 tags

Packages

No packages published

Languages