[WIP]Fix the --runtime option of container create to support path

[yankay]

Description

Unlike ctr , the nerdctl does not support the --runtime flag while creating a container with path

Steps to reproduce the issue

# Copy runc to another path
cp  /usr/local/bin/containerd-shim-runc-v2 /tmp/haha

# create a container with the path
nerdctl container create --runtime /tmp/haha docker.m.daocloud.io/library/nginx:alpine

ctr -n k8s.io container ls
CONTAINER                                                           IMAGE                                        RUNTIME
8e7e104ba64f9aa8d320fe1972d4d62634d920151612c4f0e0fc0fb12b51ace6    docker.m.daocloud.io/library/nginx:alpine    io.containerd.runc.v2

After the fix.

# create a container with the path
root@kay201:~/oss/nerdctl# ./_output/nerdctl container create --runtime /tmp/haha docker.m.daocloud.io/library/nginx:alpine
ctr -n k8s.io container ls
95fadeb4c7e1aadf13698fa4abb1c8d34b16e23444fe9c37beb84a97cb31037f
CONTAINER                                                           IMAGE                                        RUNTIME
95fadeb4c7e1aadf13698fa4abb1c8d34b16e23444fe9c37beb84a97cb31037f    docker.m.daocloud.io/library/nginx:alpine    /tmp/haha

The runtime flag with path can be configed successfully.

And it can run sucessfuly:

root@kay201:~/oss/nerdctl# ./_output/nerdctl run --runtime /tmp/haha docker.m.daocloud.io/library/nginx:alpine
/docker-entrypoint.sh: /docker-entrypoint.d/ is not empty, will attempt to perform configuration
/docker-entrypoint.sh: Looking for shell scripts in /docker-entrypoint.d/
/docker-entrypoint.sh: Launching /docker-entrypoint.d/10-listen-on-ipv6-by-default.sh
10-listen-on-ipv6-by-default.sh: info: Getting the checksum of /etc/nginx/conf.d/default.conf

[AkihiroSuda]

This doesn't work for --runtime=/usr/local/bin/crun, --runtime=runsc, etc.

[fahedouch]

why runtimeStr is a runc binary here?

[AkihiroSuda]

To support --runtime=/usr/local/bin/crun, --runtime=runsc, etc.
(runc-compatible third-party runtime binaries are called "runc binary" here)

[fahedouch]

--runtime=runsc is not absolute path

[fahedouch]

test is failing

test target: "nerdctl"
=== RUN   TestComposeUpDetailedError
    compose_up_test.go:54: assertion failed: 
        Command:  /usr/local/bin/nerdctl --namespace=nerdctl-test compose -f /tmp/nerdctl-compose-test3932546953/docker-compose.yaml up -d
        ExitCode: 0
        Stdout:   
        Stderr:   time="2023-08-07T07:04:15Z" level=info msg="Creating network nerdctl-compose-test3932546953_default"
        time="2023-08-07T07:04:15Z" level=info msg="Ensuring image ghcr.io/stargz-containers/alpine:3.13-org"
        time="2023-08-07T07:04:15Z" level=info msg="Creating container nerdctl-compose-test3932546953-foo-1"
        
        
        Failures:
        ExitCode was 0 expected 1
        Expected stderr to contain "failed to resolve runtime path: invalid runtime name invalid"

[fahedouch]

do we have the same behavior as docker ?

[AkihiroSuda]

do we have the same behavior as docker ?

No, Docker needs explicit configuration in daemon.json.

For nerdctl, we support strings like

• “io.containerd.runc.v2”
• “runc”, “crun”, “runsc” etc.
• “/usr/local/bin/runc” etc.

[AkihiroSuda]

Runc-compatible binary should be assumed unless the binary name is composed of reversed domains

[AkihiroSuda]

We can also consider “CSV” values like “type=runc,path=foo”, “type=containerd,name=com.example.foo.v1”, “type=containerd,path=containerd-shim-foo-v1”

[fahedouch]

do we have the same behavior as docker ?

No, Docker needs explicit configuration in daemon.json.

For nerdctl, we support strings like

• “io.containerd.runc.v2”
• “runc”, “crun”, “runsc” etc.
• “/usr/local/bin/runc” etc.

I mean this behavior

root@kay200:~# docker container create --runtime com.example.sample.v1 docker.m.daocloud.io/nginx:alpine
Error response from daemon: Unknown runtime specified com.example.sample.v1

[fahedouch]

@yankay PTAL