From 894f661cc40006fbccb34f0cee54038eacf28faf Mon Sep 17 00:00:00 2001 From: "James O. D. Hunt" Date: Thu, 26 May 2022 14:11:40 +0100 Subject: [PATCH] docs: Add warning to snap build Since we must build with `--destructive-mode`, add a warning that the host environment could change the behaviour of the build, depending on the packages installed on the system. Signed-off-by: James O. D. Hunt --- snap/local/README.md | 14 ++++++++++++++ 1 file changed, 14 insertions(+) diff --git a/snap/local/README.md b/snap/local/README.md index 60564f4b29..83d33847fb 100644 --- a/snap/local/README.md +++ b/snap/local/README.md @@ -28,6 +28,20 @@ Run the command below which will use the packaging Makefile to build the snap im $ make -C tools/packaging snap ``` +> **Warning:** +> +> By default, `snapcraft` will create a clean virtual machine +> environment to build the snap in using the `multipass` tool. +> +> However, `multipass` is silently disabled when `--destructive-mode` is +> used. +> +> Since building the Kata Containers package currently requires +> `--destructive-mode`, the snap will be built using the host +> environment. To avoid parts of the build auto-detecting additional +> features to enable (for example for QEMU), we recommend that you +> only run the snap build in a minimal host environment. + To install the resulting snap image, snap must be put in [classic mode][3] and the security confinement must be disabled (*--classic*). Also since the resulting snap has not been signed the verification of signature must be omitted (*--dangerous*).