mirror of
https://github.com/linuxkit/linuxkit.git
synced 2026-04-06 19:46:09 +00:00
709402d780
This is compatible with containerd 8353da59c6ae7e1933aac2228df23541ef8b163f
which was picked up by d2caae4c1a.
This required jiggering with riddler output some more to update to new OCI
config.json format for capabilities.
Signed-off-by: Ian Campbell <ian.campbell@docker.com>
47 lines
1.3 KiB
YAML
47 lines
1.3 KiB
YAML
kernel:
|
|
image: "mobylinux/kernel:4.9.x"
|
|
cmdline: "console=ttyS0 page_poison=1"
|
|
init: "mobylinux/init:00c3a5bbfd9794f4a3187fcc4a9f0c826c46d474"
|
|
system:
|
|
- name: sysctl
|
|
image: "mobylinux/sysctl:2cf2f9d5b4d314ba1bfc22b2fe931924af666d8c"
|
|
network_mode: host
|
|
pid: host
|
|
ipc: host
|
|
capabilities:
|
|
- CAP_SYS_ADMIN
|
|
- name: binfmt
|
|
image: "mobylinux/binfmt:bdb754f25a5d851b4f5f8d185a43dfcbb3c22d01"
|
|
binds:
|
|
- /proc/sys/fs/binfmt_misc:/binfmt_misc
|
|
command: [/usr/bin/binfmt, -dir, /etc/binfmt.d/, -mount, /binfmt_misc]
|
|
daemon:
|
|
- name: rngd
|
|
image: "mobylinux/rngd:3dad6dd43270fa632ac031e99d1947f20b22eec9@sha256:1c93c1db7196f6f71f8e300bc1d15f0376dd18e8891c8789d77c8ff19f3a9a92"
|
|
capabilities:
|
|
- CAP_SYS_ADMIN
|
|
oom_score_adj: -800
|
|
command: [/bin/tini, /usr/sbin/rngd, -f]
|
|
- name: sshd
|
|
image: "mobylinux/sshd:4f8452ddaff703416fd7452fcd9693b96b23e847"
|
|
capabilities:
|
|
- CAP_NET_BIND_SERVICE
|
|
- CAP_CHOWN
|
|
- CAP_SETUID
|
|
- CAP_SETGID
|
|
- CAP_DAC_OVERRIDE
|
|
- CAP_SYS_CHROOT
|
|
- CAP_KILL
|
|
network_mode: host
|
|
binds:
|
|
- /root/.ssh:/root/.ssh
|
|
- /etc/resolv.conf:/etc/resolv.conf
|
|
pid: host
|
|
files:
|
|
- path: root/.ssh/authorized_keys
|
|
contents: '#your ssh key here'
|
|
outputs:
|
|
- format: kernel+initrd
|
|
- format: iso-bios
|
|
- format: iso-efi
|