mirror of
				https://github.com/linuxkit/linuxkit.git
				synced 2025-10-23 04:56:55 +00:00 
			
		
		
		
	Works around https://github.com/moby/moby/issues/33176 and fixes #1807. Updated al users of linuxkit/runc:2649198589ef0020d99f613adaeda45ce0093a38 to this new build. Signed-off-by: Ian Campbell <ian.campbell@docker.com>
		
			
				
	
	
		
			62 lines
		
	
	
		
			1.6 KiB
		
	
	
	
		
			YAML
		
	
	
	
	
	
			
		
		
	
	
			62 lines
		
	
	
		
			1.6 KiB
		
	
	
	
		
			YAML
		
	
	
	
	
	
| kernel:
 | |
|   image: "linuxkit/kernel:4.9.x"
 | |
|   cmdline: "console=ttyS0 console=tty0 page_poison=1"
 | |
| init:
 | |
|   - linuxkit/init:b3740303f3d1e5689a84c87b7dfb48fd2a40a192
 | |
|   - linuxkit/runc:47b1c38d63468c0f3078f8b1b055d07965a1895d
 | |
|   - linuxkit/containerd:cf2614f5a96c569a0bd4bd54e054a65ba17d167f
 | |
|   - linuxkit/ca-certificates:3344cdca1bc59fdfa17bd7f0fcbf491b9dbaa288
 | |
| onboot:
 | |
|   - name: sysctl
 | |
|     image: "linuxkit/sysctl:2cf2f9d5b4d314ba1bfc22b2fe931924af666d8c"
 | |
|     net: host
 | |
|     pid: host
 | |
|     ipc: host
 | |
|     capabilities:
 | |
|      - CAP_SYS_ADMIN
 | |
|     readonly: true
 | |
|   - name: binfmt
 | |
|     image: "linuxkit/binfmt:131026c0cf6084467316395fed3b358f64bda00c"
 | |
|     binds:
 | |
|      - /proc/sys/fs/binfmt_misc:/binfmt_misc
 | |
|     readonly: true
 | |
|   - name: dhcpcd
 | |
|     image: "linuxkit/dhcpcd:2def74ab3f9233b4c09ebb196ba47c27c08b0ed8"
 | |
|     binds:
 | |
|      - /var:/var
 | |
|      - /tmp/etc:/etc
 | |
|     capabilities:
 | |
|      - CAP_NET_ADMIN
 | |
|      - CAP_NET_BIND_SERVICE
 | |
|      - CAP_NET_RAW
 | |
|     net: host
 | |
|     command: ["/sbin/dhcpcd", "--nobackground", "-f", "/dhcpcd.conf", "-1"]
 | |
| services:
 | |
|   - name: rngd
 | |
|     image: "linuxkit/rngd:61a07ced77a9747708223ca16a4aec621eacf518"
 | |
|     capabilities:
 | |
|      - CAP_SYS_ADMIN
 | |
|     oomScoreAdj: -800
 | |
|     readonly: true
 | |
|   - name: nginx
 | |
|     image: "nginx:alpine"
 | |
|     capabilities:
 | |
|      - CAP_NET_BIND_SERVICE
 | |
|      - CAP_CHOWN
 | |
|      - CAP_SETUID
 | |
|      - CAP_SETGID
 | |
|      - CAP_DAC_OVERRIDE
 | |
|     net: host
 | |
| files:
 | |
|   - path: etc/docker/daemon.json
 | |
|     contents: '{"debug": true}'
 | |
| trust:
 | |
|   image:
 | |
|     - linuxkit/kernel
 | |
|     - linuxkit/binfmt
 | |
|     - linuxkit/rngd
 | |
| outputs:
 | |
|   - format: kernel+initrd
 | |
|   - format: iso-bios
 | |
|   - format: iso-efi
 |