On Mon, Apr 24, 2023 at 4:10 PM Demi Marie Obenour
wrote:
>
> On 4/24/23 08:33, Neal Gompa wrote:
> > On Mon, Apr 24, 2023 at 4:19 AM Peter Robinson wrote:
> >>
> There is no problem technically; the Copr repo[2] is building
> Firecracker RPMs with musl. Maintainers of both Rust and mu
On 4/24/23 08:33, Neal Gompa wrote:
> On Mon, Apr 24, 2023 at 4:19 AM Peter Robinson wrote:
>>
There is no problem technically; the Copr repo[2] is building
Firecracker RPMs with musl. Maintainers of both Rust and musl seemed
to be against it in Fedora. From this thread:
>>> Why d
On Mon, Apr 24, 2023 at 4:19 AM Peter Robinson wrote:
>
> > > There is no problem technically; the Copr repo[2] is building
> > > Firecracker RPMs with musl. Maintainers of both Rust and musl seemed
> > > to be against it in Fedora. From this thread:
> > Why does Fedora not want to ship Firecrac
> > There is no problem technically; the Copr repo[2] is building
> > Firecracker RPMs with musl. Maintainers of both Rust and musl seemed
> > to be against it in Fedora. From this thread:
> Why does Fedora not want to ship Firecracker statically linked to musl?
> That is the supported and tested
On Sat, Apr 22, 2023 at 10:48 AM Matthew Miller
wrote:
> On Sat, Apr 22, 2023 at 10:13:31AM -0400, David Michael wrote:
> > > Would it be possible to add a warning to this effect? Without any form
> > > of sandboxing Firecracker is not suitable for production use.
> > Where would such a warning b
On 4/22/23 10:13, David Michael wrote:
> On Fri, Apr 21, 2023 at 10:02 PM Demi Marie Obenour
> wrote:
>> On 4/21/23 11:13, David Michael wrote:
>>> Hi,
>>>
>>> Following up on this, Firecracker has been accepted and submitted to
>>> Fedora. Thanks to Fabio for all of the Rust reviews.
>>>
>>> F37
On Sat, Apr 22, 2023 at 10:13:31AM -0400, David Michael wrote:
> > Would it be possible to add a warning to this effect? Without any form
> > of sandboxing Firecracker is not suitable for production use.
> Where would such a warning be placed? The sandboxing is done by a
> standalone program[0] w
On Fri, Apr 21, 2023 at 10:02 PM Demi Marie Obenour
wrote:
> On 4/21/23 11:13, David Michael wrote:
> > Hi,
> >
> > Following up on this, Firecracker has been accepted and submitted to
> > Fedora. Thanks to Fabio for all of the Rust reviews.
> >
> > F37 https://bodhi.fedoraproject.org/updates/FED
On 4/21/23 11:13, David Michael wrote:
> Hi,
>
> Following up on this, Firecracker has been accepted and submitted to
> Fedora. Thanks to Fabio for all of the Rust reviews.
>
> F37 https://bodhi.fedoraproject.org/updates/FEDORA-2023-dca8124d3b
> F38 https://bodhi.fedoraproject.org/updates/FEDORA
Hi,
Following up on this, Firecracker has been accepted and submitted to
Fedora. Thanks to Fabio for all of the Rust reviews.
F37 https://bodhi.fedoraproject.org/updates/FEDORA-2023-dca8124d3b
F38 https://bodhi.fedoraproject.org/updates/FEDORA-2023-edcbcf18e0
Some quick comments on the TODO fro
On Sat, Mar 18, 2023, 03:37 Smith, Stewart via devel <
devel@lists.fedoraproject.org> wrote:
> On Mar 5, 2023, at 10:19 AM, Kevin Kofler via devel <
> devel@lists.fedoraproject.org> wrote:
> >
> >
> > David Michael wrote:
> >> - Firecracker can be built with Fedora's libc (glibc), but it is
> >> o
On Mar 5, 2023, at 10:19 AM, Kevin Kofler via devel
wrote:
>
>
> David Michael wrote:
>> - Firecracker can be built with Fedora's libc (glibc), but it is
>> officially unsupported upstream[3]. Functionality would be harmed by
>> not using musl, e.g. seccomp filters are not used.
>
> Upstream'
On 3/6/23 13:38, Richard W.M. Jones wrote:
> On Sun, Mar 05, 2023 at 12:18:18AM +0100, Kevin Kofler via devel wrote:
>> David Michael wrote:
>>> - Firecracker can be built with Fedora's libc (glibc), but it is
>>> officially unsupported upstream[3]. Functionality would be harmed by
>>> not using m
Richard W.M. Jones wrote:
> And since we're talking hypervisors, qemu also manages to use glibc &
> implement a seccomp filter.
Good to know. I was not aware that qemu has a seccomp filter, that is nice.
Kevin Kofler
___
devel mailing list -- dev
On Sun, Mar 05, 2023 at 12:18:18AM +0100, Kevin Kofler via devel wrote:
> David Michael wrote:
> > - Firecracker can be built with Fedora's libc (glibc), but it is
> > officially unsupported upstream[3]. Functionality would be harmed by
> > not using musl, e.g. seccomp filters are not used.
>
> U
On Sun, Mar 5, 2023 at 1:31 AM David Michael wrote:
>
> Okay, thanks for all the feedback. I interpret this as essentially
> requiring the use of the glibc Rust target for inclusion in Fedora, so
> the changes on the Fedora side would be reduced to adding a couple
> dozen crates and ideally suppo
On Sat, Mar 4, 2023 at 7:31 PM David Michael wrote:
>
> On Sat, Mar 4, 2023 at 5:51 PM Neal Gompa wrote:
> > On Sat, Mar 4, 2023 at 12:41 PM David Michael wrote:
> > > Hi,
> > >
> > > Firecracker[0] is a minimal virtual machine manager (a la QEMU)
> > > written in Rust that uses KVM to start Lin
On Sat, Mar 4, 2023 at 5:51 PM Neal Gompa wrote:
> On Sat, Mar 4, 2023 at 12:41 PM David Michael wrote:
> > Hi,
> >
> > Firecracker[0] is a minimal virtual machine manager (a la QEMU)
> > written in Rust that uses KVM to start Linux VMs extremely quickly and
> > securely. It is used by AWS Lambd
On Sat, Mar 4, 2023 at 6:18 PM Kevin Kofler via devel
wrote:
>
> David Michael wrote:
> > - Firecracker can be built with Fedora's libc (glibc), but it is
> > officially unsupported upstream[3]. Functionality would be harmed by
> > not using musl, e.g. seccomp filters are not used.
>
> Upstream's
David Michael wrote:
> - Firecracker can be built with Fedora's libc (glibc), but it is
> officially unsupported upstream[3]. Functionality would be harmed by
> not using musl, e.g. seccomp filters are not used.
Upstream's refusal to write seccomp filters that work with glibc should be a
red fla
On Sat, Mar 4, 2023 at 12:41 PM David Michael wrote:
>
> Hi,
>
> Firecracker[0] is a minimal virtual machine manager (a la QEMU)
> written in Rust that uses KVM to start Linux VMs extremely quickly and
> securely. It is used by AWS Lambda and Fargate among other things to
> make VM startup time c
21 matches
Mail list logo
