opensource/podman
1
0
Fork 0
mirror of https://github.com/containers/podman.git synced 2025-08-06 19:44:14 +08:00
Code Issues Packages Projects Releases Wiki Activity

Add a note on systemd shortcomings in rootless containers

Browse Source 
Document that it is expected for some of the systemd API's to not work
correctly/at all in rootless containers.

Fixes: #3957

Signed-off-by: Michal Sekletar <msekleta@redhat.com>
This commit is contained in:
Michal Sekletar
2019-09-09 16:28:47 +02:00
parent 143caa98bf
commit f9ebc8394e
1 changed files with 3 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

3
rootless.md
View File

@ -14,6 +14,9 @@ can easily fail
* No cgroup V1 Support
* cgroup V1 does not safely support cgroup delegation.
* However, cgroup V2 provides cgroup delegation and is available on Fedora starting with version 29 and other Linux distributions.
* Some systemd's unit configuration options do not work in the rootless container
* systemd fails to apply several options and failures are silently ignored (e.g. CPUShares, MemoryLimit).
* Use of certain options will cause service startup failures (e.g. PrivateNetwork).
* Can not share container images with CRI-O or other users
* Difficult to use additional stores for sharing content
* Does not work on NFS or parallel filesystem homedirs (e.g. [GPFS](https://www.ibm.com/support/knowledgecenter/en/SSFKCN/gpfs_welcome.html))