On Mon, Apr 24, 2023 at 4:10 PM Demi Marie Obenour
wrote:
>
> On 4/24/23 08:33, Neal Gompa wrote:
> > On Mon, Apr 24, 2023 at 4:19 AM Peter Robinson wrote:
> >>
> There is no problem technically; the Copr repo[2] is building
> Firecracker RPMs with musl. Maintainers of both Rust and mu
On 4/24/23 08:33, Neal Gompa wrote:
> On Mon, Apr 24, 2023 at 4:19 AM Peter Robinson wrote:
>>
There is no problem technically; the Copr repo[2] is building
Firecracker RPMs with musl. Maintainers of both Rust and musl seemed
to be against it in Fedora. From this thread:
>>> Why d
On Mon, Apr 24, 2023 at 4:19 AM Peter Robinson wrote:
>
> > > There is no problem technically; the Copr repo[2] is building
> > > Firecracker RPMs with musl. Maintainers of both Rust and musl seemed
> > > to be against it in Fedora. From this thread:
> > Why does Fedora not want to ship Firecrac
> > There is no problem technically; the Copr repo[2] is building
> > Firecracker RPMs with musl. Maintainers of both Rust and musl seemed
> > to be against it in Fedora. From this thread:
> Why does Fedora not want to ship Firecracker statically linked to musl?
> That is the supported and tested
On Sat, Apr 22, 2023 at 10:48 AM Matthew Miller
wrote:
> On Sat, Apr 22, 2023 at 10:13:31AM -0400, David Michael wrote:
> > > Would it be possible to add a warning to this effect? Without any form
> > > of sandboxing Firecracker is not suitable for production use.
> > Where would such a warning b
On 4/22/23 10:13, David Michael wrote:
> On Fri, Apr 21, 2023 at 10:02 PM Demi Marie Obenour
> wrote:
>> On 4/21/23 11:13, David Michael wrote:
>>> Hi,
>>>
>>> Following up on this, Firecracker has been accepted and submitted to
>>> Fedora. Thanks to Fabio for all of the Rust reviews.
>>>
>>> F37
On Sat, Apr 22, 2023 at 10:13:31AM -0400, David Michael wrote:
> > Would it be possible to add a warning to this effect? Without any form
> > of sandboxing Firecracker is not suitable for production use.
> Where would such a warning be placed? The sandboxing is done by a
> standalone program[0] w
On Fri, Apr 21, 2023 at 10:02 PM Demi Marie Obenour
wrote:
> On 4/21/23 11:13, David Michael wrote:
> > Hi,
> >
> > Following up on this, Firecracker has been accepted and submitted to
> > Fedora. Thanks to Fabio for all of the Rust reviews.
> >
> > F37 https://bodhi.fedoraproject.org/updates/FED
On 4/21/23 11:13, David Michael wrote:
> Hi,
>
> Following up on this, Firecracker has been accepted and submitted to
> Fedora. Thanks to Fabio for all of the Rust reviews.
>
> F37 https://bodhi.fedoraproject.org/updates/FEDORA-2023-dca8124d3b
> F38 https://bodhi.fedoraproject.org/updates/FEDORA
Hi,
Following up on this, Firecracker has been accepted and submitted to
Fedora. Thanks to Fabio for all of the Rust reviews.
F37 https://bodhi.fedoraproject.org/updates/FEDORA-2023-dca8124d3b
F38 https://bodhi.fedoraproject.org/updates/FEDORA-2023-edcbcf18e0
Some quick comments on the TODO fro
On Sat, Mar 18, 2023, 03:37 Smith, Stewart via devel <
devel@lists.fedoraproject.org> wrote:
> On Mar 5, 2023, at 10:19 AM, Kevin Kofler via devel <
> devel@lists.fedoraproject.org> wrote:
> >
> >
> > David Michael wrote:
> >> - Firecracker can be built with Fedora's libc (glibc), but it is
> >> o
On Mar 5, 2023, at 10:19 AM, Kevin Kofler via devel
wrote:
>
>
> David Michael wrote:
>> - Firecracker can be built with Fedora's libc (glibc), but it is
>> officially unsupported upstream[3]. Functionality would be harmed by
>> not using musl, e.g. seccomp filters are not used.
>
> Upstream'
On 3/6/23 13:38, Richard W.M. Jones wrote:
> On Sun, Mar 05, 2023 at 12:18:18AM +0100, Kevin Kofler via devel wrote:
>> David Michael wrote:
>>> - Firecracker can be built with Fedora's libc (glibc), but it is
>>> officially unsupported upstream[3]. Functionality would be harmed by
>>> not using m
Richard W.M. Jones wrote:
> And since we're talking hypervisors, qemu also manages to use glibc &
> implement a seccomp filter.
Good to know. I was not aware that qemu has a seccomp filter, that is nice.
Kevin Kofler
___
devel mailing list -- dev
On Sun, Mar 05, 2023 at 12:18:18AM +0100, Kevin Kofler via devel wrote:
> David Michael wrote:
> > - Firecracker can be built with Fedora's libc (glibc), but it is
> > officially unsupported upstream[3]. Functionality would be harmed by
> > not using musl, e.g. seccomp filters are not used.
>
> U
On Sun, Mar 5, 2023 at 1:31 AM David Michael wrote:
>
> Okay, thanks for all the feedback. I interpret this as essentially
> requiring the use of the glibc Rust target for inclusion in Fedora, so
> the changes on the Fedora side would be reduced to adding a couple
> dozen crates and ideally suppo
On Sat, Mar 4, 2023 at 7:31 PM David Michael wrote:
>
> On Sat, Mar 4, 2023 at 5:51 PM Neal Gompa wrote:
> > On Sat, Mar 4, 2023 at 12:41 PM David Michael wrote:
> > > Hi,
> > >
> > > Firecracker[0] is a minimal virtual machine manager (a la QEMU)
> > > written in Rust that uses KVM to start Lin
On Sat, Mar 4, 2023 at 5:51 PM Neal Gompa wrote:
> On Sat, Mar 4, 2023 at 12:41 PM David Michael wrote:
> > Hi,
> >
> > Firecracker[0] is a minimal virtual machine manager (a la QEMU)
> > written in Rust that uses KVM to start Linux VMs extremely quickly and
> > securely. It is used by AWS Lambd
On Sat, Mar 4, 2023 at 6:18 PM Kevin Kofler via devel
wrote:
>
> David Michael wrote:
> > - Firecracker can be built with Fedora's libc (glibc), but it is
> > officially unsupported upstream[3]. Functionality would be harmed by
> > not using musl, e.g. seccomp filters are not used.
>
> Upstream's
David Michael wrote:
> - Firecracker can be built with Fedora's libc (glibc), but it is
> officially unsupported upstream[3]. Functionality would be harmed by
> not using musl, e.g. seccomp filters are not used.
Upstream's refusal to write seccomp filters that work with glibc should be a
red fla
On Sat, Mar 4, 2023 at 12:41 PM David Michael wrote:
>
> Hi,
>
> Firecracker[0] is a minimal virtual machine manager (a la QEMU)
> written in Rust that uses KVM to start Linux VMs extremely quickly and
> securely. It is used by AWS Lambda and Fargate among other things to
> make VM startup time c
Hi,
Firecracker[0] is a minimal virtual machine manager (a la QEMU)
written in Rust that uses KVM to start Linux VMs extremely quickly and
securely. It is used by AWS Lambda and Fargate among other things to
make VM startup time comparable to containers. I've built it for
Fedora x86_64 and share
22 matches
Mail list logo