[Rpm-maint] [rpm-software-management/rpm] RPM with Copy on Write (#1470)
Colin Walters
notifications at github.com
Fri Feb 11 19:26:13 UTC 2022
Bear in mind that rpm is also used inside containers, not necessarily with `CAP_SYS_ADMIN` privileges as is typical on "host systems". And inside containers, one can't rely necessarily on the ability to recursively apply container/sandboxing features.
Carrying a seccomp policy is a very heavy investment.
In rpm-ostree we have a mixed usage of systemd and bwrap, but since we now are trying to also run inside a container as part of [ostree native containers](https://fedoraproject.org/wiki/Changes/OstreeNativeContainer) it's forcing us to not have those as hard dependencies.
--
Reply to this email directly or view it on GitHub:
https://github.com/rpm-software-management/rpm/pull/1470#issuecomment-1036542465
You are receiving this because you are subscribed to this thread.
Message ID: <rpm-software-management/rpm/pull/1470/c1036542465 at github.com>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.rpm.org/pipermail/rpm-maint/attachments/20220211/688d83db/attachment.html>
More information about the Rpm-maint
mailing list