diff options
author | Yannick Gicquel <yannick.gicquel@iot.bzh> | 2015-11-26 15:36:35 +0100 |
---|---|---|
committer | Yannick Gicquel <yannick.gicquel@iot.bzh> | 2015-11-26 15:46:47 +0100 |
commit | 616068396063ee1802799905b527a6464f0adf93 (patch) | |
tree | 382a8cd488097d9b6cd69e4701a3263e8e56a363 /meta-rcar-gen2/recipes-kernel | |
parent | 9833d9d1d3049eb21cb1c5b21e3d74acc8e42a9d (diff) |
kernel: enable namespaces support
As per section 7.3.1 of AGL spec v1.0, namespaces kernel are required to
support containers:
"AGL shall provide OS-level mechanisms for running multiple isolated instances
(containers) that have its own directory structure, network devices, IP
addresses and process table. The processes running in other containers shall
not be visible from inside a container."
This patch deliver:
- Mount namespaces (natively supported),
- PID namespaces,
- Network namespace,
- IPC namespaces,
- UTS namespaces (disabled),
- User namespaces.
Signed-off-by: Yannick Gicquel <yannick.gicquel@iot.bzh>
Diffstat (limited to 'meta-rcar-gen2/recipes-kernel')
-rw-r--r-- | meta-rcar-gen2/recipes-kernel/linux/linux.inc | 8 |
1 files changed, 8 insertions, 0 deletions
diff --git a/meta-rcar-gen2/recipes-kernel/linux/linux.inc b/meta-rcar-gen2/recipes-kernel/linux/linux.inc index fbeb443..aedf300 100644 --- a/meta-rcar-gen2/recipes-kernel/linux/linux.inc +++ b/meta-rcar-gen2/recipes-kernel/linux/linux.inc @@ -148,6 +148,14 @@ do_configure_prepend() { kernel_configure_variable POSIX_MQUEUE y kernel_configure_variable TUN y + # For containers support (AGL spec v1.0, section 7.3.1) + kernel_configure_variable NAMESPACES y + kernel_configure_variable UTS_NS n + kernel_configure_variable IPC_NS y + kernel_configure_variable USER_NS y + kernel_configure_variable PID_NS y + kernel_configure_variable NET_NS y + # only when distro is built for debug if [ "${DISTRO_TYPE}" = "debug" ]; then kernel_configure_variable BLK_DEV_LOOP y |