Uploaded image for project: 'Bitbucket Cloud'
  1. Bitbucket Cloud
  2. BCLOUD-13655

pipelines: relax seccomp policy to allow unshare?

    XMLWordPrintable

Details

    • Our product teams collect and evaluate feedback from a number of different sources. To learn more about how we use customer feedback in the planning process, check out our new feature policy.

    Description

      I'd like to test some basic containers functionality of a toolsuite. This would require unsharing the user namespace (unshare -U). This requires no capability, your kernel sysctl and apparmor policy allow it, but the default docker seccomp policy denies it.

      Would it be possible to allow it?

      Without this, I basically can't use pipelines for these tests, so will have to hook in my external jenkins.

      Thanks for considering!

      Attachments

        Activity

          People

            Unassigned Unassigned
            705095bab753 hallyn
            Votes:
            1 Vote for this issue
            Watchers:
            2 Start watching this issue

            Dates

              Created:
              Updated:
              Resolved: