bottlerocket icon indicating copy to clipboard operation
bottlerocket copied to clipboard
verified publisher icon bottlerocket-os

Support for User Namespaces in Kubernetes 1.30

Open misterek opened this issue 1 year ago • 2 comments

What I'd like: Kubenetes 1.30 introduces (beta) support for User Namesspaces (https://kubernetes.io/blog/2024/04/22/userns-beta/). There are a few requirements it looks like. (Kernel 6.3 and Containerd 2.0).

Any alternatives you've considered:

misterek avatar Apr 22 '24 11:04 misterek

Hello @misterek, Thanks for cutting this issue! From reading that post about User Namespaces, it looks like runc also doesn't support User Namespaces yet. That adds up to quite a bit of changes from today. Judging by the number of things still needed for this support, it might be a while before Bottlerocket can support User Namesapces since we will want to wait for support to land in runc and containerd. You can track the kernel update under https://github.com/bottlerocket-os/bottlerocket/issues/3604 specifically.

yeazelm avatar Apr 22 '24 16:04 yeazelm

Thanks @yeazelm ! Just wanted to make sure it was on the radar. Appreciate it!

misterek avatar Apr 22 '24 18:04 misterek