On 12/11/2015 02:23 PM, Chris Murphy wrote:
These I have running in a fedora container. lspci mostly works, but getting full -vvnn detail requires --privileged=true. And the other three require it. iotop additionally needs --net=host. I'd be OK with them just being available in a container, but it might make more sense to just include them in the atomic ISO installation, maybe even borrowing a list from the Server product?
We want, as much as possible, to keep the image small and run all the things in containers where possible.
If there's something where that just won't work, or is ludicrously difficult, we should discuss including it.
I would be super-interested in having "util" or "extras" docker images that we can run as Super Privileged Containers (SPCs) [1] to add functionality where it's Good To Have(TM) for some percentage of the audience but not necessary for the majority.
Best,
jzb
[1] http://developerblog.redhat.com/2014/11/06/introducing-a-super-privileged-co...