You are viewing a plain text version of this content. The canonical link for it is here.

Posted to issues@mesos.apache.org by "Benno Evers (JIRA)" <ji...@apache.org> on 2019/04/05 12:30:00 UTC

[jira] [Commented] (MESOS-9677) RPM packages should be built with launcher sealing

    [ https://issues.apache.org/jira/browse/MESOS-9677?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=16810759#comment-16810759 ] 

Benno Evers commented on MESOS-9677:
------------------------------------

On the `memfd_create()` manpage I can read:
{quote}
The memfd_create() system call first appeared in Linux 3.17
{quote}

According to Wikipedia, CentOS 7 uses kernels from the 3.10 series:
https://en.wikipedia.org/wiki/CentOS#Latest_version_information

So I'm not sure if it will really be safe to enable this per default on CentOS 7. [~gilbert], can you clarify this?

> RPM packages should be built with launcher sealing
> --------------------------------------------------
>
>                 Key: MESOS-9677
>                 URL: https://issues.apache.org/jira/browse/MESOS-9677
>             Project: Mesos
>          Issue Type: Task
>          Components: build
>    Affects Versions: 1.8.0
>            Reporter: Benjamin Bannier
>            Priority: Major
>              Labels: integration, mesosphere, packaging, rpm, storage
>
> We should consider enabling launcher sealing in the Mesos RPM packages. Since this feature is built conditionally, it is hard to write e.g., module code against Mesos packages since required functions might be missing (e.g., [https://github.com/dcos/dcos-mesos-modules/commit/8ce70e6cc789054831daa3058647e326b2b11bc9] cannot be linked against the default RPM package anymore). The RPM's target platform centos7 should include a recent enough kernel for this.



--
This message was sent by Atlassian JIRA
(v7.6.3#76005)