Hi, everyone! Hope you're all having a nice life!
I just bumped into this while checking my feed https://0pointer.net/blog/running-an-container-off-the-host-usr.html And I thought I'd share.
An excerpt:
Both posts are quite interesting. They deal on how to use systemd-nspawn to run software in "a light-weight namespace container." For more on systemd-nspawn read here and here
Both links contain basically the same info, but the second one from the amazing arch wiki has a few more, useful examples.
I just bumped into this while checking my feed https://0pointer.net/blog/running-an-container-off-the-host-usr.html And I thought I'd share.
An excerpt:
And here's the follow-up to the above post https://0pointer.net/blog/testing-my-system-code-in-usr-without-modifying-usr.htmlI develop system-level software as you might know. Oftentimes I want to run my development code on my PC but be reasonably sure it cannot destroy or otherwise negatively affect my host system. Now I could set up a container tree for that, and boot into that. But often I am too lazy for that, I don't want to bother with a slow package manager setting up a new OS tree for me. So here's what I often do instead — and this only works because of the /usr/-merge.
Both posts are quite interesting. They deal on how to use systemd-nspawn to run software in "a light-weight namespace container." For more on systemd-nspawn read here and here
Both links contain basically the same info, but the second one from the amazing arch wiki has a few more, useful examples.