Skip to content

Add a configuration flag option to increase the 65536 subordinate range limit #104

Description

@ccun-sq

Need for enhancement:

For legacy reasons, we have to maintain compatibility for a user with large UID, much higher than the 65536 limit [0] which sysbox uses for its allocations. This means that any attempts to chown resources for this user will break. We have experimented with using Docker's userns-remap setting to extend this range, but then we cannot take advantage of sysbox's dynamic allocation.

[0]

IdRangeMin uint32 = 65536

Description of enhancement:

The default IdRangeMin would not change. We would follow the best practices for introducing a configuration option that lets us run with an increased range. We would validate that 268435456 divides the setting evenly so that sysbox's overall range can be subdivided evenly.

https://nestybox-support.slack.com/archives/CS7V68QMP/p1740792462742969

Metadata

Metadata

Assignees

No one assigned

    Labels

    No labels
    No labels

    Type

    No type

    Fields

    No fields configured for issues without a type.

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions