Description
Starting with Docker 29.5 (after moby/moby#52326), the Docker daemon adds {"type": "time"} to the default OCI runtime spec. youki rejects this namespace type, so docker run --runtime=youki invocation fails on a freshly installed Docker 29.5.
Steps to Reproduce
$ docker --version
Docker version 29.5.0, build 98f1464
$ docker run --runtime youki hello-world
docker: Error response from daemon: failed to create task for container: failed to create shim task: OCI runtime create failed: /usr/local/sbin/youki did not terminate successfully: exit status 1
Run 'docker run --help' for more information
$ sudo journalctl SYSLOG_IDENTIFIER=youki -r
error in executing command: invalid spec for new user namespace container
Caused by:
Namespace type not supported: time
Expected behaviour
docker run --runtime=youki hello-world succeeds.
Root cause
As the error indicates, this is because time namespaces are not implemented in youki yet.
#3259
I think the recent just test-dind failures are also caused by using the latest Docker version.
https://github.com/youki-dev/youki/actions/runs/25983703182/job/76377158770?pr=3530
https://github.com/youki-dev/youki/blob/main/tests/dind/run.sh#L10
Description
Starting with Docker 29.5 (after moby/moby#52326), the Docker daemon adds
{"type": "time"}to the default OCI runtime spec. youki rejects this namespace type, sodocker run --runtime=youkiinvocation fails on a freshly installed Docker 29.5.Steps to Reproduce
Expected behaviour
docker run --runtime=youki hello-worldsucceeds.Root cause
As the error indicates, this is because time namespaces are not implemented in youki yet.
#3259
I think the recent
just test-dindfailures are also caused by using the latest Docker version.https://github.com/youki-dev/youki/actions/runs/25983703182/job/76377158770?pr=3530
https://github.com/youki-dev/youki/blob/main/tests/dind/run.sh#L10