4.7 KiB
+++ title = "Installation" weight = 20 +++
Note: gVisor supports only x86_64 and requires Linux {{< required_linux >}} (older Linux).
Versions
The runsc binaries and repositories are available in multiple versions and
release channels. You should pick the version you'd like to install. For
experimentation, the nightly release is recommended. For production use, the
latest release is recommended.
After selecting an appropriate release channel from the options below, proceed
to the preferred installation mechanism: manual or from an apt repository.
Nightly
Nightly releases are built most nights from the master branch, and are available at the following URL:
https://storage.googleapis.com/gvisor/releases/nightly/latest
Specific nightly releases can be found at:
https://storage.googleapis.com/gvisor/releases/nightly/${yyyy-mm-dd}
Note that a release may not be available for every day.
To use a nightly release, use one of the above URLs for URL in the manual
instructions below. For apt, use nightly for DIST below.
Latest release
The latest official release is available at the following URL:
https://storage.googleapis.com/gvisor/releases/release/latest
To use the latest release, use the above URL for URL in the manual
instructions below. For apt, use latest for DIST below.
Specific release
A given release release is available at the following URL:
https://storage.googleapis.com/gvisor/releases/release/${yyyymmdd}
See the releases page for information about specific releases.
This will include point updates for the release, if required. To use a specific
release, use the above URL for URL in the manual instructions below. For
apt, use ${yyyymmdd} for DIST below.
Point release
A given point release is available at the following URL:
https://storage.googleapis.com/gvisor/releases/release/${yyyymmdd}.${rc}
Unlike the specific release above, which may include updates, this release will
not change. To use a specific point release, use the above URL for URL in the
manual instructions below. For apt, use ${yyyymmdd}.${rc} for DIST below.
Install from an apt repository
First, appropriate dependencies must be installed to allow apt to install
packages via https:
sudo apt-get update && \
sudo apt-get install -y \
apt-transport-https \
ca-certificates \
curl \
gnupg-agent \
software-properties-common
Next, the key used to sign archives should be added to your apt keychain:
curl -fsSL https://gvisor.dev/archive.key | sudo apt-key add -
Based on the release type, you will need to substitute ${DIST} below, using
one of:
nightly: For all nightly releases.latest: For the latest release.${yyyymmdd}: For specific releases.${yyyymmdd}.${rc}: For a specific point release.
The repository for the release you wish to install should be added:
sudo add-apt-repository \
"deb https://storage.googleapis.com/gvisor/releases" \
"${DIST}" \
main
For example, to install the latest official release, you can use:
sudo add-apt-repository \
"deb https://storage.googleapis.com/gvisor/releases" \
latest \
main
Now the runsc package can be installed:
sudo apt-get update && sudo apt-get install -y runsc
If you have Docker installed, it will be automatically configured.
Install manually
After selecting an appropriate URL above, you can download runsc directly
from ${URL}/runsc (latest) and a checksum hash from
${URL}/runsc.sha512 (latest).
For example, this binary can be downloaded, validated, and placed in an appropriate location by running:
(
set -e
wget ${URL}/runsc
wget ${URL}/runsc.sha512
sha512sum -c runsc.sha512
rm -f runsc.sha512
sudo mv runsc /usr/local/bin
sudo chown root:root /usr/local/bin/runsc
sudo chmod 0755 /usr/local/bin/runsc
)
It is important to copy this binary to a location that is accessible to all
users, and ensure it is executable by all users, since runsc executes itself
as user nobody to avoid unnecessary privileges. The /usr/local/bin directory
is a good place to put the runsc binary.
After installation, therunsc binary comes with an install command that can
optionally automatically configure Docker:
runsc install