Add kmod for zstd decompression support of kernel modules

jordanpotter / docker-wireguard

Simple image for running a WireGuard client with a kill switch

MIT License

143 stars 37 forks source link

Add kmod for zstd decompression support of kernel modules #30

Closed ghost closed 2 years ago

ghost commented 2 years ago

For us that have zstd compressed kernel modules.

Solves this error:

modprobe: can't load module ip6_tables (kernel/net/ipv6/netfilter/ip6_tables.ko.zst): invalid module format

jordanpotter commented 2 years ago

Hey @deepfriedpizza, curious why the PR was closed. Did it not fix your issue?

ghost commented 2 years ago

Hey Jordan, I figured out you could avoid mounting '/lib/modules' if you load the ip6_tables module manually on the host, which also allows you to remove the SYS_MODULE capability and removes the necessity for any kernel module loading through the container.

I should have probably rewritten my pull request to include this information, just wanted to make sure all functionality still remained.