You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
- GUI with system tray icon (Qt or Electron, for portability)
192
-
- VirtFS to replace the current reverse sshfs (work has to be done on QEMU repo)
171
+
-[VirtFS to replace the current reverse sshfs (work has to be done on QEMU repo)](https://github.com/NixOS/nixpkgs/pull/122420)
193
172
-[vsock](https://github.com/apple/darwin-xnu/blob/xnu-7195.81.3/bsd/man/man4/vsock.4) to replace SSH (work has to be done on QEMU repo)
194
173
195
174
## FAQs & Troubleshooting
@@ -201,7 +180,7 @@ You have to use `limactl shell bash` (or `lima bash`) to open a shell.
201
180
Alternatively, you may also directly ssh into the guest: `ssh -p 60022 -o NoHostAuthenticationForLocalhost=yes 127.0.0.1`.
202
181
203
182
#### "Does Lima work on ARM Mac?"
204
-
Yes, it should work, but not tested on ARM.
183
+
Yes, it should work, but not regularly tested on ARM.
205
184
206
185
#### "Can I run non-Ubuntu guests?"
207
186
Fedora is also known to work, see [`./examples/fedora.yaml`](./examples/fedora.yaml).
@@ -229,17 +208,49 @@ the predecessor or Lima, provides similar features for remote Linux machines.
229
208
e.g., run `sshocker -v /Users/foo:/home/foo/mnt -p 8080:80 <USER>@<HOST>` to expose `/Users/foo` to the remote machine as `/home/foo/mnt`,
230
209
and forward `localhost:8080` to the port 80 of the remote machine.
231
210
211
+
#### "Advantages compared to Docker for Mac?"
212
+
Lima is free software (Apache License 2.0), while Docker for Mac is not.
213
+
Their [EULA](https://www.docker.com/legal/docker-software-end-user-license-agreement) even prohibits disclosure of benchmarking result.
214
+
215
+
On the other hand, [Moby](https://github.com/moby/moby), aka Docker for Linux, is free software, but Moby/Docker lacks several novel features of containerd, such as:
-[Running an encrypted container](https://github.com/containerd/nerdctl/blob/master/docs/ocicrypt.md)
218
+
- Importing and exporting [local OCI archives](https://github.com/opencontainers/image-spec/blob/master/image-layout.md)
219
+
232
220
### QEMU
233
221
#### "QEMU crashes with `HV_ERROR`"
234
-
You have to add `com.apple.security.hypervisor` entitlement to `qemu-system-x86_64` binary.
235
-
See [Getting started](#getting-started).
222
+
If you have installed QEMU v6.0.0 or later on macOS 11 via homebrew, your QEMU binary should have been already automatically signed to enable HVF acceleration.
223
+
224
+
However, if you see `HV_ERROR`, you might need to sign the binary manually.
225
+
226
+
```bash
227
+
cat >entitlements.xml <<EOF
228
+
<?xml version="1.0" encoding="UTF-8"?>
229
+
<!DOCTYPE plist PUBLIC "-//Apple//DTD PLIST 1.0//EN" "http://www.apple.com/DTDs/PropertyList-1.0.dtd">
Note: **Only** on macOS versions **before** 10.15.7 you might need to add this entitlement in addition:
242
+
243
+
```
244
+
<key>com.apple.vm.hypervisor</key>
245
+
<true/>
246
+
```
236
247
237
248
#### "QEMU is slow"
238
-
- Make sure that HVF is enabled with `com.apple.security.hypervisor` entitlement. See [Getting started](#getting-started).
249
+
- Make sure that HVF is enabled with `com.apple.security.hypervisor` entitlement. See ["QEMU crashes with `HV_ERROR`"](#qemu-crashes-with-hv_error).
239
250
- Emulating non-native machines (ARM-on-Intel, Intel-on-ARM) is slow by design.
240
251
241
252
#### error "killed -9"
242
-
- make sure qemu is codesigned, see [Getting started](#getting-started).
253
+
- make sure qemu is codesigned, See ["QEMU crashes with `HV_ERROR`"](#qemu-crashes-with-hv_error).
243
254
- if you are on macOS 10.15.7 or 11.0 or later make sure the entitlement `com.apple.vm.hypervisor` is **not** added. It only works on older macOS versions. You can clear the codesigning with `codesign --remove-signature /usr/local/bin/qemu-system-x86_64` and [start over](#getting-started).
0 commit comments