We use cookies to ensure you get the best experience on our website
首页 发现 帮助
注册 登录
0ct0pu5
/
moby
1
0
派生 0
文件 工单管理 0 合并请求 0 Wiki
浏览代码

rootless: launch rootlesskit with --propagation=rslave

The propagation was previously set to rprivate and didn't propagate
mounts from the host mount namespace into the daemon's mount namespace.

Further information about --propagation: https://github.com/rootless-containers/rootlesskit/tree/v0.9.1#mount-propagation
RootlessKit changes: https://github.com/rootless-containers/rootlesskit/compare/v0.8.0...v0.9.1

Signed-off-by: Akihiro Suda <akihiro.suda.cz@hco.ntt.co.jp>
Akihiro Suda 5 年之前
父节点
6004b9ad52
当前提交
1ea3a2b7f5
共有 2 个文件被更改,包括 3 次插入2 次删除
分列视图 显示文件统计
  1. 1 0
      contrib/dockerd-rootless.sh
  2. 2 2
      hack/dockerfile/install/rootlesskit.installer

+ 1 - 0
contrib/dockerd-rootless.sh
查看文件 

@@ -82,6 +82,7 @@ if [ -z $_DOCKERD_ROOTLESS_CHILD ]; then
 
 		--slirp4netns-seccomp=$DOCKERD_ROOTLESS_ROOTLESSKIT_SLIRP4NETNS_SECCOMP \
 
 		--disable-host-loopback --port-driver=builtin \
 
 		--copy-up=/etc --copy-up=/run \
 
+		--propagation=rslave \
 
 		$DOCKERD_ROOTLESS_ROOTLESSKIT_FLAGS \
 
 		$0 $@
 
 else

+ 2 - 2
hack/dockerfile/install/rootlesskit.installer
查看文件 

@@ -1,7 +1,7 @@
 
 #!/bin/sh
 
 
-# v0.8.0
 
-: ${ROOTLESSKIT_COMMIT:=ce88a431e6a7cf891ebb68b10bfc6a5724b9ae72}
 
+# v0.9.1
 
+: ${ROOTLESSKIT_COMMIT:=db9657404cd538820e9e83d90dab2a78d8b833e6}
 
 
 install_rootlesskit() {
 
 	case "$1" in

Contact | Legal | Takedown | Status
Self-hosted public services - About
NibbleSpot by 0ct0pu5