|
@@ -46,11 +46,14 @@ import (
|
|
|
"github.com/docker/docker/pkg/stringid"
|
|
"github.com/docker/docker/pkg/stringid"
|
|
|
|
|
|
|
|
"github.com/opencontainers/runc/libcontainer/label"
|
|
"github.com/opencontainers/runc/libcontainer/label"
|
|
|
|
|
+ rsystem "github.com/opencontainers/runc/libcontainer/system"
|
|
|
)
|
|
)
|
|
|
|
|
|
|
|
var (
|
|
var (
|
|
|
// ErrAufsNotSupported is returned if aufs is not supported by the host.
|
|
// ErrAufsNotSupported is returned if aufs is not supported by the host.
|
|
|
ErrAufsNotSupported = fmt.Errorf("AUFS was not found in /proc/filesystems")
|
|
ErrAufsNotSupported = fmt.Errorf("AUFS was not found in /proc/filesystems")
|
|
|
|
|
+ // ErrAufsNested means aufs cannot be used bc we are in a user namespace
|
|
|
|
|
+ ErrAufsNested = fmt.Errorf("AUFS cannot be used in non-init user namespace")
|
|
|
incompatibleFsMagic = []graphdriver.FsMagic{
|
|
incompatibleFsMagic = []graphdriver.FsMagic{
|
|
|
graphdriver.FsMagicBtrfs,
|
|
graphdriver.FsMagicBtrfs,
|
|
|
graphdriver.FsMagicAufs,
|
|
graphdriver.FsMagicAufs,
|
|
@@ -146,6 +149,10 @@ func supportsAufs() error {
|
|
|
// proc/filesystems for when aufs is supported
|
|
// proc/filesystems for when aufs is supported
|
|
|
exec.Command("modprobe", "aufs").Run()
|
|
exec.Command("modprobe", "aufs").Run()
|
|
|
|
|
|
|
|
|
|
+ if rsystem.RunningInUserNS() {
|
|
|
|
|
+ return ErrAufsNested
|
|
|
|
|
+ }
|
|
|
|
|
+
|
|
|
f, err := os.Open("/proc/filesystems")
|
|
f, err := os.Open("/proc/filesystems")
|
|
|
if err != nil {
|
|
if err != nil {
|
|
|
return err
|
|
return err
|
Serge Hallyn