We use cookies to ensure you get the best experience on our website
Home Explore Help
Register Sign In
0ct0pu5
/
moby
1
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Browse Source

Allow using --pid=host and --net=host when --userns=host

It is safe to set other namespaces to host when user ns is set to host

Signed-off-by: Mrunal Patel <mrunalp@gmail.com>
Mrunal Patel 9 years ago
parent
1225e3e621
commit
3c3d2bf852
1 changed files with 2 additions and 2 deletions
Split View Show Diff Stats
  1. 2 2
      daemon/daemon_unix.go

+ 2 - 2
daemon/daemon_unix.go
View File 

@@ -487,10 +487,10 @@ func verifyPlatformContainerSettings(daemon *Daemon, hostConfig *containertypes.
 
 		if hostConfig.Privileged {
 
 			return warnings, fmt.Errorf("Privileged mode is incompatible with user namespaces")
 
 		}
 
-		if hostConfig.NetworkMode.IsHost() {
 
+		if hostConfig.NetworkMode.IsHost() && !hostConfig.UsernsMode.IsHost() {
 
 			return warnings, fmt.Errorf("Cannot share the host's network namespace when user namespaces are enabled")
 
 		}
 
-		if hostConfig.PidMode.IsHost() {
 
+		if hostConfig.PidMode.IsHost() && !hostConfig.UsernsMode.IsHost() {
 
 			return warnings, fmt.Errorf("Cannot share the host PID namespace when user namespaces are enabled")
 
 		}
 
 		if hostConfig.ReadonlyRootfs {

Contact | Legal | Takedown | Status
Self-hosted public services - About
NibbleSpot by 0ct0pu5