pkg/system: deprecate some consts and move them to pkg/idtools
These consts were used in combination with idtools utilities, which makes it a more logical location for these consts to live. Signed-off-by: Sebastiaan van Stijn <github@gone.nl>
This commit is contained in:
Sebastiaan van Stijn
parent
26f5db7a1d
commit
46c591b045
4 changed files with 16 additions and 6 deletions
|
|
@ -43,8 +43,7 @@ func fixPermissionsReexec() {
|
|||
}
|
||||
|
||||
func fixPermissionsWindows(source, destination, SID string) error {
|
||||
|
||||
privileges := []string{winio.SeRestorePrivilege, system.SeTakeOwnershipPrivilege}
|
||||
privileges := []string{winio.SeRestorePrivilege, idtools.SeTakeOwnershipPrivilege}
|
||||
|
||||
err := winio.EnableProcessPrivileges(privileges)
|
||||
if err != nil {
|
||||
|
|
|
|||
|
|
@ -11,7 +11,6 @@ import (
|
|||
"github.com/docker/docker/api/types/mount"
|
||||
"github.com/docker/docker/pkg/idtools"
|
||||
"github.com/docker/docker/pkg/jsonmessage"
|
||||
"github.com/docker/docker/pkg/system"
|
||||
"golang.org/x/sys/windows"
|
||||
)
|
||||
|
||||
|
|
@ -44,10 +43,10 @@ func getAccountIdentity(builder *Builder, accountName string, ctrRootPath string
|
|||
|
||||
// Check if the account name is one unique to containers.
|
||||
if strings.EqualFold(accountName, "ContainerAdministrator") {
|
||||
return idtools.Identity{SID: system.ContainerAdministratorSidString}, nil
|
||||
return idtools.Identity{SID: idtools.ContainerAdministratorSidString}, nil
|
||||
|
||||
} else if strings.EqualFold(accountName, "ContainerUser") {
|
||||
return idtools.Identity{SID: system.ContainerUserSidString}, nil
|
||||
return idtools.Identity{SID: idtools.ContainerUserSidString}, nil
|
||||
}
|
||||
|
||||
// All other lookups failed, so therefore determine if the account in
|
||||
|
|
|
|||
|
|
@ -6,6 +6,15 @@ import (
|
|||
"github.com/docker/docker/pkg/system"
|
||||
)
|
||||
|
||||
const (
|
||||
SeTakeOwnershipPrivilege = "SeTakeOwnershipPrivilege"
|
||||
)
|
||||
|
||||
const (
|
||||
ContainerAdministratorSidString = "S-1-5-93-2-1"
|
||||
ContainerUserSidString = "S-1-5-93-2-2"
|
||||
)
|
||||
|
||||
// This is currently a wrapper around MkdirAll, however, since currently
|
||||
// permissions aren't set through this path, the identity isn't utilized.
|
||||
// Ownership is handled elsewhere, but in the future could be support here
|
||||
|
|
|
|||
|
|
@ -8,12 +8,15 @@ import (
|
|||
)
|
||||
|
||||
const (
|
||||
// Deprecated: use github.com/docker/pkg/idtools.SeTakeOwnershipPrivilege
|
||||
SeTakeOwnershipPrivilege = "SeTakeOwnershipPrivilege"
|
||||
)
|
||||
|
||||
const (
|
||||
// Deprecated: use github.com/docker/pkg/idtools.ContainerAdministratorSidString
|
||||
ContainerAdministratorSidString = "S-1-5-93-2-1"
|
||||
ContainerUserSidString = "S-1-5-93-2-2"
|
||||
// Deprecated: use github.com/docker/pkg/idtools.ContainerUserSidString
|
||||
ContainerUserSidString = "S-1-5-93-2-2"
|
||||
)
|
||||
|
||||
var (
|
||||
|
|
|
|||
Loading…
Add table
Reference in a new issue