We use cookies to ensure you get the best experience on our website
Startsida Utforska Hjälp
Registrera dig Logga in
0ct0pu5
/
moby
1
0
Fork 0
Filer Ärenden 0 Pull-förfrågningar 0 Wiki
Bläddra i källkod

Merge pull request #14620 from hqhq/hq_cgroup_ro_optional

Remove cgroup read-only flag when privileged
Alexander Morozov 10 år sedan
förälder
5d3043649a a7f5e1c4c3
incheckning
8801906ced
1 ändrade filer med 7 tillägg och 0 borttagningar
Delad Vy Visa Diff Statistik
  1. 7 0
      daemon/execdriver/native/create.go

+ 7 - 0
daemon/execdriver/native/create.go
Visa fil 

@@ -48,6 +48,13 @@ func (d *driver) createContainer(c *execdriver.Command) (*configs.Config, error)
 
 			container.ReadonlyPaths = nil
 
 		}
 
 
+		// clear readonly for cgroup
 
+		for i := range container.Mounts {
 
+			if container.Mounts[i].Device == "cgroup" {
 
+				container.Mounts[i].Flags &= ^syscall.MS_RDONLY
 
+			}
 
+		}
 
+
 
 		container.MaskPaths = nil
 
 		if err := d.setPrivileged(container); err != nil {
 
 			return nil, err

Contact | Legal | Takedown | Status
Self-hosted public services - About
NibbleSpot by 0ct0pu5