Merge pull request #42072 from AkihiroSuda/prohibit-rootless-as-root-2010

[20.10 backport] dockerd-rootless.sh: prohibit running as root
This commit is contained in:
Sebastiaan van Stijn 2021-03-25 20:46:59 +01:00 committed by GitHub
commit 122ef5ce94
No known key found for this signature in database
GPG key ID: 4AEE18F83AFDEB23

View file

@ -80,6 +80,10 @@ fi
if [ -z $_DOCKERD_ROOTLESS_CHILD ]; then
_DOCKERD_ROOTLESS_CHILD=1
export _DOCKERD_ROOTLESS_CHILD
if [ "$(id -u)" = "0" ]; then
echo "This script must be executed as a non-privileged user"
exit 1
fi
# Re-exec the script via RootlessKit, so as to create unprivileged {user,mount,network} namespaces.
#
# --copy-up allows removing/creating files in the directories by creating tmpfs and symlinks