From 32a46614eb072906340932b1c8ff751df3a80e65 Mon Sep 17 00:00:00 2001
From: sha7khan <shameervn@yahoo.com>
Date: Tue, 23 Nov 2021 10:43:40 +0530
Subject: [PATCH] Enable all devices in privileged mode

The Privileged mode in containerd driver is not adding devices from host device.

This change will make the driver's privileged mode equivalent to ctr tool's privileged mode - https://github.com/containerd/containerd/blob/main/cmd/ctr/commands/run/run_unix.go#L205-L207
---
 containerd/containerd.go | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/containerd/containerd.go b/containerd/containerd.go
index 8ee3878..37958d8 100644
--- a/containerd/containerd.go
+++ b/containerd/containerd.go
@@ -149,7 +149,7 @@ func (d *Driver) createContainer(containerConfig *ContainerConfig, config *TaskC
 
 	// Enable privileged mode.
 	if config.Privileged {
-		opts = append(opts, oci.WithPrivileged)
+		opts = append(opts, oci.WithPrivileged, oci.WithAllDevicesAllowed, oci.WithHostDevices)
 	}
 
 	// WithPidsLimit sets the container's pid limit or maximum