burble/nomad-driver-containerd
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

Enable all devices in privileged mode

Browse Source 
The Privileged mode in containerd driver is not adding devices from host device.

This change will make the driver's privileged mode equivalent to ctr tool's privileged mode - https://github.com/containerd/containerd/blob/main/cmd/ctr/commands/run/run_unix.go#L205-L207
This commit is contained in:
sha7khan 2021-11-23 10:43:40 +05:30 committed by GitHub
parent bbb554b18f
commit 32a46614eb
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 1 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
containerd/containerd.go
View File

@ -149,7 +149,7 @@ func (d *Driver) createContainer(containerConfig *ContainerConfig, config *TaskC
// Enable privileged mode.
if config.Privileged {
opts = append(opts, oci.WithPrivileged)
opts = append(opts, oci.WithPrivileged, oci.WithAllDevicesAllowed, oci.WithHostDevices)
}
// WithPidsLimit sets the container's pid limit or maximum