burble/nomad-driver-containerd
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

Enable oci.WithNewPrivileges in privileged mode

Browse Source
This commit is contained in:
sha7khan 2021-12-05 08:53:20 +05:30 committed by GitHub
parent 32a46614eb
commit ae3c77d578
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 1 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
containerd/containerd.go
View File

@ -149,7 +149,7 @@ func (d *Driver) createContainer(containerConfig *ContainerConfig, config *TaskC
// Enable privileged mode.
if config.Privileged {
opts = append(opts, oci.WithPrivileged, oci.WithAllDevicesAllowed, oci.WithHostDevices)
opts = append(opts, oci.WithPrivileged, oci.WithAllDevicesAllowed, oci.WithHostDevices, oci.WithNewPrivileges)
}
// WithPidsLimit sets the container's pid limit or maximum