[YETUS-285] flag to enable/disable docker privileged mode - ASF JIRA

XML

Word

Printable

JSON

Details

Type: New Feature
Status: Resolved
Priority: Blocker
Resolution: Fixed
Affects Version/s: None
Fix Version/s: 0.2.0
Component/s: Precommit
Labels:
None

Release Note:

Hide
By default, Yetus now runs docker in privileged execution mode (when docker support is enabled).

To opt instead for the previous behavior, use the cli option {{--dockerprivd=false}}.

Show
By default, Yetus now runs docker in privileged execution mode (when docker support is enabled). To opt instead for the previous behavior, use the cli option {{--dockerprivd=false}}.

Description

Some commands (such as ps, etc) will use PTRACE in order to perform some operations. In older versions (read: pre-1.10) of Docker, PTRACE is denied by AppArmor on Ubunutu, causing spurious errors. In order to fix this, we should run docker in privileged mode with the capability to disable it. Later on, when 1.10 becomes more common, we can flip the default to false.

https://github.com/docker/docker/issues/7276 has the gory details.

Attachments

- Sort By Name
- Sort By Date
- Ascending
- Descending

YETUS-285.00.patch
15/Jan/16 18:02
2 kB
Allen Wittenauer
YETUS-285.01.patch
15/Jan/16 18:34
3 kB
Allen Wittenauer

Issue Links

incorporates

YETUS-286 The native build randomly fails with "failed to map segment from shared object"

Resolved

Activity

People

Assignee:: Allen Wittenauer

Reporter:: Allen Wittenauer

Votes:: 0 Vote for this issue

Watchers:: 3 Start watching this issue

Dates

Created:: 15/Jan/16 18:01

Updated:: 02/Mar/16 19:49

Resolved:: 02/Mar/16 19:49