rpms / podman

Clone
Source Code
GIT

Files

  1.   628da5b838d060caa344585a7b8605c270c10378
  2.   SOURCES
  3.   podman-1846364.patch
Blob Blame History Raw 
From a81891bb376d673cb6bef851b522a6d678e15ed0 Mon Sep 17 00:00:00 2001
From: Daniel J Walsh <dwalsh@redhat.com>
Date: Wed, 24 Jun 2020 10:34:25 -0400
Subject: [PATCH] Allow security-opts to be parsed even if container is
 --privileged

Signed-off-by: Daniel J Walsh <dwalsh@redhat.com>
---
 cmd/podman/shared/create.go | 7 +++----
 1 file changed, 3 insertions(+), 4 deletions(-)

diff --git a/cmd/podman/shared/create.go b/cmd/podman/shared/create.go
index dc343e6942..11a0c9cbe8 100644
--- a/cmd/podman/shared/create.go
+++ b/cmd/podman/shared/create.go
@@ -796,10 +796,9 @@ func ParseCreateOpts(ctx context.Context, c *GenericCLIResults, runtime *libpod.
 
 	if config.Privileged {
 		config.LabelOpts = label.DisableSecOpt()
-	} else {
-		if err := parseSecurityOpt(config, c.StringArray("security-opt"), runtime); err != nil {
-			return nil, err
-		}
+	}
+	if err := parseSecurityOpt(config, c.StringArray("security-opt"), runtime); err != nil {
+		return nil, err
 	}
 	config.SecurityOpts = c.StringArray("security-opt")
 	warnings, err := verifyContainerResources(config, false)

Powered by Pagure 5.14.1

SSH Hostkey/Fingerprint | Documentation