[jira] [Commented] (AURORA-1237) thermos_runner never does setuid inside the docker container

Benjamin Staffin (JIRA) Mon, 29 Oct 2018 17:09:02 -0700


    [ 
https://issues.apache.org/jira/browse/AURORA-1237?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=16667917#comment-16667917
 ]


Benjamin Staffin commented on AURORA-1237:
------------------------------------------

unassigning myself; unfortunately I haven't been working with Aurora since last 
January

> thermos_runner never does setuid inside the docker container
> ------------------------------------------------------------
>
>                 Key: AURORA-1237
>                 URL: https://issues.apache.org/jira/browse/AURORA-1237
>             Project: Aurora
>          Issue Type: Bug
>          Components: Docker
>            Reporter: Jay Buffington
>            Priority: Major
>
> Even if you do not specify --nosetuid to the aurora executor, the executor 
> does not pass the --setuid argument to the thermos runner when using the 
> docker containerizer.
> Commit 7ba6226 changed this line:
> https://github.com/apache/aurora/blob/master/src/main/python/apache/aurora/executor/thermos_task_runner.py#L378
> I believe that change was inadvertent and was the result of back and forth 
> during the code review process when --nosetuid was being introduced.  That 
> line should be reverted back to how it was before 7ba6226.



--
This message was sent by Atlassian JIRA
(v7.6.3#76005)

[jira] [Commented] (AURORA-1237) thermos_runner never does setuid inside the docker container

Reply via email to