On 10/16/2015 11:06 AM, Vladimir Davydov wrote:
On Wed, Oct 07, 2015 at 11:51:06AM +0300, Pavel Tikhomirov wrote:
Docker from 1.7.0 tries to add "a" to devices.allow for newly created
privileged container device_cgroup, and thus to allow all devices in
docker container. Docker fails to do so b
On Wed, Oct 07, 2015 at 11:51:06AM +0300, Pavel Tikhomirov wrote:
> Docker from 1.7.0 tries to add "a" to devices.allow for newly created
> privileged container device_cgroup, and thus to allow all devices in
> docker container. Docker fails to do so because not all devices are
> allowed in parent
Here is the right link for RH7: https://jira.sw.ru/browse/PSBM-34529
Patch actually is a port from RH6.
On 10/15/2015 01:42 PM, Konstantin Khorenko wrote:
Volodya, please review.
--
Best regards,
Konstantin Khorenko,
Virtuozzo Linux Kernel Team
On 10/13/2015 06:11 PM, Pavel Tikhomirov wrote:
Volodya, please review.
--
Best regards,
Konstantin Khorenko,
Virtuozzo Linux Kernel Team
On 10/13/2015 06:11 PM, Pavel Tikhomirov wrote:
We need it for docker 1.7.+, please review.
On 10/07/2015 11:51 AM, Pavel Tikhomirov wrote:
Docker from 1.7.0 tries to add "a" to devices.allow for newly
We need it for docker 1.7.+, please review.
On 10/07/2015 11:51 AM, Pavel Tikhomirov wrote:
Docker from 1.7.0 tries to add "a" to devices.allow for newly created
privileged container device_cgroup, and thus to allow all devices in
docker container. Docker fails to do so because not all devices a
Docker from 1.7.0 tries to add "a" to devices.allow for newly created
privileged container device_cgroup, and thus to allow all devices in
docker container. Docker fails to do so because not all devices are
allowed in parent VZCT cgroup.
To support docker we must allow writing "a" to devices.allow
