Don't mount /dev/* if user mounted /dev

Signed-off-by: Daniel J Walsh <dwalsh@redhat.com>
This commit is contained in:
Daniel J Walsh
2018-09-13 17:12:23 -04:00
parent 2188d8f7ad
commit 31294799c4

View File

@ -318,8 +318,18 @@ func CreateConfigToOCISpec(config *CreateConfig) (*spec.Spec, error) { //nolint
for _, mount := range mounts { for _, mount := range mounts {
destinations[path.Clean(mount.Destination)] = true destinations[path.Clean(mount.Destination)] = true
} }
// Copy all mounts from spec to defaultMounts, except for
// - mounts overridden by a user supplied mount;
// - all mounts under /dev if a user supplied /dev is present;
mountDev := destinations["/dev"]
for _, mount := range configSpec.Mounts { for _, mount := range configSpec.Mounts {
if _, ok := destinations[path.Clean(mount.Destination)]; !ok { if _, ok := destinations[path.Clean(mount.Destination)]; !ok {
if mountDev && strings.HasPrefix(mount.Destination, "/dev/") {
// filter out everything under /dev if /dev is user-mounted
continue
}
logrus.Debugf("Adding mount %s", mount.Destination) logrus.Debugf("Adding mount %s", mount.Destination)
mounts = append(mounts, mount) mounts = append(mounts, mount)
} }