Skip to content

Commit

Permalink
spread: run docker container as unconfined to allow mount syscall
Browse files Browse the repository at this point in the history
  • Loading branch information
@Meulengracht
Meulengracht committed Aug 1, 2024
1 parent 98d1ba6 commit 9d783ef
Showing 1 changed file with 2 additions and 1 deletion.
3 changes: 2 additions & 1 deletion spread.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -17,7 +17,8 @@ backends:
echo "Allocating $SPREAD_SYSTEM..."
docker_image=$(echo $SPREAD_SYSTEM | awk -F '-' '{print $1":"$2}')
docker_arch=$(echo $SPREAD_SYSTEM | awk -F '-' '{print $NF}')
docker run --cap-add SYS_ADMIN --rm -e DEBIAN_FRONTEND=noninteractice \
docker run --cap-add SYS_ADMIN --security-opt apparmor=unconfined \
--rm -e DEBIAN_FRONTEND=noninteractice \
-e usr=$SPREAD_SYSTEM_USERNAME -e pass=$SPREAD_SYSTEM_PASSWORD \
--name $SPREAD_SYSTEM -d $docker_arch/$docker_image sh -c '
set -x
Expand Down

0 comments on commit 9d783ef

Please sign in to comment.