[ https://issues.apache.org/jira/browse/AURORA-1237?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=16014017#comment-16014017
]
Stephan Erb commented on AURORA-1237:
-------------------------------------
Yeah, the specific patch is kind of abandoned. The feature is useful though, we are therefore
happy to accept rebased/improved patches.
> thermos_runner never does setuid inside the docker container
> ------------------------------------------------------------
>
> Key: AURORA-1237
> URL: https://issues.apache.org/jira/browse/AURORA-1237
> Project: Aurora
> Issue Type: Bug
> Components: Docker
> Reporter: Jay Buffington
> Assignee: Benjamin Staffin
>
> Even if you do not specify --nosetuid to the aurora executor, the executor does not pass
the --setuid argument to the thermos runner when using the docker containerizer.
> Commit 7ba6226 changed this line:
> https://github.com/apache/aurora/blob/master/src/main/python/apache/aurora/executor/thermos_task_runner.py#L378
> I believe that change was inadvertent and was the result of back and forth during the
code review process when --nosetuid was being introduced. That line should be reverted back
to how it was before 7ba6226.
--
This message was sent by Atlassian JIRA
(v6.3.15#6346)
|