summaryrefslogtreecommitdiff
diff options
context:
space:
mode:
authorGiuseppe Scrivano <gscrivan@redhat.com>2022-01-27 09:31:31 +0100
committerGiuseppe Scrivano <gscrivan@redhat.com>2022-01-27 09:35:02 +0100
commit6336e1ff1e11fa71ce6dce6f1edd51bbedd02aa0 (patch)
tree205f09f1f9bf8c456cc9e8ba1b0c53e57848feb3
parent09589fccfdd27478defc3e3e3827265d50fa9e33 (diff)
downloadpodman-6336e1ff1e11fa71ce6dce6f1edd51bbedd02aa0.tar.gz
podman-6336e1ff1e11fa71ce6dce6f1edd51bbedd02aa0.tar.bz2
podman-6336e1ff1e11fa71ce6dce6f1edd51bbedd02aa0.zip
rootless: drop permission check for devices
commit 350ede1eeb6ab33bce2918d7768b940c255e63c6 added the feature. Do not check whether the device is usable by the rootless user before adding to the container. Closes: https://github.com/containers/podman/issues/12704 [NO NEW TESTS NEEDED] it requires changes on the host to test it Signed-off-by: Giuseppe Scrivano <gscrivan@redhat.com>
-rw-r--r--pkg/specgen/generate/config_linux.go11
1 files changed, 0 insertions, 11 deletions
diff --git a/pkg/specgen/generate/config_linux.go b/pkg/specgen/generate/config_linux.go
index fe220b9e8..a5772bc6a 100644
--- a/pkg/specgen/generate/config_linux.go
+++ b/pkg/specgen/generate/config_linux.go
@@ -47,17 +47,6 @@ func addPrivilegedDevices(g *generate.Generator) error {
if _, found := mounts[d.Path]; found {
continue
}
- st, err := os.Stat(d.Path)
- if err != nil {
- if err == unix.EPERM {
- continue
- }
- return err
- }
- // Skip devices that the user has not access to.
- if st.Mode()&0007 == 0 {
- continue
- }
newMounts = append(newMounts, devMnt)
}
g.Config.Mounts = append(newMounts, g.Config.Mounts...)