podman, userNS: configure an intermediate mount namespace

Signed-off-by: Giuseppe Scrivano <gscrivan@redhat.com> Closes: #690 Approved by: mheon
author: Giuseppe Scrivano <gscrivan@redhat.com> 2018-04-24 16:41:42 +0200
committer: Atomic Bot <atomic-devel@projectatomic.io> 2018-05-04 17:15:55 +0000
commit: 522a7197a88ab4e3730387df33f22e445f0f8f3c (patch)
tree: b9ff641842314b447296d18c072eb478d9742632 /libpod/runtime.go
parent: 73078fabcfd2420c47e41843da71dd993f9a0a3e (diff)
download: podman-522a7197a88ab4e3730387df33f22e445f0f8f3c.tar.gz
podman-522a7197a88ab4e3730387df33f22e445f0f8f3c.tar.bz2
podman-522a7197a88ab4e3730387df33f22e445f0f8f3c.zip
1 files changed, 8 insertions, 0 deletions
diff --git a/libpod/runtime.go b/libpod/runtime.go
index 9de70da1b..dde81a59d 100644
--- a/libpod/runtime.go
+++ b/libpod/runtime.go
@@ -340,6 +340,14 @@ func makeRuntime(runtime *Runtime) error {
 		SignaturePolicyPath: runtime.config.SignaturePolicyPath,
 	}
 
+	// Create the tmpDir
+	if err := os.MkdirAll(runtime.config.TmpDir, 0751); err != nil {
+		// The directory is allowed to exist
+		if !os.IsExist(err) {
+			return errors.Wrapf(err, "error creating tmpdir %s", runtime.config.TmpDir)
+		}
+	}
+
 	// Make an OCI runtime to perform container operations
 	ociRuntime, err := newOCIRuntime("runc", runtime.ociRuntimePath,
 		runtime.conmonPath, runtime.config.ConmonEnvVars,
author	Giuseppe Scrivano <gscrivan@redhat.com>	2018-04-24 16:41:42 +0200
committer	Atomic Bot <atomic-devel@projectatomic.io>	2018-05-04 17:15:55 +0000
commit	522a7197a88ab4e3730387df33f22e445f0f8f3c (patch)
tree	b9ff641842314b447296d18c072eb478d9742632 /libpod/runtime.go
parent	73078fabcfd2420c47e41843da71dd993f9a0a3e (diff)
download	podman-522a7197a88ab4e3730387df33f22e445f0f8f3c.tar.gz podman-522a7197a88ab4e3730387df33f22e445f0f8f3c.tar.bz2 podman-522a7197a88ab4e3730387df33f22e445f0f8f3c.zip