From 3a4be4b66ca22d87446c37218b300b8f31a84b92 Mon Sep 17 00:00:00 2001 From: Daniel J Walsh Date: Fri, 26 Apr 2019 10:51:59 -0400 Subject: Add --read-only-tmpfs options The --read-only-tmpfs option caused podman to mount tmpfs on /run, /tmp, /var/tmp if the container is running int read-only mode. The default is true, so you would need to execute a command like --read-only --read-only-tmpfs=false to turn off this behaviour. Signed-off-by: Daniel J Walsh --- libpod/container_internal_linux.go | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) (limited to 'libpod') diff --git a/libpod/container_internal_linux.go b/libpod/container_internal_linux.go index f352b188e..c5e404155 100644 --- a/libpod/container_internal_linux.go +++ b/libpod/container_internal_linux.go @@ -420,7 +420,7 @@ func (c *Container) generateSpec(ctx context.Context) (*spec.Spec, error) { // It also expects to be able to write to /sys/fs/cgroup/systemd and /var/log/journal func (c *Container) setupSystemd(mounts []spec.Mount, g generate.Generator) error { options := []string{"rw", "rprivate", "noexec", "nosuid", "nodev"} - for _, dest := range []string{"/run", "/run/lock"} { + for _, dest := range []string{"/run"} { if MountExists(mounts, dest) { continue } -- cgit v1.2.3-54-g00ecf