You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
{{ message }}
This repository has been archived by the owner on Oct 16, 2020. It is now read-only.
I run the image with both docker and rkt using host networking.
The docker image runs fine under Docker on CoreOs but if you convert it to ACI with docker2aci and run with with rkt (version 0.9.0) then accessing the simple http server via 'curl http://localhost' gives a 403 forbidden response.
nginx in the container changes to the nginx user id which doesn't seem to have access to the file tree.
The permissions on the pod's rootfs are different from that you get on ubuntu:
core@srv-jnt3l /var/lib/rkt/pods/run/01138045-5c1b-4a8f-bee7-72ed9b114f6b/stage1
$ ls -la
total 36
drwxr-s--- 3 root rkt 4096 Oct 15 15:15 .
-rw------- 1 root rkt 0 Oct 15 15:15 .#rootfs.lck
drwxr-s--- 6 root rkt 4096 Oct 15 15:15 ..
-rw-r----- 1 root rkt 367 Oct 15 15:14 manifest
drwxr-x--- 1 root rkt 4096 Oct 15 15:15 rootfs
root@ubuntu-vm:/var/lib/rkt/pods/run/6eff0ad5-07e6-4526-b01d-ac645e31205b/stage1# ls -la
total 16
drwxr-s--- 3 root rkt 4096 Oct 15 16:09 .
drwxr-s--- 5 root rkt 4096 Oct 15 16:09 ..
-rw-r----- 1 root rkt 367 Oct 15 16:09 manifest
drwxrwxr-x 13 root rkt 4096 Oct 15 16:09 rootfs
-rw------- 1 root rkt 0 Oct 15 16:09 .#rootfs.lck
which means in the actual container 'other' permssions on the root of the filesystem are completely missing.
In additon the links to /dev/stdout and /dev/stderr for logging in the docker image Dockerfile don't work in ACI due to lack of the corresponding devices.
The text was updated successfully, but these errors were encountered:
CoreOS alpha (833.0.0)
I've created an ACI conversion of a Docker image created from https://github.com/deis/example-dockerfile-http
I run the image with both docker and rkt using host networking.
The docker image runs fine under Docker on CoreOs but if you convert it to ACI with docker2aci and run with with rkt (version 0.9.0) then accessing the simple http server via 'curl http://localhost' gives a 403 forbidden response.
nginx in the container changes to the nginx user id which doesn't seem to have access to the file tree.
The permissions on the pod's rootfs are different from that you get on ubuntu:
which means in the actual container 'other' permssions on the root of the filesystem are completely missing.
In additon the links to /dev/stdout and /dev/stderr for logging in the docker image Dockerfile don't work in ACI due to lack of the corresponding devices.
The text was updated successfully, but these errors were encountered: