runc: mount tmpfs to /rebel

author: Matthias Schiffer <mschiffer@universe-factory.net> 2021-04-03 16:09:11 +0200
committer: Matthias Schiffer <mschiffer@universe-factory.net> 2021-04-03 16:09:11 +0200
commit: 1a792c68960fe2d158528fd2349ddb29c593eb08 (patch)
tree: d165c2b05d05a4623ccb977aaadaad5f671de0b8 /src
parent: 680b121cebabd80a397e7915d5a7507cedb8c0a8 (diff)
download: rebel-1a792c68960fe2d158528fd2349ddb29c593eb08.tar
rebel-1a792c68960fe2d158528fd2349ddb29c593eb08.zip
1 files changed, 13 insertions, 0 deletions
diff --git a/src/runner/runc/spec.rs b/src/runner/runc/spec.rs
index 028e093..4335a43 100644
--- a/src/runner/runc/spec.rs
+++ b/src/runner/runc/spec.rs
@@ -32,6 +32,19 @@ pub fn generate_spec(run: &str) -> runtime::Spec {
 		"hostname": "rebel-builder",
 		"mounts": [
 			{
+				"destination": "/rebel",
+				"type": "tmpfs",
+				"source": "tmpfs",
+				"options": [
+					"nosuid",
+					"nodev",
+					"strictatime",
+					"mode=755",
+					format!("uid={}", unshare::BUILD_UID),
+					format!("gid={}", unshare::BUILD_GID),
+				]
+			},
+			{
 				"destination": "/proc",
 				"type": "proc",
 				"source": "proc"
author	Matthias Schiffer <mschiffer@universe-factory.net>	2021-04-03 16:09:11 +0200
committer	Matthias Schiffer <mschiffer@universe-factory.net>	2021-04-03 16:09:11 +0200
commit	1a792c68960fe2d158528fd2349ddb29c593eb08 (patch)
tree	d165c2b05d05a4623ccb977aaadaad5f671de0b8 /src
parent	680b121cebabd80a397e7915d5a7507cedb8c0a8 (diff)
download	rebel-1a792c68960fe2d158528fd2349ddb29c593eb08.tar rebel-1a792c68960fe2d158528fd2349ddb29c593eb08.zip