Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

"privileged: true" required for mpd after latest image update #150

Open
melyux opened this issue Jul 28, 2020 · 1 comment
Open

"privileged: true" required for mpd after latest image update #150

melyux opened this issue Jul 28, 2020 · 1 comment

Comments

@melyux
Copy link

melyux commented Jul 28, 2020

I updated the vimagick/mpd container image recently (to the last update 6 days ago) and after that, the MPD container wouldn't start, giving only this in the logs: standard_init_linux.go:211: exec user process caused "operation not permitted".

I had to add privileged: true to the Docker Compose to get the container running again.
@nulltab
Copy link

nulltab commented Dec 30, 2020

Currently there are multiple workarounds:

  • build a custom image with capabilities removed from the mpd binary (works fine with swarm):
# Dockerfile for mpd
#

FROM alpine

RUN apk --update upgrade && apk add --no-cache mpd mpc && setcap -r /usr/bin/mpd
COPY mpd.conf /etc/mpd.conf
VOLUME /var/lib/mpd

EXPOSE 6600
CMD ["mpd", "--stdout", "--no-daemon"
  • add capabilities (will not work in swarm):
compose:

- cap_add:
  - SYS_NICE

--------

docker: 

--cap-add SYS_NICE
  • run in a privileged mode (not recommended, will not work in swarm).

@vimagick vimagick mentioned this issue Apr 6, 2021
Closed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@melyux @nulltab