Skip to content

bump up rootlesskit to v0.9.4#40860

Merged
tianon merged 1 commit intomoby:masterfrom
AkihiroSuda:rootlesskit-094
Apr 27, 2020
Merged

bump up rootlesskit to v0.9.4#40860
tianon merged 1 commit intomoby:masterfrom
AkihiroSuda:rootlesskit-094

Conversation

@AkihiroSuda
Copy link
Copy Markdown
Member

@AkihiroSuda AkihiroSuda commented Apr 27, 2020

Now rootlesskit-docker-proxy returns detailed error message on exposing privileged ports: rootless-containers/rootlesskit#136

Full changes: rootless-containers/rootlesskit@v0.9.2...v0.9.4

Before:

$ docker --context=rootless run -it -p 80:80 --rm alpine
docker: Error response from daemon: driver failed programming external connectiv
ity on endpoint clever_euclid (77c992ce4056362ee89727f4d2d96c349bbb9013b14f4f201
2412f2fbc94718e): Error starting userland proxy:.

After:

$ docker --context=rootless run -it -p 80:80 --rm alpine
docker: Error response from daemon: driver failed programming external connectiv
ity on endpoint brave_murdock (71e0f00b4a8555cefd15d984d15f4dc255e4caa2ca5cc72df
8a04e463afc13b2): Error starting userland proxy: error while calling PortManager
.AddPort(): cannot expose privileged port 80, you might need to add "net.ipv4.ip
_unprivileged_port_start=0" (currently 1024) to /etc/sysctl.conf, or set CAP_NET
_BIND_SERVICE on rootlesskit binary: listen tcp 0.0.0.0:80: bind: permission den
ied.

@AkihiroSuda
bump up rootlesskit to v0.9.4
f6ac841 
Now `rootlesskit-docker-proxy` returns detailed error message on
exposing privileged ports: rootless-containers/rootlesskit#136

Full changes: rootless-containers/rootlesskit@v0.9.2...v0.9.4

Signed-off-by: Akihiro Suda <akihiro.suda.cz@hco.ntt.co.jp>
@AkihiroSuda AkihiroSuda requested a review from tianon as a code owner April 27, 2020 04:06
@AkihiroSuda AkihiroSuda added this to the 20.03.0 milestone Apr 27, 2020
thaJeztah
thaJeztah approved these changes Apr 27, 2020
View reviewed changes
Copy link
Copy Markdown
Member

@thaJeztah thaJeztah left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM

tianon
tianon approved these changes Apr 27, 2020
View reviewed changes
Copy link
Copy Markdown
Member

@tianon tianon left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Nice, LGTM 👍

@tianon tianon merged commit 45369c6 into moby:master Apr 27, 2020
@AkihiroSuda AkihiroSuda mentioned this pull request Apr 28, 2020
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@tianon tianon tianon approved these changes

@thaJeztah thaJeztah thaJeztah approved these changes

Assignees

No one assigned

Labels

area/rootless Rootless Mode process/cherry-picked status/2-code-review

Projects

None yet

Milestone

20.10.0

Development

Successfully merging this pull request may close these issues.

3 participants

@AkihiroSuda @tianon @thaJeztah