[
https://issues.apache.org/jira/browse/MESOS-7156?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15878897#comment-15878897
]
Bruce Merry commented on MESOS-7156:
------------------------------------
Thanks, with that hint I was able to hunt down the documentation:
https://mesos.apache.org/documentation/latest/linux_capabilities/ says "The
isolator adds support for controlling Linux Capabilities of containers launched
using the MesosContainerizer."
No promises, but if I was to implement support for this in the Docker
containerizer, is that something that would be likely to be accepted? For now
I'm just using DockerInfo.parameters, but I'd like to eventually be
future-proofed against that field going away.
> Docker containerizer ignores capability requests
> ------------------------------------------------
>
> Key: MESOS-7156
> URL: https://issues.apache.org/jira/browse/MESOS-7156
> Project: Mesos
> Issue Type: Bug
> Components: containerization, documentation
> Affects Versions: 1.1.0
> Environment: Ubuntu 16.04
> Reporter: Bruce Merry
> Priority: Minor
>
> I'm trying to set a capability (SYS_NICE) by populating the
> linux_info.capability_info.capabilities field in a ContainerInfo, while using
> the Docker containerizer. I was expecting this to turn into a `--cap-add`
> argument passed to Docker, but in fact nothing happens. I also grepped the
> source of Mesos HEAD and there doesn't seem to be any code to pass --cap-add.
> Maybe this is intended, but I couldn't find anything to indicate this in the
> documentation or in mesos.proto, and the placement of linux_info in
> ContainerInfo rather than in MesosInfo led me to expect that it would be
> supported independently of the containerizer.
--
This message was sent by Atlassian JIRA
(v6.3.15#6346)
