no significant changes to mounts

the mode for a lot of files have inode64 on them now, not something we control directly though. cgroup/misc was added, we'd get that for free too without making any changes. looks like /proc/sched_debug isn't there in newer kernels. Struggled to find docs about this, just seems to be gone. /sys/devices/virtual/powercap is a new one, but doesn't seem to matter if we mount that or not Signed-off-by: Taylor Silva <dev@taydev.net>
concourse · Apr 21, 2024 · 8d5ae75 · 8d5ae75
1 parent 883ba8f
commit 8d5ae75
Showing 1 changed file with 11 additions and 10 deletions.
diff --git a/tasks/scripts/docker-mounts b/tasks/scripts/docker-mounts
@@ -4,10 +4,10 @@ set -e -x -u
 
 cat > expected_docker_mounts <<EOF
 proc on /proc type proc (rw,nosuid,nodev,noexec,relatime)
-tmpfs on /dev type tmpfs (rw,nosuid,size=65536k,mode=755)
+tmpfs on /dev type tmpfs (rw,nosuid,size=65536k,mode=755,inode64)
 devpts on /dev/pts type devpts (rw,nosuid,noexec,relatime,gid=5,mode=620,ptmxmode=666)
 sysfs on /sys type sysfs (ro,nosuid,nodev,noexec,relatime)
-tmpfs on /sys/fs/cgroup type tmpfs (rw,nosuid,nodev,noexec,relatime,mode=755)
+tmpfs on /sys/fs/cgroup type tmpfs (rw,nosuid,nodev,noexec,relatime,mode=755,inode64)
 cgroup on /sys/fs/cgroup/systemd type cgroup (ro,nosuid,nodev,noexec,relatime,xattr,name=systemd)
 cgroup on /sys/fs/cgroup/cpuset type cgroup (ro,nosuid,nodev,noexec,relatime,cpuset)
 cgroup on /sys/fs/cgroup/cpu,cpuacct type cgroup (ro,nosuid,nodev,noexec,relatime,cpu,cpuacct)
@@ -20,8 +20,9 @@ cgroup on /sys/fs/cgroup/net_cls,net_prio type cgroup (ro,nosuid,nodev,noexec,re
 cgroup on /sys/fs/cgroup/hugetlb type cgroup (ro,nosuid,nodev,noexec,relatime,hugetlb)
 cgroup on /sys/fs/cgroup/pids type cgroup (ro,nosuid,nodev,noexec,relatime,pids)
 cgroup on /sys/fs/cgroup/rdma type cgroup (ro,nosuid,nodev,noexec,relatime,rdma)
+cgroup on /sys/fs/cgroup/misc type cgroup (ro,nosuid,nodev,noexec,relatime,misc)
 mqueue on /dev/mqueue type mqueue (rw,nosuid,nodev,noexec,relatime)
-shm on /dev/shm type tmpfs (rw,nosuid,nodev,noexec,relatime,size=65536k)
+shm on /dev/shm type tmpfs (rw,nosuid,nodev,noexec,relatime,size=65536k,inode64)
 /dev/sdb on /etc/resolv.conf type ext4 (rw,relatime)
 /dev/sdb on /etc/hostname type ext4 (rw,relatime)
 /dev/sdb on /etc/hosts type ext4 (rw,relatime)
@@ -31,13 +32,13 @@ proc on /proc/fs type proc (ro,relatime)
 proc on /proc/irq type proc (ro,relatime)
 proc on /proc/sys type proc (ro,relatime)
 proc on /proc/sysrq-trigger type proc (ro,relatime)
-tmpfs on /proc/acpi type tmpfs (ro,relatime)
-tmpfs on /proc/kcore type tmpfs (rw,nosuid,size=65536k,mode=755)
-tmpfs on /proc/keys type tmpfs (rw,nosuid,size=65536k,mode=755)
-tmpfs on /proc/timer_list type tmpfs (rw,nosuid,size=65536k,mode=755)
-tmpfs on /proc/sched_debug type tmpfs (rw,nosuid,size=65536k,mode=755)
-tmpfs on /proc/scsi type tmpfs (ro,relatime)
-tmpfs on /sys/firmware type tmpfs (ro,relatime)
+tmpfs on /proc/acpi type tmpfs (ro,relatime,inode64)
+tmpfs on /proc/kcore type tmpfs (rw,nosuid,size=65536k,mode=755,inode64)
+tmpfs on /proc/keys type tmpfs (rw,nosuid,size=65536k,mode=755,inode64)
+tmpfs on /proc/timer_list type tmpfs (rw,nosuid,size=65536k,mode=755,inode64)
+tmpfs on /proc/scsi type tmpfs (ro,relatime,inode64)
+tmpfs on /sys/firmware type tmpfs (ro,relatime,inode64)
+tmpfs on /sys/devices/virtual/powercap type tmpfs (ro,relatime,inode64)
 EOF
 
 cat > expected_privileged_docker_mounts <<EOF