[MESOS-8214] Run a task in the root user namespace - ASF JIRA

XML

Word

Printable

JSON

Details

Type: Improvement
Status: Open
Priority: Major
Resolution: Unresolved
Affects Version/s: None
Fix Version/s: None
Component/s: containerization, security
Labels:
None

Epic Link:
User Namespaces

Description

When the namespaces/user isolator is applied, we need a way for schedulers to be able to specify a task to run in the root user namespace since it might need to have real host privilege. This mechanism should be plumbed through the authorization system so the authorizer gets a chance to veto the scheduler.

Attachments

Activity

People

Assignee:: James Peach

Reporter:: James Peach

Votes:: 0 Vote for this issue

Watchers:: 2 Start watching this issue

Dates

Created:: 13/Nov/17 16:28

Updated:: 29/Apr/19 09:27