Tim Gross 306cfabb62 docker: disallow volume mounts from host by default (#9321) ...

The default behavior for `docker.volumes.enabled` is intended to be `false`,
but the HCL schema defaults to `true` if the value is unset. Set the default
literal value to `true`.

Additionally, Docker driver mounts of type "volume" (but not "bind") are not
being properly sandboxed with that setting. Disable Docker mounts with type
"volume" entirely whenever the `docker.volumes.enabled` flag is set to
false. Note this is unrelated to the `volume_mount` feature, which is
constrained to preconfigured host volumes or whatever is mounted by a CSI
plugin.

This changeset includes updates to unit tests that should have been failing
under the documented behavior but were not.

2020-11-11 10:03:46 -05:00

..

cmd

cleanup driver eventor goroutines

2020-05-26 11:04:04 -04:00

docklog

Use Dockerhub Mirror. (#9220)

2020-11-02 09:28:02 -05:00

test-resources/docker

Parse security_opts before sending them to docker daemon

2020-03-31 08:34:41 -07:00

util

docker: Support stats on Windows

2019-02-22 14:19:58 +01:00

config_test.go

docker: image_delay default missing without gc stanza (#9101)

2020-10-15 12:36:01 -04:00

config.go

docker: disallow volume mounts from host by default (#9321)

2020-11-11 10:03:46 -05:00

coordinator_test.go

driver/docker: allow configurable pull context timeout setting.

2020-08-12 08:58:07 +01:00

coordinator.go

driver/docker: allow configurable pull context timeout setting.

2020-08-12 08:58:07 +01:00

driver_darwin_test.go

use allow/deny instead of the colored alternatives (#9019)

2020-10-12 08:47:05 -04:00

driver_default.go

docker: v19.03.8

2020-03-28 17:29:04 +01:00

driver_linux_test.go

don't GC images in tests by default

2020-05-26 21:24:55 -04:00

driver_pre09.go

client: fix bug during 0.8 state up grade that causes external drivers to fail

2019-01-30 14:22:29 -05:00

driver_test.go

docker: disallow volume mounts from host by default (#9321)

2020-11-11 10:03:46 -05:00

driver_unix_test.go

docker: disallow volume mounts from host by default (#9321)

2020-11-11 10:03:46 -05:00

driver_windows_test.go

Use Dockerhub Mirror. (#9220)

2020-11-02 09:28:02 -05:00

driver_windows.go

driver/docker: use default network mode

2019-07-31 21:07:46 +03:00

driver.go

docker: disallow volume mounts from host by default (#9321)

2020-11-11 10:03:46 -05:00

fingerprint_test.go

cleanup driver eventor goroutines

2020-05-26 11:04:04 -04:00

fingerprint.go

Run Linux Images (LCOW) and Windows Containers side by side (#7850)

2020-05-04 13:08:47 -04:00

handle.go

driver: allow disabling log collection

2019-12-08 14:15:03 -05:00

network.go

driver/docker: allow configurable pull context timeout setting.

2020-08-12 08:58:07 +01:00

ports.go

docker: support group allocated ports and host_networks (#8623)

2020-08-11 18:30:22 -04:00

progress_test.go

docker: started work on porting docker driver to new plugin framework

2018-11-19 22:59:15 -05:00

progress.go

Making pull activity timeout configurable in Docker

2019-12-18 12:58:53 +01:00

reconciler_test.go

don't GC images in tests by default

2020-05-26 21:24:55 -04:00

reconciler.go

add timeouts for docker reconciler docker calls

2019-10-18 15:31:13 -04:00

state.go

docker: started work on porting docker driver to new plugin framework

2018-11-19 22:59:15 -05:00

stats_test.go

docker: improve stats names and comments

2019-04-02 09:18:38 -07:00

stats.go

docker: improve stats names and comments

2019-04-02 09:18:38 -07:00

utils_test.go

driver/docker: Support volumes field in Windows

2019-04-25 09:02:44 -04:00

utils_unix_test.go

Remove argument passing runtime GOOS

2020-03-03 15:39:43 +01:00

utils_windows_test.go

Avoid resolving dotted segments when host path for volume is named pipe

2020-03-03 14:00:19 +01:00

utils.go

Resolve docker types conflict

2020-03-28 17:29:06 +01:00

win32_volume_parse.go

driver/docker: support unix destination mount path in windows

2019-08-01 19:54:08 +03:00