Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
Fix privileged and volumes for macsec container (sonic-net#16894)
### Why I did it Privileges and volumes were incorrectly set in macsec container. Privileged flag is set to false and volumes are not mounted properly. ``` admin@vlab-01:~$ docker inspect macsec0 | grep Privi "Privileged": false, admin@vlab-01:~$ docker inspect macsec0 | grep -A 10 Binds "Binds": [ "/var/run/redis0:/var/run/redis:rw", "/var/run/redis-chassis:/var/run/redis-chassis:ro", "/usr/share/sonic/device/x86_64-nokia_ixr7250e_36x400g-r0/Nokia-IXR7250E-36x100G/0:/usr/share/sonic/hwsku:ro", "/var/run/redis0/:/var/run/redis0/:rw", "/usr/share/sonic/device/x86_64-nokia_ixr7250e_36x400g-r0:/usr/share/sonic/platform:ro" ], ``` ### How I did it #### How to verify it Make sure privileged settings remain unchanged and make sure volumes are properly mounted ``` admin@vlab-01:~$ docker inspect macsec | grep Privi "Privileged": false, admin@vlab-01:~$ docker inspect macsec | grep -A 10 Binds "Binds": [ "/etc/timezone:/etc/timezone:ro", "/var/run/redis:/var/run/redis:rw", "/var/run/redis-chassis:/var/run/redis-chassis:ro", "/etc/fips/fips_enable:/etc/fips/fips_enable:ro", "/usr/share/sonic/templates/rsyslog-container.conf.j2:/usr/share/sonic/templates/rsyslog-container.conf.j2:ro", "/etc/sonic:/etc/sonic:ro", "/host/warmboot:/var/warmboot", "/usr/share/sonic/device/x86_64-kvm_x86_64-r0/Force10-S6000/:/usr/share/sonic/hwsku:ro", "/usr/share/sonic/device/x86_64-kvm_x86_64-r0:/usr/share/sonic/platform:ro" ], ```
- Loading branch information