Allow mounting of Non Read Write images read/only

We want to block the mounting of additional stores, for read/write, since they will not have any containers associated with them. But if a user is mounting an image for read/only access then their is no reason to block the mount. Signed-off-by: Daniel J Walsh <dwalsh@redhat.com>
2020-07-09 16:05:31 -04:00 · 2020-07-09 16:05:31 -04:00 · 0ef62eeea3
parent 7a480d21a9
commit 0ef62eeea3
1 changed files with 14 additions and 1 deletions
--- a/layers.go
+++ b/layers.go
@ -772,7 +772,20 @@ func (r *layerStore) Mounted(id string) (int, error) {
 }

 func (r *layerStore) Mount(id string, options drivers.MountOpts) (string, error) {
-	if !r.IsReadWrite() {
+
+	// check whether options include ro option
+	hasReadOnlyOpt := func(opts []string) bool {
+		for _, item := range opts {
+			if item == "ro" {
+				return false
+			}
+		}
+		return true
+	}
+
+	// You are not allowed to mount layers from readonly stores if they
+	// are not mounted read/only.
+	if !r.IsReadWrite() && !hasReadOnlyOpt(options.Options) {
 		return "", errors.Wrapf(ErrStoreIsReadOnly, "not allowed to update mount locations for layers at %q", r.mountspath())
 	}
 	r.mountsLockfile.Lock()