From e1daa22ba15894febfe84a21bf4705391c8e50c3 Mon Sep 17 00:00:00 2001 From: Akhil Mohan Date: Sun, 8 Dec 2019 19:55:18 +0530 Subject: [PATCH] Modify docs to specify working of device flag Modify the docker run docs, to specify working of --device flag in containers that are started in privileged mode. The custom device permissions that are given to a device in privileged mode are ignored and goes with `rwm` by default Signed-off-by: Akhil Mohan --- docs/reference/commandline/run.md | 3 ++- 1 file changed, 2 insertions(+), 1 deletion(-) diff --git a/docs/reference/commandline/run.md b/docs/reference/commandline/run.md index 9cc6e06198..47d1bbf6c8 100644 --- a/docs/reference/commandline/run.md +++ b/docs/reference/commandline/run.md @@ -560,7 +560,8 @@ device or audio device can be added to an otherwise unprivileged container By default, the container will be able to `read`, `write` and `mknod` these devices. This can be overridden using a third `:rwm` set of options to each `--device` -flag: +flag. If the container is running in privileged mode, then the permissions specified +will be ignored. ```bash $ docker run --device=/dev/sda:/dev/xvdc --rm -it ubuntu fdisk /dev/xvdc