From 4a4c9b6abfe841fe5ac2121e6dbafc1f8eb94900 Mon Sep 17 00:00:00 2001 From: Till! Date: Sat, 2 Sep 2023 12:45:07 +0200 Subject: [PATCH] Fix: USER (runAsNonRoot) Supply the numeric uid/gid of the user/group created early in the Dockerfile. This is to ensure that (on k8s) runAsNonRoot works as expected because the username could indeed map to root (uid 0). --- Dockerfile-dind-rootless.template | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/Dockerfile-dind-rootless.template b/Dockerfile-dind-rootless.template index 3d9c76782d..2999277ed8 100644 --- a/Dockerfile-dind-rootless.template +++ b/Dockerfile-dind-rootless.template @@ -43,4 +43,4 @@ RUN set -eux; \ mkdir -p /home/rootless/.local/share/docker; \ chown -R rootless:rootless /home/rootless/.local/share/docker VOLUME /home/rootless/.local/share/docker -USER rootless +USER 1000:1000