UniqAI/nvidia-container-toolkit
1
0
Fork 0
mirror of https://github.com/NVIDIA/nvidia-container-toolkit synced 2025-06-03 11:27:17 +00:00
Code Issues Actions 8 Packages Projects Releases Wiki Activity
ec29b602c3
nvidia-container-toolkit/vendor
History
Evan Lezar ec29b602c3
Run update-ldcache in isolated namespaces 
This change uses the reexec package to run the update of the
ldcache in a container in a process with isolated namespaces.
Since the hook is invoked as a createContainer hook, these
namespaces are cloned from the container's namespaces.

In the reexec handler, we further isolate the proc filesystem,
mount the host ldconfig to a tmpfs, and pivot into the containers
root.

Signed-off-by: Evan Lezar <elezar@nvidia.com>
2025-05-15 12:45:49 +02:00
..
github.com Run update-ldcache in isolated namespaces 2025-05-15 12:45:49 +02:00
golang.org/x Bump golang.org/x/sys from 0.32.0 to 0.33.0 2025-05-06 09:31:22 +00:00
gopkg.in/yaml.v3 Bump tags.cncf.io/container-device-interface from 1.0.0 to 1.0.1 2025-03-24 09:08:27 +00:00
sigs.k8s.io/yaml Bump tags.cncf.io/container-device-interface from 1.0.0 to 1.0.1 2025-03-24 09:08:27 +00:00
tags.cncf.io/container-device-interface Bump tags.cncf.io/container-device-interface from 1.0.0 to 1.0.1 2025-03-24 09:08:27 +00:00
modules.txt Run update-ldcache in isolated namespaces 2025-05-15 12:45:49 +02:00