rootless: drop permission check for devices

commit 350ede1 added the feature. Do not check whether the device is usable by the rootless user before adding to the container. Closes: containers#12704 [NO NEW TESTS NEEDED] it requires changes on the host to test it Signed-off-by: Giuseppe Scrivano <[email protected]>
giuseppe · Jan 27, 2022 · 6336e1f · 6336e1f
1 parent 09589fc
commit 6336e1f
Showing 1 changed file with 0 additions and 11 deletions.
diff --git a/pkg/specgen/generate/config_linux.go b/pkg/specgen/generate/config_linux.go
@@ -47,17 +47,6 @@ func addPrivilegedDevices(g *generate.Generator) error {
 			if _, found := mounts[d.Path]; found {
 				continue
 			}
-			st, err := os.Stat(d.Path)
-			if err != nil {
-				if err == unix.EPERM {
-					continue
-				}
-				return err
-			}
-			// Skip devices that the user has not access to.
-			if st.Mode()&0007 == 0 {
-				continue
-			}
 			newMounts = append(newMounts, devMnt)
 		}
 		g.Config.Mounts = append(newMounts, g.Config.Mounts...)