-
Notifications
You must be signed in to change notification settings - Fork 2
Expand file tree
/
Copy pathinit-wrapper.sh
More file actions
executable file
·35 lines (29 loc) · 1.06 KB
/
init-wrapper.sh
File metadata and controls
executable file
·35 lines (29 loc) · 1.06 KB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
#!/bin/bash
#
# Wraps systemd init with two important precursor commands.
#
# Generally, "--privileged" is enough to run; you'll see more
# output with
# docker run -it ghcr.io/boldsoftware/exeuntu:latest
echo "Docker users can use Ctrl-P Ctrl-Q to detach."
if [[ $$ != 1 ]]; then
# There's a really opaque error about telinit otherwise...
echo "Must be run as pid 1 for systemd to start."
exit 1
fi
mkdir -p /run/systemd
if [[ ! -f /sys/fs/cgroup/cgroup.controllers ]]; then
mount -t cgroup2 none /sys/fs/cgroup
fi
if [[ -w /proc/sys/net/ipv4/ip_unprivileged_port_start ]]; then
printf '0\n' >/proc/sys/net/ipv4/ip_unprivileged_port_start
fi
if [[ -w /proc/sys/net/ipv6/ip_unprivileged_port_start ]]; then
printf '0\n' >/proc/sys/net/ipv6/ip_unprivileged_port_start
fi
# Kata containers default to mounting this readonly, but Docker needs
# to write to /proc/sys to set net.ipv4.ip_forward=1
mount -o remount,rw /proc/sys
echo "Starting systemd..."
# Add --log-level=debug to see more systemd debugging
exec /sbin/init --log-target=syslog --show-status=true