stackoom
  简体   繁体   中英

cron not running in a docker container with no capabilities

 原文  2021-12-09 14:54:27       linux/ docker/ kubernetes/ cron

Question

I have a docker container, in which I'm running the following cron job:

SHELL=/bin/bash
BASH_ENV=/container.env
*/1 * * * * find ${CLONE_DIR} -mmin +10 -exec rm -fr {} >> /var/log/cronjob.log 2>&1 \;

The cronjob works perfectly in my local environment (ie using docker-compose to launch the container).

In my production environment I use k8s and remove all capabilities from the container:

securityContext:
  capabilities:
    drop:
    - ALL

Which results in the job not running at all.

Checklist:

  • I verified that cron service is running.
  • No errors in the cron script.
  • crontab -l lists the job

I've tested the container with and without capabilities and can verify that with it it works, and without it doesn't. Therefore, I think this is the problem.

What capability should I add to my container in order for this to work? Thanks for your help and attention.

1 answers

solution1
 0  2021-12-13 12:46:31

The missing capability was: CAP_SETGID

暂无
暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question running a container with runAsNonRoot and add capabilities Solution for running scheduled cron job within a Docker container? Docker cron scheduled job not running Which capabilities can I drop in a Docker Nginx container? Running Disco in a Docker container running auditd in docker container Backup a running Docker container? Saving cron output to log within Docker container Start cron and another process in single docker container How to run a cron job inside a docker container
Related Tags
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM