coreos-base/oem-gce: Bind mount nsswitch.conf for /etc/hosts

The host's /etc/nsswitch.conf is a symlink to /usr/share/google-oslogin/nsswitch.conf but that is not present in the rkt container. Do not only bind-mount /etc but also the target of the symlink. With a broken nsswitch.conf any entries in /etc/hosts are not considered which makes problems when a custom DNS server is used.
2025-10-03 19:42:15 +02:00 · 2020-01-24 16:09:18 +01:00 · 2020-01-24 16:09:18 +01:00 · ccd08f7c32
commit ccd08f7c32
parent 0cc0511167
1 changed files with 2 additions and 0 deletions
--- a/sdk_container/src/third_party/coreos-overlay/coreos-base/oem-gce/files/units/oem-gce.service
+++ b/sdk_container/src/third_party/coreos-overlay/coreos-base/oem-gce/files/units/oem-gce.service
@ -19,6 +19,8 @@ ExecStart=/usr/bin/rkt run \
    --volume=etc,kind=host,source=/etc,readOnly=false \
    --volume=home,kind=host,source=/home,readOnly=false \
    --volume=runsystemd,kind=host,source=/run/systemd,readOnly=false \
+    --volume=nsswitch,kind=host,source=/usr/share/google-oslogin/nsswitch.conf,readOnly=true \
+    --mount=volume=nsswitch,target=/usr/share/google-oslogin/nsswitch.conf \
    /usr/share/oem/flatcar-oem-gce.aci

 ExecStopPost=/usr/bin/rkt gc --mark-only