How to pass /dev/mem without --privileged?

mu509 · September 3, 2020, 7:20pm

Hello all.

I am trying to put a script into a docker container that requires access to /dev/mem. I am running into an issue because I cannot control how the docker image is run, basically in production I do not have the ability to add --privileged but that’s one of the only ways I have gotten the container to work as expected.

I have also had success running the container with --cap-add SYS_RAWIO --device /dev/mem:/dev/mem. This is probably a slightly better solution as its not giving the container complete privileged access to the host, however I have the same problem when deploying the container. I cannot add any flags/arguments before the container name.

Does anyone have a possible workaround? Any advice/help would be much appreciated!

Test Host OS’s: Ubuntu 16.04 Desktop, Liunux Mint 19.1, Ubuntu 18 Desktop
Docker version 19.03.6, build 369ce74a3c

Topic		Replies	Views
Procedure for moving away from --privileged General docker	1	532	July 31, 2020
/dev/mem no such file or directory in Ubuntu Linux 14.04 container General	6	22723	November 6, 2020
Docker privileged containers General docker	2	1241	August 20, 2021
How to deny use of --privileged or --cap-add options? General	3	2583	April 11, 2016
Docker GUI Applications (use of xhost+) General	0	4158	December 23, 2022

How to pass /dev/mem without --privileged?

Related topics