Received: from wolfsden.cz (wolfsden.cz [37.205.8.62]) by nld3-dev1.alpinelinux.org (Postfix) with ESMTPS id 1F8F47805E2 for <~alpine/aports@lists.alpinelinux.org>; Mon, 26 Apr 2021 23:49:31 +0000 (UTC) Received: by wolfsden.cz (Postfix, from userid 110) id AB2044D853F; Mon, 26 Apr 2021 23:49:29 +0000 (UTC) X-Spam-Checker-Version: SpamAssassin 3.4.2 (2018-09-13) on wolfsden X-Spam-Level: X-Spam-Status: No, score=-2.1 required=5.0 tests=ALL_TRUSTED,BAYES_00, DKIM_ADSP_ALL autolearn=no autolearn_force=no version=3.4.2 Received: from localhost (unknown [128.0.188.242]) by wolfsden.cz (Postfix) with ESMTPSA id 801BF4D747A; Mon, 26 Apr 2021 23:49:29 +0000 (UTC) From: Wolf To: ~alpine/aports@lists.alpinelinux.org Cc: Wolf Subject: [PATCH] Fix race condition between docker and iptables Date: Tue, 27 Apr 2021 01:49:24 +0200 Message-Id: <20210426234924.187137-1-wolf@wolfsden.cz> X-Mailer: git-send-email 2.31.1 MIME-Version: 1.0 Content-Transfer-Encoding: 8bit When the system is booting, the order of docker and iptables was not specified due to the missing dependency. That could lead to docker setting up the chains and iptables wiping them clean if the order of start was 1. docker 2. iptables. Explicit dependency should make that working correctly. --- community/docker/docker.initd | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/community/docker/docker.initd b/community/docker/docker.initd index aa35285223..28bec90797 100644 --- a/community/docker/docker.initd +++ b/community/docker/docker.initd @@ -19,7 +19,7 @@ rc_ulimit="${DOCKER_ULIMIT:--c unlimited -n 1048576 -u unlimited}" retry="${DOCKER_RETRY:-TERM/60/KILL/10}" depend() { - need sysfs cgroups + need sysfs cgroups iptables ip6tables } start_pre() { -- 2.31.1