From cb799fd19edc0d84ae2bbf32c7c8d1e1c7432209 Mon Sep 17 00:00:00 2001
From: Matt Heon <mheon@redhat.com>
Date: Fri, 2 Feb 2024 08:54:24 -0500
Subject: [PATCH] Fix updated runc dep breaking pod devices cgroup

The update to runc broke creation of devices for containers in
the pod cgroup. We don't support the device cgroup for pods at
present, so just disable it for now, resolving the issue.

Thanks to Giuseppe for finding the fix.

[NO NEW TESTS NEEDED] fixes a test break

Signed-off-by: Matt Heon <mheon@redhat.com>
---
 libpod/runtime_pod_linux.go | 1 +
 1 file changed, 1 insertion(+)

diff --git a/libpod/runtime_pod_linux.go b/libpod/runtime_pod_linux.go
index 830d9e4ef4..b456081054 100644
--- a/libpod/runtime_pod_linux.go
+++ b/libpod/runtime_pod_linux.go
@@ -39,6 +39,7 @@ func (r *Runtime) platformMakePod(pod *Pod, p specgen.PodSpecGenerator) error {
 							if err != nil {
 								return err
 							}
+							res.SkipDevices = true
 							// Need to both create and update the cgroup
 							// rather than create a new path in c/common for pod cgroup creation
 							// just create as if it is a ctr and then update figures out that we need to