On Wed, 8 Jun 2022 02:49:48 +0300 Dmitry Kozlyuk <dkozl...@nvidia.com> wrote:
> The guide to run DPDK applications as non-root in Linux > did not provide specific instructions to configure the required access > and did not explain why each bit is needed. > The latter is important because running as non-root > is one of the ways to tighten security and grant minimal permissions. > > Cc: sta...@dpdk.org > > Signed-off-by: Dmitry Kozlyuk <dkozl...@nvidia.com> If running with multiple containers it is often better to have OS take care of mounting huge pages. https://github.com/systemd/systemd/blob/main/units/dev-hugepages.mount And a good way for managing multiple applications using hugepages is to mount device with group permissions and add supplementary group to each container.
