We use cookies to ensure you get the best experience on our website
Página Principal Explorar Ajuda
Registe-se Iniciar Sessão
0ct0pu5
/
moby
1
0
Fork 0
Ficheiros Problemas 0 Pull Requests 0 Wiki
Ver Fonte

Show "seccomp" in docker info (#20909).

This pull request added a `SecurityOptions` field in the `GET /info`
output to show if there is `apparmor`, `seccomp`, or `selinux` suport.

The API changes are updated in the documentation and the update in
`GET /info` is covered by the test case in `TestInfoApi`.

This pull request fixes #20909.

Signed-off-by: Yong Tang <yong.tang.github@outlook.com>
Yong Tang há 9 anos atrás
pai
2f35c6b3fb
commit
190654aa2e
4 ficheiros alterados com 20 adições e 1 exclusões
Visão Dividida Mostrar Estatísticas Diff
  1. 12 0
      daemon/info.go
  2. 1 0
      docs/reference/api/docker_remote_api.md
  3. 5 0
      docs/reference/api/docker_remote_api_v1.24.md
  4. 2 1
      integration-cli/docker_api_info_test.go

+ 12 - 0
daemon/info.go
Ver Ficheiro 

@@ -67,6 +67,17 @@ func (daemon *Daemon) SystemInfo() (*types.Info, error) {
 
 		}
 
 	})
 
 
+	var securityOptions []string
 
+	if sysInfo.AppArmor {
 
+		securityOptions = append(securityOptions, "apparmor")
 
+	}
 
+	if sysInfo.Seccomp {
 
+		securityOptions = append(securityOptions, "seccomp")
 
+	}
 
+	if selinuxEnabled() {
 
+		securityOptions = append(securityOptions, "selinux")
 
+	}
 
+
 
 	v := &types.Info{
 
 		ID:                 daemon.ID,
 
 		Containers:         int(cRunning + cPaused + cStopped),
 
@@ -104,6 +115,7 @@ func (daemon *Daemon) SystemInfo() (*types.Info, error) {
 
 		HTTPProxy:          sockets.GetProxyEnv("http_proxy"),
 
 		HTTPSProxy:         sockets.GetProxyEnv("https_proxy"),
 
 		NoProxy:            sockets.GetProxyEnv("no_proxy"),
 
+		SecurityOptions:    securityOptions,
 
 	}
 
 
 	// TODO Windows. Refactor this more once sysinfo is refactored into

+ 1 - 0
docs/reference/api/docker_remote_api.md
Ver Ficheiro 

@@ -117,6 +117,7 @@ This section lists each version from latest to oldest.  Each listing includes a
 
 [Docker Remote API v1.24](docker_remote_api_v1.24.md) documentation
 
 
 * `POST /containers/create` now takes `StorageOpt` field.
 
+* `GET /info` now returns `SecurityOptions` field, showing if `apparmor`, `seccomp`, or `selinux` is supported.
 
 
 ### v1.23 API changes

+ 5 - 0
docs/reference/api/docker_remote_api_v1.24.md
Ver Ficheiro 

@@ -2239,6 +2239,11 @@ Display system-wide information
 
                 "127.0.0.0/8"
 
             ]
 
         },
 
+        "SecurityOptions": [
 
+            "apparmor",
 
+            "seccomp",
 
+            "selinux"
 
+        ],
 
         "ServerVersion": "1.9.0",
 
         "SwapLimit": false,
 
         "SystemStatus": [["State", "Healthy"]],

+ 2 - 1
integration-cli/docker_api_info_test.go
Ver Ficheiro 

@@ -31,7 +31,8 @@ func (s *DockerSuite) TestInfoApi(c *check.C) {
 
 		"MemTotal",
 
 		"KernelVersion",
 
 		"Driver",
 
-		"ServerVersion"}
 
+		"ServerVersion",
 
+		"SecurityOptions"}
 
 
 	out := string(body)
 
 	for _, linePrefix := range stringsToCheck {

Contact | Legal | Takedown | Status
Self-hosted public services - About
NibbleSpot by 0ct0pu5