We use cookies to ensure you get the best experience on our website
首页 发现 帮助
注册 登录
0ct0pu5
/
moby
1
0
派生 0
文件 工单管理 0 合并请求 0 Wiki
浏览代码

Allow port mapping only for endpoint created on docker run

Signed-off-by: Santhosh Manohar <santhosh@docker.com>
Santhosh Manohar 9 年之前
父节点
09980ef7ac
当前提交
dedcf6a6ff
共有 2 个文件被更改,包括 34 次插入5 次删除
分列视图 显示文件统计
  1. 14 5
      daemon/container_unix.go
  2. 20 0
      integration-cli/docker_cli_network_unix_test.go

+ 14 - 5
daemon/container_unix.go
查看文件 

@@ -611,7 +611,9 @@ func (container *Container) buildPortMapInfo(ep libnetwork.Endpoint, networkSett
 
 		return networkSettings, nil
 
 	}
 
 
-	networkSettings.Ports = nat.PortMap{}
 
+	if networkSettings.Ports == nil {
 
+		networkSettings.Ports = nat.PortMap{}
 
+	}
 
 
 	if expData, ok := driverInfo[netlabel.ExposedPorts]; ok {
 
 		if exposedPorts, ok := expData.([]types.TransportPort); ok {
 
@@ -810,6 +812,17 @@ func (container *Container) buildCreateEndpointOptions(n libnetwork.Network) ([]
 
 		createOptions []libnetwork.EndpointOption
 
 	)
 
 
+	if n.Name() == "bridge" || container.NetworkSettings.IsAnonymousEndpoint {
 
+		createOptions = append(createOptions, libnetwork.CreateOptionAnonymous())
 
+	}
 
+
 
+	// Other configs are applicable only for the endpoint in the network
 
+	// to which container was connected to on docker run.
 
+	if n.Name() != container.hostConfig.NetworkMode.NetworkName() &&
 
+		!(n.Name() == "bridge" && container.hostConfig.NetworkMode.IsDefault()) {
 
+		return createOptions, nil
 
+	}
 
+
 
 	if container.Config.ExposedPorts != nil {
 
 		portSpecs = container.Config.ExposedPorts
 
 	}
 
@@ -879,10 +892,6 @@ func (container *Container) buildCreateEndpointOptions(n libnetwork.Network) ([]
 
 		createOptions = append(createOptions, libnetwork.EndpointOptionGeneric(genericOption))
 
 	}
 
 
-	if n.Name() == "bridge" || container.NetworkSettings.IsAnonymousEndpoint {
 
-		createOptions = append(createOptions, libnetwork.CreateOptionAnonymous())
 
-	}
 
-
 
 	return createOptions, nil
 
 }

+ 20 - 0
integration-cli/docker_cli_network_unix_test.go
查看文件 

@@ -525,6 +525,7 @@ func (s *DockerNetworkSuite) TestDockerNetworkAnonymousEndpoint(c *check.C) {
 
 	testRequires(c, ExecSupport)
 
 	hostsFile := "/etc/hosts"
 
 	cstmBridgeNw := "custom-bridge-nw"
 
+	cstmBridgeNw1 := "custom-bridge-nw1"
 
 
 	dockerCmd(c, "network", "create", "-d", "bridge", cstmBridgeNw)
 
 	assertNwIsAvailable(c, cstmBridgeNw)
 
@@ -548,6 +549,18 @@ func (s *DockerNetworkSuite) TestDockerNetworkAnonymousEndpoint(c *check.C) {
 
 	c.Assert(string(hosts1), checker.Equals, string(hosts1post),
 
 		check.Commentf("Unexpected %s change on anonymous container creation", hostsFile))
 
 
+	// Connect the 2nd container to a new network and verify the
 
+	// first container /etc/hosts file still hasn't changed.
 
+	dockerCmd(c, "network", "create", "-d", "bridge", cstmBridgeNw1)
 
+	assertNwIsAvailable(c, cstmBridgeNw1)
 
+
 
+	dockerCmd(c, "network", "connect", cstmBridgeNw1, cid2)
 
+
 
+	hosts1post, err = readContainerFileWithExec(cid1, hostsFile)
 
+	c.Assert(err, checker.IsNil)
 
+	c.Assert(string(hosts1), checker.Equals, string(hosts1post),
 
+		check.Commentf("Unexpected %s change on container connect", hostsFile))
 
+
 
 	// start a named container
 
 	cName := "AnyName"
 
 	out, _ = dockerCmd(c, "run", "-d", "--net", cstmBridgeNw, "--name", cName, "busybox", "top")
 
@@ -782,3 +795,10 @@ func (s *DockerNetworkSuite) TestDockerNetworkDisconnectFromHost(c *check.C) {
 
 	c.Assert(err, checker.NotNil, check.Commentf("Should err out disconnect from host"))
 
 	c.Assert(out, checker.Contains, runconfig.ErrConflictHostNetwork.Error())
 
 }
 
+
 
+func (s *DockerNetworkSuite) TestDockerNetworkConnectWithPortMapping(c *check.C) {
 
+	dockerCmd(c, "network", "create", "test1")
 
+	dockerCmd(c, "run", "-d", "--name", "c1", "-p", "5000:5000", "busybox", "top")
 
+	c.Assert(waitRun("c1"), check.IsNil)
 
+	dockerCmd(c, "network", "connect", "test1", "c1")
 
+}

Contact | Legal | Takedown | Status
Self-hosted public services - About
NibbleSpot by 0ct0pu5