We use cookies to ensure you get the best experience on our website
Почетна Преглед Помоћ
Регистрација Пријавите се
0ct0pu5
/
moby
1
0
Креирај огранак 0
Датотеке Дискусије 0 Захтеви за спајање 0 Вики
Дрво: 210932b3bf
Гране Ознаке
moby
/
daemon
/
initlayer
/
setup_unix.go

setup_unix.go 2.0 KB
Историја Датотека

12345678910111213141516171819202122232425262728293031323334353637383940414243444546474849505152535455565758596061626364656667686970717273 
  1. //go:build linux || freebsd
    2. 

  2. // +build linux freebsd
    3. 

  3. 

  4. package initlayer // import "github.com/docker/docker/daemon/initlayer"
    5. 

  5. 

  6. import (
    7. 

  7. 	"os"
    8. 

  8. 	"path/filepath"
    9. 

  9. 	"strings"
    10. 

  10. 

  11. 	"github.com/docker/docker/pkg/idtools"
    12. 

  12. 	"golang.org/x/sys/unix"
    13. 

  13. )
    14. 

  14. 

  15. // Setup populates a directory with mountpoints suitable
    16. 

  16. // for bind-mounting things into the container.
    17. 

  17. //
    18. 

  18. // This extra layer is used by all containers as the top-most ro layer. It protects
    19. 

  19. // the container from unwanted side-effects on the rw layer.
    20. 

  20. func Setup(initLayerFs string, rootIdentity idtools.Identity) error {
    21. 

  21. 	// Since all paths are local to the container, we can just extract initLayerFs.Path()
    22. 

  22. 	initLayer := initLayerFs
    23. 

  23. 

  24. 	for pth, typ := range map[string]string{
    25. 

  25. 		"/dev/pts":         "dir",
    26. 

  26. 		"/dev/shm":         "dir",
    27. 

  27. 		"/proc":            "dir",
    28. 

  28. 		"/sys":             "dir",
    29. 

  29. 		"/.dockerenv":      "file",
    30. 

  30. 		"/etc/resolv.conf": "file",
    31. 

  31. 		"/etc/hosts":       "file",
    32. 

  32. 		"/etc/hostname":    "file",
    33. 

  33. 		"/dev/console":     "file",
    34. 

  34. 		"/etc/mtab":        "/proc/mounts",
    35. 

  35. 	} {
    36. 

  36. 		parts := strings.Split(pth, "/")
    37. 

  37. 		prev := "/"
    38. 

  38. 		for _, p := range parts[1:] {
    39. 

  39. 			prev = filepath.Join(prev, p)
    40. 

  40. 			unix.Unlink(filepath.Join(initLayer, prev))
    41. 

  41. 		}
    42. 

  42. 

  43. 		if _, err := os.Stat(filepath.Join(initLayer, pth)); err != nil {
    44. 

  44. 			if os.IsNotExist(err) {
    45. 

  45. 				if err := idtools.MkdirAllAndChownNew(filepath.Join(initLayer, filepath.Dir(pth)), 0o755, rootIdentity); err != nil {
    46. 

  46. 					return err
    47. 

  47. 				}
    48. 

  48. 				switch typ {
    49. 

  49. 				case "dir":
    50. 

  50. 					if err := idtools.MkdirAllAndChownNew(filepath.Join(initLayer, pth), 0o755, rootIdentity); err != nil {
    51. 

  51. 						return err
    52. 

  52. 					}
    53. 

  53. 				case "file":
    54. 

  54. 					f, err := os.OpenFile(filepath.Join(initLayer, pth), os.O_CREATE, 0o755)
    55. 

  55. 					if err != nil {
    56. 

  56. 						return err
    57. 

  57. 					}
    58. 

  58. 					f.Chown(rootIdentity.UID, rootIdentity.GID)
    59. 

  59. 					f.Close()
    60. 

  60. 				default:
    61. 

  61. 					if err := os.Symlink(typ, filepath.Join(initLayer, pth)); err != nil {
    62. 

  62. 						return err
    63. 

  63. 					}
    64. 

  64. 				}
    65. 

  65. 			} else {
    66. 

  66. 				return err
    67. 

  67. 			}
    68. 

  68. 		}
    69. 

  69. 	}
    70. 

  70. 

  71. 	// Layer is ready to use, if it wasn't before.
    72. 

  72. 	return nil
    73. 

  73. }
    74.

Contact | Legal | Takedown | Status
Self-hosted public services - About
NibbleSpot by 0ct0pu5