We use cookies to ensure you get the best experience on our website
صفحهٔ اصلی گشت‌و‌گذار راهنما
ثبت نام ورود
0ct0pu5
/
moby
1
0
انشعاب 0
پرونده‌ها مشکلات 0 درخواست واکشی 0 ویکی
درخت: ba1c20f8d6
شاخه‌ها تگ‌ها
moby
/
integration-cli
/
requirements_unix.go

requirements_unix.go 4.0 KB
تاريخچه خام

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159 
  1. // +build !windows
    2. 

  2. 

  3. package main
    4. 

  4. 

  5. import (
    6. 

  6. 	"bytes"
    7. 

  7. 	"io/ioutil"
    8. 

  8. 	"os/exec"
    9. 

  9. 	"strings"
    10. 

  10. 

  11. 	"github.com/docker/docker/pkg/parsers/kernel"
    12. 

  12. 	"github.com/docker/docker/pkg/sysinfo"
    13. 

  13. )
    14. 

  14. 

  15. var (
    16. 

  16. 	// SysInfo stores information about which features a kernel supports.
    17. 

  17. 	SysInfo      *sysinfo.SysInfo
    18. 

  18. 	cpuCfsPeriod = testRequirement{
    19. 

  19. 		func() bool {
    20. 

  20. 			return SysInfo.CPUCfsPeriod
    21. 

  21. 		},
    22. 

  22. 		"Test requires an environment that supports cgroup cfs period.",
    23. 

  23. 	}
    24. 

  24. 	cpuCfsQuota = testRequirement{
    25. 

  25. 		func() bool {
    26. 

  26. 			return SysInfo.CPUCfsQuota
    27. 

  27. 		},
    28. 

  28. 		"Test requires an environment that supports cgroup cfs quota.",
    29. 

  29. 	}
    30. 

  30. 	cpuShare = testRequirement{
    31. 

  31. 		func() bool {
    32. 

  32. 			return SysInfo.CPUShares
    33. 

  33. 		},
    34. 

  34. 		"Test requires an environment that supports cgroup cpu shares.",
    35. 

  35. 	}
    36. 

  36. 	oomControl = testRequirement{
    37. 

  37. 		func() bool {
    38. 

  38. 			return SysInfo.OomKillDisable
    39. 

  39. 		},
    40. 

  40. 		"Test requires Oom control enabled.",
    41. 

  41. 	}
    42. 

  42. 	pidsLimit = testRequirement{
    43. 

  43. 		func() bool {
    44. 

  44. 			return SysInfo.PidsLimit
    45. 

  45. 		},
    46. 

  46. 		"Test requires pids limit enabled.",
    47. 

  47. 	}
    48. 

  48. 	kernelMemorySupport = testRequirement{
    49. 

  49. 		func() bool {
    50. 

  50. 			return SysInfo.KernelMemory
    51. 

  51. 		},
    52. 

  52. 		"Test requires an environment that supports cgroup kernel memory.",
    53. 

  53. 	}
    54. 

  54. 	memoryLimitSupport = testRequirement{
    55. 

  55. 		func() bool {
    56. 

  56. 			return SysInfo.MemoryLimit
    57. 

  57. 		},
    58. 

  58. 		"Test requires an environment that supports cgroup memory limit.",
    59. 

  59. 	}
    60. 

  60. 	memoryReservationSupport = testRequirement{
    61. 

  61. 		func() bool {
    62. 

  62. 			return SysInfo.MemoryReservation
    63. 

  63. 		},
    64. 

  64. 		"Test requires an environment that supports cgroup memory reservation.",
    65. 

  65. 	}
    66. 

  66. 	swapMemorySupport = testRequirement{
    67. 

  67. 		func() bool {
    68. 

  68. 			return SysInfo.SwapLimit
    69. 

  69. 		},
    70. 

  70. 		"Test requires an environment that supports cgroup swap memory limit.",
    71. 

  71. 	}
    72. 

  72. 	memorySwappinessSupport = testRequirement{
    73. 

  73. 		func() bool {
    74. 

  74. 			return SysInfo.MemorySwappiness
    75. 

  75. 		},
    76. 

  76. 		"Test requires an environment that supports cgroup memory swappiness.",
    77. 

  77. 	}
    78. 

  78. 	blkioWeight = testRequirement{
    79. 

  79. 		func() bool {
    80. 

  80. 			return SysInfo.BlkioWeight
    81. 

  81. 		},
    82. 

  82. 		"Test requires an environment that supports blkio weight.",
    83. 

  83. 	}
    84. 

  84. 	cgroupCpuset = testRequirement{
    85. 

  85. 		func() bool {
    86. 

  86. 			return SysInfo.Cpuset
    87. 

  87. 		},
    88. 

  88. 		"Test requires an environment that supports cgroup cpuset.",
    89. 

  89. 	}
    90. 

  90. 	seccompEnabled = testRequirement{
    91. 

  91. 		func() bool {
    92. 

  92. 			return supportsSeccomp && SysInfo.Seccomp
    93. 

  93. 		},
    94. 

  94. 		"Test requires that seccomp support be enabled in the daemon.",
    95. 

  95. 	}
    96. 

  96. 	bridgeNfIptables = testRequirement{
    97. 

  97. 		func() bool {
    98. 

  98. 			return !SysInfo.BridgeNFCallIPTablesDisabled
    99. 

  99. 		},
    100. 

  100. 		"Test requires that bridge-nf-call-iptables support be enabled in the daemon.",
    101. 

  101. 	}
    102. 

  102. 	bridgeNfIP6tables = testRequirement{
    103. 

  103. 		func() bool {
    104. 

  104. 			return !SysInfo.BridgeNFCallIP6TablesDisabled
    105. 

  105. 		},
    106. 

  106. 		"Test requires that bridge-nf-call-ip6tables support be enabled in the daemon.",
    107. 

  107. 	}
    108. 

  108. 	unprivilegedUsernsClone = testRequirement{
    109. 

  109. 		func() bool {
    110. 

  110. 			content, err := ioutil.ReadFile("/proc/sys/kernel/unprivileged_userns_clone")
    111. 

  111. 			if err == nil && strings.Contains(string(content), "0") {
    112. 

  112. 				return false
    113. 

  113. 			}
    114. 

  114. 			return true
    115. 

  115. 		},
    116. 

  116. 		"Test cannot be run with 'sysctl kernel.unprivileged_userns_clone' = 0",
    117. 

  117. 	}
    118. 

  118. 	ambientCapabilities = testRequirement{
    119. 

  119. 		func() bool {
    120. 

  120. 			content, err := ioutil.ReadFile("/proc/self/status")
    121. 

  121. 			if err == nil && strings.Contains(string(content), "CapAmb:") {
    122. 

  122. 				return true
    123. 

  123. 			}
    124. 

  124. 			return false
    125. 

  125. 		},
    126. 

  126. 		"Test cannot be run without a kernel (4.3+) supporting ambient capabilities",
    127. 

  127. 	}
    128. 

  128. 	overlayFSSupported = testRequirement{
    129. 

  129. 		func() bool {
    130. 

  130. 			cmd := exec.Command(dockerBinary, "run", "--rm", "busybox", "/bin/sh", "-c", "cat /proc/filesystems")
    131. 

  131. 			out, err := cmd.CombinedOutput()
    132. 

  132. 			if err != nil {
    133. 

  133. 				return false
    134. 

  134. 			}
    135. 

  135. 			return bytes.Contains(out, []byte("overlay\n"))
    136. 

  136. 		},
    137. 

  137. 		"Test cannot be run without suppport for overlayfs",
    138. 

  138. 	}
    139. 

  139. 	overlay2Supported = testRequirement{
    140. 

  140. 		func() bool {
    141. 

  141. 			if !overlayFSSupported.Condition() {
    142. 

  142. 				return false
    143. 

  143. 			}
    144. 

  144. 

  145. 			daemonV, err := kernel.ParseRelease(daemonKernelVersion)
    146. 

  146. 			if err != nil {
    147. 

  147. 				return false
    148. 

  148. 			}
    149. 

  149. 			requiredV := kernel.VersionInfo{Kernel: 4}
    150. 

  150. 			return kernel.CompareKernelVersion(*daemonV, requiredV) > -1
    151. 

  151. 

  152. 		},
    153. 

  153. 		"Test cannot be run without overlay2 support (kernel 4.0+)",
    154. 

  154. 	}
    155. 

  155. )
    156. 

  156. 

  157. func init() {
    158. 

  158. 	SysInfo = sysinfo.New(true)
    159. 

  159. }
    160.

Contact | Legal | Takedown | Status
Self-hosted public services - About
NibbleSpot by 0ct0pu5