mirror/ youki
1
0
Fork 0
mirror of https://github.com/containers/youki synced 2024-05-27 09:56:11 +02:00
Code Issues
881 Commits 5 Branches 11 Tags 60 MiB
Commit Graph

41 Commits

Author SHA1 Message Date
Marcin Puc 8250b48bc1
Add various refactorings (#341) 2021-09-27 15:46:57 -07:00
Takashi IIGUNI 97848f1ce6
Updated cgroups oci-spec-rs to 0.5.1 or later (#303) 
* Updated cgroup oci-spec-rs to 0.5.1

Signed-off-by: Takashi IIGUNI <iiguni.tks@gmail.com>
 2021-09-26 18:08:56 -07:00
tiqwab 10c6c2642d Add test for find_parent_mount 2021-09-20 17:35:50 +09:00
tiqwab 254226c2c8 Add error context 2021-09-20 13:36:59 +09:00
tiqwab c1281066ad Support 'shared' and 'unbindable' rootfs propagations 2021-09-19 16:54:35 +09:00
utam0k 7aaa2fbfc3
Merge pull request #266 from guni1192/upgrade-oci-spec-rs 
Upgrade oci-spec-rs to 0.4.0
 2021-09-12 17:33:29 +09:00
Takashi IIGUNI ecf3370ba0 Upgrade oci-spec-rs to 0.4.0-with-bugfix version 
Signed-off-by: Takashi IIGUNI <iiguni.tks@gmail.com>
 2021-09-12 07:27:28 +00:00
tommady e0622c4d9d
follow runc to change the calling sequence of nix_mount 2021-09-11 05:14:33 +00:00
Takashi IIGUNI c83ac6a22b Merge remote-tracking branch 'upstream/main' into upgrade-oci-spec-rs 
Signed-off-by: Takashi IIGUNI <iiguni.tks@gmail.com>
 2021-09-07 02:32:41 +00:00
Takashi IIGUNI 8d3ff9b5f2 Upgrade oci-spec-rs to 0.4.0 for youki 
1. Fix capability type (Capability type change: Vec -> HashSet)
2. Implement functions equivalent to LinuxDeviceType::to_sflag in youki.
3. Fix crate path: use oci_spec::XXX -> use oci_spec::runtime::XXX

Signed-off-by: Takashi IIGUNI <iiguni.tks@gmail.com>
 2021-09-06 09:08:17 +00:00
yukang 7a1a20b725 code refacotor 2021-09-05 23:37:16 +08:00
yukang eecc60152e pass test case mounts/mounts 2021-09-05 21:26:28 +08:00
Furisto aa4d5dae94 Do not change directory inside a function 2021-09-01 00:17:51 +02:00
Furisto 41b4c0ccad Cleanup 2021-09-01 00:17:51 +02:00
Furisto 66ba9e3a69 Do not change into old directory 2021-09-01 00:17:51 +02:00
yihuaf ebf4708f46
Fix user namespace for integration tests (#233) 
* Fix entering into user namespace correctly

1. Allow entering user namespace when calling process is root.
Previously, only when calling process is non-root, will the rootless
condition be triggered.
2. Move the creation to the NotifyListener into main process. Once the
container init process enter into user namespace, we can't bind to a
unix domain socket where the parent directory is owned by root.

* Now we pass 2 more namespace tests
 2021-08-27 11:55:03 -07:00
utam0k a726e92df6
make sure to mount the default devices. 2021-08-10 09:27:45 +02:00
utam0k 2637df2bd4
add handling when mounts is not present. 2021-08-10 09:27:45 +02:00
utam0k 974f20dace
add handling when devices is not present. 2021-08-10 09:27:20 +02:00
utam0k 92ac22ae13
add handling when `mount_label` is not present. 2021-08-10 09:27:20 +02:00
utam0k 74af5f88f4
add handing when `rootfs_propagation` is not present. 2021-08-10 09:27:20 +02:00
Sascha Grunert fdf89fc9f8
Make optional types optional 
This adds a few missing types and synchronizes them with the
implementation in containrs. Optional types are now not required any
more which means that all necessary code paths in youki needs to be
adapted as well.

Signed-off-by: Sascha Grunert <sgrunert@redhat.com>
 2021-08-10 09:27:18 +02:00
utam0k 5088b3632e fix the warnings found by cargo clippy. 2021-08-01 19:17:24 +09:00
Sascha Grunert ade1c172a1
Generalize OCI spec root 
We now generalize and document the OCI `Spec` root structure. This means
that some fields have been added and other are now optional.

All corresponding usages of the new spec format have been changed and
tests have been adapted.

Signed-off-by: Sascha Grunert <sgrunert@redhat.com>
 2021-07-30 14:08:49 +02:00
utam0k 622fc1e5d1 bump up to nix-0.22.0 2021-07-27 17:59:38 +09:00
Yashodhan Joshi 44c682ec09 Converted linux in spec from Option<Linux> to Linux 
As Linux has Deafult trait, all occurrences of spec.linux would always unwrap it,
and not having linux present is a fetal error in youki, there is no need to keep it
in an Option wrapper.
 2021-07-24 19:02:55 +05:30
Peter Yordanov c4a5ae4d32 Added doc comments for modules 2021-06-06 14:33:51 +03:00
Peter Yordanov 37c03fa86d Fixed spelling mistake in src/rootfs.rs 2021-06-06 11:15:35 +03:00
Furisto b3812e7481 Formatting only 2021-05-30 16:59:14 +02:00
utam0k 37243cd695
Merge pull request #41 from utam0k/revert-async-mounts 
revert asynchronous devices mounting.
 2021-05-28 13:30:30 +09:00
ferrell-code d05ca197a8 get oci_spec in seperate crate 2021-05-27 20:53:19 -04:00
utam0k bed4396643 revert asynchronous devices mounting. 2021-05-28 08:37:24 +09:00
utam0k 2a17136455 revert async/await because it was unstable. 2021-05-15 16:35:31 +09:00
utam0k 1b3dcc2c59 introduce a command trait to enable unit testing. 2021-05-01 17:06:50 +09:00
utam0k 3f0007d19c implement the access limit of devices using cgroups. 2021-04-11 22:01:14 +09:00
utam0k 6402a1796f organize functions in the rootfs file. 2021-04-07 21:28:19 +09:00
utam0k a1bd9fa02d implement the extension trait to convert absolutly path to the path in container. 2021-04-07 21:07:01 +09:00
utam0k 0ec286ed5e fix the warnings that teaching by the clippy. 2021-04-05 22:57:30 +09:00
utam0k bc65640023 traial implementation of async/await. 2021-04-04 00:07:58 +09:00
utam0k 97324d75b3 make mount using async. 2021-03-30 22:04:03 +09:00
utam0k a08887d59a first commit! 2021-03-27 20:08:13 +09:00