663518ba66
Docker-DCO-1.1-Signed-off-by: Michael Crosby <michael@crosbymichael.com> (github: crosbymichael)
33 lines
992 B
Go
33 lines
992 B
Go
package main
|
|
|
|
import (
|
|
"github.com/dotcloud/docker/pkg/libcontainer"
|
|
"syscall"
|
|
)
|
|
|
|
var namespaceMap = map[libcontainer.Namespace]int{
|
|
libcontainer.CLONE_NEWNS: syscall.CLONE_NEWNS,
|
|
libcontainer.CLONE_NEWUTS: syscall.CLONE_NEWUTS,
|
|
libcontainer.CLONE_NEWIPC: syscall.CLONE_NEWIPC,
|
|
libcontainer.CLONE_NEWUSER: syscall.CLONE_NEWUSER,
|
|
libcontainer.CLONE_NEWPID: syscall.CLONE_NEWPID,
|
|
libcontainer.CLONE_NEWNET: syscall.CLONE_NEWNET,
|
|
}
|
|
|
|
var namespaceFileMap = map[libcontainer.Namespace]string{
|
|
libcontainer.CLONE_NEWNS: "mnt",
|
|
libcontainer.CLONE_NEWUTS: "uts",
|
|
libcontainer.CLONE_NEWIPC: "ipc",
|
|
libcontainer.CLONE_NEWUSER: "user",
|
|
libcontainer.CLONE_NEWPID: "pid",
|
|
libcontainer.CLONE_NEWNET: "net",
|
|
}
|
|
|
|
// getNamespaceFlags parses the container's Namespaces options to set the correct
|
|
// flags on clone, unshare, and setns
|
|
func getNamespaceFlags(namespaces libcontainer.Namespaces) (flag int) {
|
|
for _, ns := range namespaces {
|
|
flag |= namespaceMap[ns]
|
|
}
|
|
return flag
|
|
}
|