opensource/podman
1
0
Fork 0
mirror of https://github.com/containers/podman.git synced 2025-05-22 01:27:07 +08:00
Code Issues Packages Projects Releases Wiki Activity

Merge pull request #7591 from haircommander/play-kube-process-namespace

Browse Source 
play/generate: support shareProcessNamespace
This commit is contained in:
OpenShift Merge Robot
2020-09-11 05:56:35 -04:00
committed by GitHub
parent e59c3ce1c5 b80b95eea0
commit d1798d0383
3 changed files with 42 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

8
libpod/kube.go
View File

@ -69,12 +69,20 @@ func (p *Pod) GenerateForKube() (*v1.Pod, []v1.ServicePort, error) {
return nil, servicePorts, err return nil, servicePorts, err
} }
servicePorts = containerPortsToServicePorts(ports) servicePorts = containerPortsToServicePorts(ports)
} }
pod, err := p.podWithContainers(allContainers, ports) pod, err := p.podWithContainers(allContainers, ports)
if err != nil { if err != nil {
return nil, servicePorts, err return nil, servicePorts, err
} }
pod.Spec.HostAliases = extraHost pod.Spec.HostAliases = extraHost
if p.SharesPID() {
// unfortunately, go doesn't have a nice way to specify a pointer to a bool
b := true
pod.Spec.ShareProcessNamespace = &b
}
return pod, servicePorts, nil return pod, servicePorts, nil
} }

6
pkg/domain/infra/abi/play.go
View File

@ -132,7 +132,11 @@ func (ic *ContainerEngine) playKubePod(ctx context.Context, podName string, podY
libpod.WithInfraContainer(), libpod.WithInfraContainer(),
libpod.WithPodName(podName), libpod.WithPodName(podName),
} }
// TODO for now we just used the default kernel namespaces; we need to add/subtract this from yaml // TODO we only configure Process namespace. We also need to account for Host{IPC,Network,PID}
// which is not currently possible with pod create
if podYAML.Spec.ShareProcessNamespace != nil && *podYAML.Spec.ShareProcessNamespace {
podOptions = append(podOptions, libpod.WithPodPID())
}
hostname := podYAML.Spec.Hostname hostname := podYAML.Spec.Hostname
if hostname == "" { if hostname == "" {

29
test/e2e/generate_kube_test.go
View File

@ -348,4 +348,33 @@ var _ = Describe("Podman generate kube", func() {
Expect(inspect.ExitCode()).To(Equal(0)) Expect(inspect.ExitCode()).To(Equal(0))
Expect(inspect.OutputToString()).To(ContainSubstring(vol1)) Expect(inspect.OutputToString()).To(ContainSubstring(vol1))
}) })
It("podman generate kube sharing pid namespace", func() {
podName := "test"
podSession := podmanTest.Podman([]string{"pod", "create", "--name", podName, "--share", "pid"})
podSession.WaitWithDefaultTimeout()
Expect(podSession.ExitCode()).To(Equal(0))
session := podmanTest.Podman([]string{"create", "--pod", podName, "--name", "test1", ALPINE, "top"})
session.WaitWithDefaultTimeout()
Expect(session.ExitCode()).To(Equal(0))
outputFile := filepath.Join(podmanTest.RunRoot, "pod.yaml")
kube := podmanTest.Podman([]string{"generate", "kube", podName, "-f", outputFile})
kube.WaitWithDefaultTimeout()
Expect(kube.ExitCode()).To(Equal(0))
rm := podmanTest.Podman([]string{"pod", "rm", "-f", podName})
rm.WaitWithDefaultTimeout()
Expect(rm.ExitCode()).To(Equal(0))
play := podmanTest.Podman([]string{"play", "kube", outputFile})
play.WaitWithDefaultTimeout()
Expect(play.ExitCode()).To(Equal(0))
inspect := podmanTest.Podman([]string{"pod", "inspect", podName})
inspect.WaitWithDefaultTimeout()
Expect(inspect.ExitCode()).To(Equal(0))
Expect(inspect.OutputToString()).To(ContainSubstring(`"pid"`))
})
}) })