mirror of
https://github.com/containers/podman.git
synced 2025-07-14 01:50:02 +08:00
test: adapt test to work on cgroupv1
when running on a cgroupv1 host validate that the memory controller is mounted ro. Signed-off-by: Giuseppe Scrivano <gscrivan@redhat.com>
This commit is contained in:
@ -1017,8 +1017,17 @@ EOF
|
|||||||
}
|
}
|
||||||
|
|
||||||
@test "podman run --net=host --cgroupns=host with read only cgroupfs" {
|
@test "podman run --net=host --cgroupns=host with read only cgroupfs" {
|
||||||
# verify that the last /sys/fs/cgroup mount is read-only
|
skip_if_rootless_cgroupsv1
|
||||||
run_podman run --net=host --cgroupns=host --rm $IMAGE sh -c "grep ' / /sys/fs/cgroup ' /proc/self/mountinfo | tail -n 1 | grep '/sys/fs/cgroup ro'"
|
|
||||||
|
if is_cgroupsv1; then
|
||||||
|
# verify that the memory controller is mounted read-only
|
||||||
|
run_podman run --net=host --cgroupns=host --rm $IMAGE cat /proc/self/mountinfo
|
||||||
|
assert "$output" =~ "/sys/fs/cgroup/memory ro.* cgroup cgroup"
|
||||||
|
else
|
||||||
|
# verify that the last /sys/fs/cgroup mount is read-only
|
||||||
|
run_podman run --net=host --cgroupns=host --rm $IMAGE sh -c "grep ' / /sys/fs/cgroup ' /proc/self/mountinfo | tail -n 1"
|
||||||
|
assert "$output" =~ "/sys/fs/cgroup ro"
|
||||||
|
fi
|
||||||
}
|
}
|
||||||
|
|
||||||
# vim: filetype=sh
|
# vim: filetype=sh
|
||||||
|
Reference in New Issue
Block a user