FilesExpand file tree

 main

/

start_hello.bats

Copy path

BlameMore file actions

BlameMore file actions

Latest commit

 

History

History

History

90 lines (72 loc) · 1.87 KB

 main

/

start_hello.bats

Top

File metadata and controls

• Code
• Blame

90 lines (72 loc) · 1.87 KB

Raw

Copy raw file

Download raw file

Open symbols panel

Edit and raw actions

1

2

3

4

5

6

7

8

9

10

11

12

13

14

15

16

17

18

19

20

21

22

23

24

25

26

27

28

29

30

31

32

33

34

35

36

37

38

39

40

41

42

43

44

45

46

47

48

49

50

51

52

53

54

55

56

57

58

59

60

61

62

63

64

65

66

67

68

69

70

71

72

73

74

75

76

77

78

79

80

81

82

83

84

85

86

87

88

89

90

#!/usr/bin/env bats

load helpers

function setup() {

setup_hello

}

function teardown() {

teardown_bundle

}

@test "runc run" {

# run hello-world

runc run test_hello

[ "$status" -eq 0 ]

# check expected output

[[ "${output}" == *"Hello"* ]]

}

@test "runc run ({u,g}id != 0)" {

# cannot start containers as another user in rootless setup without idmap

[[ "$ROOTLESS" -ne 0 ]] && requires rootless_idmap

# replace "uid": 0 with "uid": 1000

# and do a similar thing for gid.

update_config ' (.. | select(.uid? == 0)) .uid |= 1000

| (.. | select(.gid? == 0)) .gid |= 100'

# run hello-world

runc run test_hello

[ "$status" -eq 0 ]

# check expected output

[[ "${output}" == *"Hello"* ]]

}

@test "runc run with rootfs set to ." {

cp config.json rootfs/.

rm config.json

cd rootfs

update_config '(.. | select(. == "rootfs")) |= "."'

# run hello-world

runc run test_hello

[ "$status" -eq 0 ]

[[ "${output}" == *"Hello"* ]]

}

@test "runc run --pid-file" {

# run hello-world

runc run --pid-file pid.txt test_hello

[ "$status" -eq 0 ]

[[ "${output}" == *"Hello"* ]]

# check pid.txt was generated

[ -e pid.txt ]

[[ "$(cat pid.txt)" =~ [0-9]+ ]]

}

# https://github.com/opencontainers/runc/pull/2897

@test "runc run [rootless with host pidns]" {

requires rootless_no_features

# Remove pid namespace, and replace /proc mount

# with a bind mount from the host.

update_config ' .linux.namespaces -= [{"type": "pid"}]

| .mounts |= map((select(.type == "proc")

| .type = "none"

| .source = "/proc"

| .options = ["rbind", "nosuid", "nodev", "noexec"]

) // .)'

runc run test_hello

[ "$status" -eq 0 ]

}

@test "runc run [redundant seccomp rules]" {

update_config ' .linux.seccomp = {

"defaultAction": "SCMP_ACT_ALLOW",

"syscalls": [{

"names": ["bdflush"],

"action": "SCMP_ACT_ALLOW",

}]

}'

runc run test_hello

[ "$status" -eq 0 ]

}