personal_interest_mirrors/bocker
1
0
Fork 0
mirror of https://github.com/p8952/bocker.git synced 2025-11-08 23:34:00 +01:00
Code Issues Actions Packages Projects Releases Wiki Activity

Make each isolation level in bocker_run more clear

Browse Source
This commit is contained in:
Peter Wilmott 2015-07-31 21:59:07 +00:00
parent 1f48b32c42
commit f33b31b3d6
1 changed files with 5 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

7
bocker
View File

@ -78,8 +78,11 @@ function bocker_run() { #HELP Create a container:\nBOCKER run <image_id> <comman
cgcreate -g "$cgroups:/$uuid"
cgset -r cpuset.cpus=0-1 "$uuid" && cgset -r cpuset.mems=0 "$uuid"
cgset -r memory.limit_in_bytes=512000000 "$uuid"
cgexec -g "$cgroups:$uuid" ip netns exec netns_"$uuid" "unshare" -fmuip --mount-proc "chroot" \
"$btrfs_path/$uuid" /bin/sh -c "/bin/mount -t proc proc /proc && $cmd" \
cgexec -g "$cgroups:$uuid" \
ip netns exec netns_"$uuid" \
unshare -fmuip --mount-proc \
chroot "$btrfs_path/$uuid" \
/bin/sh -c "/bin/mount -t proc proc /proc && $cmd" \
2>&1 | tee "$btrfs_path/$uuid/$uuid.log" || true
ip link del dev veth0_"$uuid"
ip netns del netns_"$uuid"