reno 0.1.0

Implementation of the Open Container Initiative Runtime Specification
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61

use crate::linux::hostname;
use crate::linux::namespace;
use crate::linux::sysctl;
use crate::{hook, linux::device, linux::mount, state::State};

use anyhow::Result;
use oci_spec::runtime::{LinuxNamespace, Spec};

pub fn init_environment(
    spec: &Spec,
    state: &State,
    namespace_list: &[LinuxNamespace],
) -> Result<()> {
    namespace::set_namespace(namespace_list)?;

    let rootfs = &state.bundle.join(spec.root().as_ref().unwrap().path());
    mount::mount_rootfs(rootfs)?;

    if let Some(mounts) = &spec.mounts() {
        for mount in mounts {
            mount::custom_mount(rootfs, mount)?;
        }
    }

    if let Some(linux) = spec.linux() {
        if let Some(devices) = linux.devices() {
            for device in devices {
                device::create_device(rootfs, device)?;
            }
        }
    }

    device::create_default_device(rootfs)?;
    device::create_default_symlink(rootfs)?;

    if let Some(hostname) = spec.hostname() {
        hostname::set_hostname(hostname)?;
    }

    Ok(())
}

pub fn create_container(spec: &Spec, state: &State) -> Result<()> {
    if let Some(hooks) = spec.hooks() {
        if let Some(create_container_hooks) = hooks.create_container() {
            for create_container_hook in create_container_hooks {
                hook::run_hook(state, create_container_hook)?;
            }
        }
    }

    let rootfs = &state.bundle.join(spec.root().as_ref().unwrap().path());
    mount::pivot_rootfs(rootfs)?;

    if let Some(linux) = spec.linux() {
        if let Some(sysctl) = linux.sysctl() {
            sysctl::set_sysctl(sysctl)?;
        }
    }
    Ok(())
}