sandbox: expose share sandbox pidns setting

bergwolf · bergwolf · commit 34545f31bcd1 · 2018-06-20T17:05:36.000+08:00
So that we let callers decide if kata-agent should let all containers in a sandbox share the same pid namespace. Fixes: #426 Signed-off-by: Peng Tao <bergwolf@gmail.com>
diff --git a/virtcontainers/kata_agent.go b/virtcontainers/kata_agent.go
@@ -528,7 +528,7 @@ func (k *kataAgent) startSandbox(sandbox *Sandbox) error {
 	req := &grpc.CreateSandboxRequest{
 		Hostname:     hostname,
 		Storages:     storages,
-		SandboxPidns: false,
+		SandboxPidns: sandbox.sharePidNs,
 	}
 
 	_, err = k.sendReq(req)
diff --git a/virtcontainers/sandbox.go b/virtcontainers/sandbox.go
@@ -358,6 +358,9 @@ type SandboxConfig struct {
 	Annotations map[string]string
 
 	ShmSize uint64
+
+	// SharePidNs sets all containers to share the same sandbox level pid namespace.
+	SharePidNs bool
 }
 
 // valid checks that the sandbox configuration is valid.
@@ -462,7 +465,8 @@ type Sandbox struct {
 
 	wg *sync.WaitGroup
 
-	shmSize uint64
+	shmSize    uint64
+	sharePidNs bool
 }
 
 // ID returns the sandbox identifier string.
@@ -743,6 +747,7 @@ func newSandbox(sandboxConfig SandboxConfig) (*Sandbox, error) {
 		annotationsLock: &sync.RWMutex{},
 		wg:              &sync.WaitGroup{},
 		shmSize:         sandboxConfig.ShmSize,
+		sharePidNs:      sandboxConfig.SharePidNs,
 	}
 
 	if err = globalSandboxList.addSandbox(s); err != nil {

Original file line number	Diff line number	Diff line change
`@@ -528,7 +528,7 @@ func (k kataAgent) startSandbox(sandbox Sandbox) error {`
`528`	`528`	`req := &grpc.CreateSandboxRequest{`
`529`	`529`	`Hostname: hostname,`
`530`	`530`	`Storages: storages,`
`531`		`- SandboxPidns: false,`
	`531`	`+ SandboxPidns: sandbox.sharePidNs,`
`532`	`532`	`}`
`533`	`533`
`534`	`534`	`_, err = k.sendReq(req)`