mirror of
https://gitlab.com/libvirt/libvirt.git
synced 2024-12-23 06:05:27 +00:00
99f8fb4c55
From the code it seems to me that we need user namespace if configured in domain XML. Otherwise we don't use it at all. However our tool is more strict about that. Fix this discrepancy. Signed-off-by: Michal Privoznik <mprivozn@redhat.com>
98 lines
3.5 KiB
C
98 lines
3.5 KiB
C
/*
|
|
* virt-host-validate-lxc.c: Sanity check a LXC hypervisor host
|
|
*
|
|
* Copyright (C) 2012 Red Hat, Inc.
|
|
*
|
|
* This library is free software; you can redistribute it and/or
|
|
* modify it under the terms of the GNU Lesser General Public
|
|
* License as published by the Free Software Foundation; either
|
|
* version 2.1 of the License, or (at your option) any later version.
|
|
*
|
|
* This library is distributed in the hope that it will be useful,
|
|
* but WITHOUT ANY WARRANTY; without even the implied warranty of
|
|
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
|
|
* Lesser General Public License for more details.
|
|
*
|
|
* You should have received a copy of the GNU Lesser General Public
|
|
* License along with this library. If not, see
|
|
* <http://www.gnu.org/licenses/>.
|
|
*
|
|
*/
|
|
|
|
#include <config.h>
|
|
|
|
#include "virt-host-validate-lxc.h"
|
|
#include "virt-host-validate-common.h"
|
|
|
|
int virHostValidateLXC(void)
|
|
{
|
|
int ret = 0;
|
|
|
|
if (virHostValidateLinuxKernel("LXC", (2 << 16) | (6 << 8) | 26,
|
|
VIR_HOST_VALIDATE_FAIL,
|
|
_("Upgrade to a kernel supporting namespaces")) < 0)
|
|
ret = -1;
|
|
|
|
if (virHostValidateNamespace("LXC", "ipc",
|
|
VIR_HOST_VALIDATE_FAIL,
|
|
_("IPC namespace support is required")) < 0)
|
|
ret = -1;
|
|
|
|
if (virHostValidateNamespace("LXC", "mnt",
|
|
VIR_HOST_VALIDATE_FAIL,
|
|
_("Mount namespace support is required")) < 0)
|
|
ret = -1;
|
|
|
|
if (virHostValidateNamespace("LXC", "pid",
|
|
VIR_HOST_VALIDATE_FAIL,
|
|
_("PID namespace support is required")) < 0)
|
|
ret = -1;
|
|
|
|
if (virHostValidateNamespace("LXC", "uts",
|
|
VIR_HOST_VALIDATE_FAIL,
|
|
_("UTS namespace support is required")) < 0)
|
|
ret = -1;
|
|
|
|
if (virHostValidateNamespace("LXC", "net",
|
|
VIR_HOST_VALIDATE_WARN,
|
|
_("Network namespace support is recommended")) < 0)
|
|
ret = -1;
|
|
|
|
if (virHostValidateNamespace("LXC", "user",
|
|
VIR_HOST_VALIDATE_WARN,
|
|
_("User namespace support is recommended")) < 0)
|
|
ret = -1;
|
|
|
|
if (virHostValidateCGroupController("LXC", "memory",
|
|
VIR_HOST_VALIDATE_FAIL,
|
|
"MEMCG") < 0)
|
|
ret = -1;
|
|
|
|
if (virHostValidateCGroupController("LXC", "cpu",
|
|
VIR_HOST_VALIDATE_FAIL,
|
|
"CGROUP_SCHED") < 0)
|
|
ret = -1;
|
|
|
|
if (virHostValidateCGroupController("LXC", "cpuacct",
|
|
VIR_HOST_VALIDATE_FAIL,
|
|
"CGROUP_CPUACCT") < 0)
|
|
ret = -1;
|
|
|
|
if (virHostValidateCGroupController("LXC", "cpuset",
|
|
VIR_HOST_VALIDATE_FAIL,
|
|
"CPUSETS") < 0)
|
|
ret = -1;
|
|
|
|
if (virHostValidateCGroupController("LXC", "devices",
|
|
VIR_HOST_VALIDATE_FAIL,
|
|
"CGROUP_DEVICE") < 0)
|
|
ret = -1;
|
|
|
|
if (virHostValidateCGroupController("LXC", "blkio",
|
|
VIR_HOST_VALIDATE_FAIL,
|
|
"BLK_CGROUP") < 0)
|
|
ret = -1;
|
|
|
|
return ret;
|
|
}
|