moby--moby/execdriver/native/default_template.go

package native

import (
	"github.com/dotcloud/docker/pkg/cgroups"
	"github.com/dotcloud/docker/pkg/libcontainer"
)

// getDefaultTemplate returns the docker default for
// the libcontainer configuration file
func getDefaultTemplate() *libcontainer.Container {
	return &libcontainer.Container{
		Capabilities: libcontainer.Capabilities{
			libcontainer.CAP_SETPCAP,
			libcontainer.CAP_SYS_MODULE,
			libcontainer.CAP_SYS_RAWIO,
			libcontainer.CAP_SYS_PACCT,
			libcontainer.CAP_SYS_ADMIN,
			libcontainer.CAP_SYS_NICE,
			libcontainer.CAP_SYS_RESOURCE,
			libcontainer.CAP_SYS_TIME,
			libcontainer.CAP_SYS_TTY_CONFIG,
			libcontainer.CAP_MKNOD,
			libcontainer.CAP_AUDIT_WRITE,
			libcontainer.CAP_AUDIT_CONTROL,
			libcontainer.CAP_MAC_ADMIN,
			libcontainer.CAP_MAC_OVERRIDE,
			libcontainer.CAP_NET_ADMIN,
		},
		Namespaces: libcontainer.Namespaces{
			libcontainer.CLONE_NEWIPC,
			libcontainer.CLONE_NEWNET,
			libcontainer.CLONE_NEWNS,
			libcontainer.CLONE_NEWPID,
			libcontainer.CLONE_NEWUTS,
		},
		Cgroups: &cgroups.Cgroup{
			Parent:       "docker",
			DeviceAccess: false,
		},
	}
}
Fix exec driver flag, rename new driver to 'native' Docker-DCO-1.1-Signed-off-by: Michael Crosby <michael@crosbymichael.com> (github: crosbymichael) 2014-02-24 23:41:09 -05:00			`package native`
Initial commit of libcontainer running docker Docker-DCO-1.1-Signed-off-by: Michael Crosby <michael@crosbymichael.com> (github: crosbymichael) 2014-02-21 20:11:57 -05:00
			`import (`
			`"github.com/dotcloud/docker/pkg/cgroups"`
			`"github.com/dotcloud/docker/pkg/libcontainer"`
			`)`

			`// getDefaultTemplate returns the docker default for`
			`// the libcontainer configuration file`
			`func getDefaultTemplate() *libcontainer.Container {`
			`return &libcontainer.Container{`
			`Capabilities: libcontainer.Capabilities{`
			`libcontainer.CAP_SETPCAP,`
			`libcontainer.CAP_SYS_MODULE,`
			`libcontainer.CAP_SYS_RAWIO,`
			`libcontainer.CAP_SYS_PACCT,`
			`libcontainer.CAP_SYS_ADMIN,`
			`libcontainer.CAP_SYS_NICE,`
			`libcontainer.CAP_SYS_RESOURCE,`
			`libcontainer.CAP_SYS_TIME,`
			`libcontainer.CAP_SYS_TTY_CONFIG,`
			`libcontainer.CAP_MKNOD,`
			`libcontainer.CAP_AUDIT_WRITE,`
			`libcontainer.CAP_AUDIT_CONTROL,`
			`libcontainer.CAP_MAC_ADMIN,`
			`libcontainer.CAP_MAC_OVERRIDE,`
			`libcontainer.CAP_NET_ADMIN,`
			`},`
			`Namespaces: libcontainer.Namespaces{`
			`libcontainer.CLONE_NEWIPC,`
			`libcontainer.CLONE_NEWNET,`
			`libcontainer.CLONE_NEWNS,`
			`libcontainer.CLONE_NEWPID,`
			`libcontainer.CLONE_NEWUTS,`
			`},`
			`Cgroups: &cgroups.Cgroup{`
Fix get pids for nsinit Docker-DCO-1.1-Signed-off-by: Michael Crosby <michael@crosbymichael.com> (github: crosbymichael) 2014-02-24 19:26:06 -05:00			`Parent: "docker",`
Initial commit of libcontainer running docker Docker-DCO-1.1-Signed-off-by: Michael Crosby <michael@crosbymichael.com> (github: crosbymichael) 2014-02-21 20:11:57 -05:00			`DeviceAccess: false,`
			`},`
			`}`
			`}`