GuillaumeHemmen/docker-bench-security
1
0
Fork 0
mirror of https://github.com/docker/docker-bench-security.git synced 2024-11-01 08:31:44 +01:00
Code Issues Projects Releases Packages Wiki Activity

Updated mountpoint check to support user namespace

Browse source
This commit is contained in:
mark 2020-09-29 12:41:25 +02:00
parent 919816dbbf
commit d85c73316a
1 changed files with 6 additions and 3 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

9
tests/1_host_configuration.sh
View file

@ -73,9 +73,12 @@ check_1_2_1() {
starttestjson "$id_1_2_1" "$desc_1_2_1"
totalChecks=$((totalChecks + 1))
local system_partition=$(df / --output=source 2> /dev/null | sed -n 2p)
local docker_partition=$(df "$(docker info -f '{{ .DockerRootDir }}')" --output=source 2> /dev/null | sed -n 2p)
if [ "$system_partition" != "$docker_partition" ] && [ ! -z "$docker_partition" ] ; then
docker_root_dir=$(docker info -f '{{ .DockerRootDir }}')
if docker info | grep -q userns ; then
docker_root_dir=$(readlink -f "$docker_root_dir/..")
fi
if mountpoint -q -- "$docker_root_dir" >/dev/null 2>&1; then
pass "$check_1_2_1"
resulttestjson "PASS"
currentScore=$((currentScore + 1))