GuillaumeHemmen/docker-bench-security
1
0
Fork 0
mirror of https://github.com/docker/docker-bench-security.git synced 2025-01-18 16:22:33 +01:00
Code Issues Projects Releases Packages Wiki Activity

Merge pull request #511 from konstruktoid/issue510

Browse source 
add support for .NanoCpus
This commit is contained in:
Thomas Sjögren 2023-02-02 22:12:27 +01:00 committed by GitHub
commit f375045741
No known key found for this signature in database
GPG key ID: 4AEE18F83AFDEB23
1 changed files with 6 additions and 3 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

9
tests/5_container_runtime.sh
View file

@ -472,12 +472,15 @@ check_5_11() {
fail=0 fail=0
cpu_unlimited_containers="" cpu_unlimited_containers=""
for c in $containers; do for c in $containers; do
shares=$(docker inspect --format '{{ .HostConfig.CpuShares }}' "$c") cpushares=$(docker inspect --format '{{ .HostConfig.CpuShares }}' "$c")
nanocpus=$(docker inspect --format '{{ .HostConfig.NanoCpus }}' "$c")
if docker inspect --format '{{ .Config.CpuShares }}' "$c" 2> /dev/null 1>&2; then if docker inspect --format '{{ .Config.CpuShares }}' "$c" 2> /dev/null 1>&2; then
shares=$(docker inspect --format '{{ .Config.CpuShares }}' "$c") cpushares=$(docker inspect --format '{{ .Config.CpuShares }}' "$c")
nanocpus=$(docker inspect --format '{{ .Config.NanoCpus }}' "$c")
fi fi
if [ "$shares" = "0" ]; then if [ "$cpushares" = "0" ] && [ "$nanocpus" = "0" ]; then
# If it's the first container, fail the test # If it's the first container, fail the test
if [ $fail -eq 0 ]; then if [ $fail -eq 0 ]; then
warn -s "$check" warn -s "$check"