diff options
| author | Nicolas Vollmar <nvo@scaling.ch> | 2024-05-27 13:12:54 +0200 |
|---|---|---|
| committer | Mergify <37929162+mergify[bot]@users.noreply.github.com> | 2024-05-28 18:16:31 +0000 |
| commit | 8007b58f1e0ecfad9ed0cca7ecec725287432439 (patch) | |
| tree | 1224dc7bbc2c95e3504a1c7ce6643ae6b0a9d863 /src | |
| parent | 10df4ad8a3d7182363460b8043af2cacf128c893 (diff) | |
| download | vyos-1x-8007b58f1e0ecfad9ed0cca7ecec725287432439.tar.gz vyos-1x-8007b58f1e0ecfad9ed0cca7ecec725287432439.zip | |
T6406: add container cpu limit option
(cherry picked from commit 81dea053e7178b8fea836a85aacde2a38ffb9e09)
Diffstat (limited to 'src')
| -rwxr-xr-x | src/conf_mode/container.py | 9 |
1 files changed, 8 insertions, 1 deletions
diff --git a/src/conf_mode/container.py b/src/conf_mode/container.py index 91a10e891..2294b8e57 100755 --- a/src/conf_mode/container.py +++ b/src/conf_mode/container.py @@ -16,6 +16,7 @@ import os +from decimal import Decimal from hashlib import sha256 from ipaddress import ip_address from ipaddress import ip_network @@ -127,6 +128,11 @@ def verify(container): f'locally. Please use "add container image {image}" to add it '\ f'to the system! Container "{name}" will not be started!') + if 'cpus' in container_config: + cores = os.cpu_count() + if Decimal(container_config['cpus']) > cores: + raise ConfigError(f'Cannot set limit to more cores than available "{name}"!') + if 'network' in container_config: if len(container_config['network']) > 1: raise ConfigError(f'Only one network can be specified for container "{name}"!') @@ -257,6 +263,7 @@ def verify(container): def generate_run_arguments(name, container_config): image = container_config['image'] + cpus = container_config['cpus'] memory = container_config['memory'] shared_memory = container_config['shared_memory'] restart = container_config['restart'] @@ -333,7 +340,7 @@ def generate_run_arguments(name, container_config): if 'allow_host_pid' in container_config: host_pid = '--pid host' - container_base_cmd = f'--detach --interactive --tty --replace {capabilities} ' \ + container_base_cmd = f'--detach --interactive --tty --replace {capabilities} --cpus {cpus} ' \ f'--memory {memory}m --shm-size {shared_memory}m --memory-swap 0 --restart {restart} ' \ f'--name {name} {hostname} {device} {port} {volume} {env_opt} {label} {uid} {host_pid}' |