From 57bf4e6546fb3b9131696b17a01a92f632fc0e19 Mon Sep 17 00:00:00 2001 From: Jose Carlos Venegas Munoz Date: Tue, 26 Jun 2018 16:46:56 +0000 Subject: [PATCH] namespace: do not create path using rand. Using random char generation at early boot may slow the process due to low entropy. Also from kernel 4.14.36 rand call hangs due to low-entropy. Lets remove dependency on rand at early sandbox creation. Fixes: #278 Signed-off-by: Jose Carlos Venegas Munoz --- namespace.go | 13 ++++--------- 1 file changed, 4 insertions(+), 9 deletions(-) diff --git a/namespace.go b/namespace.go index 2ddc628bfa..730a4241d2 100644 --- a/namespace.go +++ b/namespace.go @@ -7,7 +7,6 @@ package main import ( - "crypto/rand" "fmt" "os" "path/filepath" @@ -17,7 +16,7 @@ import ( "golang.org/x/sys/unix" ) -var persistentNsDir = "/var/run" +var persistentNsDir = "/var/run/sandbox-ns" // nsType defines a namespace type. type nsType string @@ -48,19 +47,15 @@ func getCurrentThreadNSPath(nType nsType) string { // setupPersistentNs creates persistent namespace without switchin to it. // Note, pid namespaces cannot be persisted. func setupPersistentNs(namespaceType nsType) (*namespace, error) { - b := make([]byte, 8) - _, err := rand.Reader.Read(b) - if err != nil { - return nil, fmt.Errorf("failed to generate random netns name: %v", err) - } - err = os.MkdirAll(persistentNsDir, 0755) + err := os.MkdirAll(persistentNsDir, 0755) if err != nil { return nil, err } // Create an empty file at the mount point. - nsPath := filepath.Join(persistentNsDir, fmt.Sprintf("%x", b)) + nsPath := filepath.Join(persistentNsDir, string(namespaceType)) + mountFd, err := os.Create(nsPath) if err != nil { return nil, err