add configration item

2023-07-03 15:46:41 +08:00 · 2023-07-03 15:46:41 +08:00 · dce2af5395
commit dce2af5395
parent cf48ed88ba
4 changed files with 32 additions and 8 deletions
--- a/go.mod
+++ b/go.mod
@ -89,4 +89,6 @@ require (
 	gopkg.in/yaml.v2 v2.4.0 // indirect
 )

-replace github.com/nektos/act => gitea.com/gitea/act v0.246.1
+// replace github.com/nektos/act => gitea.com/gitea/act v0.246.1
+
+replace github.com/nektos/act => ../act
--- a/internal/app/run/runner.go
+++ b/internal/app/run/runner.go
@ -201,6 +201,7 @@ func (r *Runner) run(ctx context.Context, task *runnerv1.Task, reporter *report.
 		PlatformPicker:        r.labels.PickPlatform,
 		Vars:                  task.Vars,
 		ValidVolumes:          r.cfg.Container.ValidVolumes,
+		InheritDiverOpts:      r.cfg.Container.InheritDiverOpts,
 	}

 	rr, err := runner.New(runnerConfig)
--- a/internal/pkg/config/config.example.yaml
+++ b/internal/pkg/config/config.example.yaml
@ -51,6 +51,10 @@ container:
  # Could be host, bridge or the name of a custom network.
  # If it's empty, act_runner will create a network automatically.
  network: ""
+  # This configuration item only takes effect when container.network is empty.
+  # The network automatically created by act_runner will inherit the dirver options of the default bridge network.
+  # Valid value see: https://docs.docker.com/engine/reference/commandline/network_create/#bridge-driver-options, except "com.docker.network.bridge.name"
+  inherit_driver_opts: []
  # Whether to use privileged mode or not when launching task containers (privileged mode is required for Docker-in-Docker).
  privileged: false
  # And other options to be used when the container is started (eg, --add-host=my.gitea.url:host-gateway).
--- a/internal/pkg/config/config.go
+++ b/internal/pkg/config/config.go
@ -42,13 +42,14 @@ type Cache struct {

 // Container represents the configuration for the container.
 type Container struct {
-	Network       string   `yaml:"network"`        // Network specifies the network for the container.
-	NetworkMode   string   `yaml:"network_mode"`   // Deprecated: use Network instead. Could be removed after Gitea 1.20
-	Privileged    bool     `yaml:"privileged"`     // Privileged indicates whether the container runs in privileged mode.
-	Options       string   `yaml:"options"`        // Options specifies additional options for the container.
-	WorkdirParent string   `yaml:"workdir_parent"` // WorkdirParent specifies the parent directory for the container's working directory.
-	ValidVolumes  []string `yaml:"valid_volumes"`  // ValidVolumes specifies the volumes (including bind mounts) can be mounted to containers.
-	DockerHost    string   `yaml:"docker_host"`    // DockerHost specifies the Docker host. It overrides the value specified in environment variable DOCKER_HOST.
+	Network          string   `yaml:"network"`             // Network specifies the network for the container.
+	InheritDiverOpts []string `yaml:"inherit_driver_opts"` // InheritDiverOpts indicates the network created by act_runner whether inherit the dirver options of the default bridge network.
+	NetworkMode      string   `yaml:"network_mode"`        // Deprecated: use Network instead. Could be removed after Gitea 1.20
+	Privileged       bool     `yaml:"privileged"`          // Privileged indicates whether the container runs in privileged mode.
+	Options          string   `yaml:"options"`             // Options specifies additional options for the container.
+	WorkdirParent    string   `yaml:"workdir_parent"`      // WorkdirParent specifies the parent directory for the container's working directory.
+	ValidVolumes     []string `yaml:"valid_volumes"`       // ValidVolumes specifies the volumes (including bind mounts) can be mounted to containers.
+	DockerHost       string   `yaml:"docker_host"`         // DockerHost specifies the Docker host. It overrides the value specified in environment variable DOCKER_HOST.
 }

 // Host represents the configuration for the host.
@ -141,5 +142,21 @@ func LoadDefault(file string) (*Config, error) {
 		}
 	}

+	var cleanDriverOptKeys []string
+	for _, key := range cfg.Container.InheritDiverOpts {
+		if _, ok := validDriverOptKeysMap[key]; ok {
+			cleanDriverOptKeys = append(cleanDriverOptKeys, key)
+		}
+	}
+	cfg.Container.InheritDiverOpts = cleanDriverOptKeys
+
 	return cfg, nil
 }
+
+var validDriverOptKeysMap = map[string]bool{
+	"com.docker.network.bridge.enable_ip_masquerade": true,
+	"com.docker.network.bridge.enable_icc":           true,
+	"com.docker.network.bridge.host_binding_ipv4":    true,
+	"com.docker.network.driver.mtu":                  true,
+	"com.docker.network.container_iface_prefix":      true,
+}