package oci

import "github.com/docker/docker/oci"

Index

Functions

func AppendDevicePermissionsFromCgroupRules 

func AppendDevicePermissionsFromCgroupRules(devPermissions []specs.LinuxDeviceCgroup, rules []string) ([]specs.LinuxDeviceCgroup, error)

AppendDevicePermissionsFromCgroupRules takes rules for the devices cgroup to append to the default set

func DefaultLinuxSpec 

func DefaultLinuxSpec() specs.Spec

DefaultLinuxSpec create a default spec for running Linux containers

func DefaultPathEnv 

func DefaultPathEnv(os string) string

DefaultPathEnv is unix style list of directories to search for executables. Each directory is separated from the next by a colon ':' character . For Windows containers, an empty string is returned as the default path will be set by the container, and Docker has no context of what the default path should be.

TODO(thaJeztah) align Windows default with BuildKit; see https://github.com/moby/buildkit/pull/1747 TODO(thaJeztah) use defaults from containerd (but align it with BuildKit; see https://github.com/moby/buildkit/pull/1747)

func DefaultSpec 

func DefaultSpec() specs.Spec

DefaultSpec returns the default spec used by docker for the current Platform

func DefaultWindowsSpec 

func DefaultWindowsSpec() specs.Spec

DefaultWindowsSpec create a default spec for running Windows containers

func RemoveNamespace 

func RemoveNamespace(s *specs.Spec, nsType specs.LinuxNamespaceType)

RemoveNamespace removes the `nsType` namespace from OCI spec `s`

func SetCapabilities 

func SetCapabilities(s *specs.Spec, caplist []string) error

SetCapabilities sets the provided capabilities on the spec All capabilities are added if privileged is true.

Source Files

defaults.go namespaces.go oci.go

Directories

PathSynopsis
oci/caps
Version
v24.0.0-rc.3+incompatible
Published
May 11, 2023
Platform
js/wasm
Imports
6 packages
Last checked
4 minutes ago

Tools for package owners.