Struct oci_spec::runtime::Linux[][src]

pub struct Linux {
Show 14 fields
    pub uid_mappings: Option<Vec<LinuxIdMapping>>,
    pub gid_mappings: Option<Vec<LinuxIdMapping>>,
    pub sysctl: Option<HashMap<String, String>>,
    pub resources: Option<LinuxResources>,
    pub cgroups_path: Option<PathBuf>,
    pub namespaces: Option<Vec<LinuxNamespace>>,
    pub devices: Option<Vec<LinuxDevice>>,
    pub seccomp: Option<LinuxSeccomp>,
    pub rootfs_propagation: Option<String>,
    pub masked_paths: Option<Vec<String>>,
    pub readonly_paths: Option<Vec<String>>,
    pub mount_label: Option<String>,
    pub intel_rdt: Option<LinuxIntelRdt>,
    pub personality: Option<LinuxPersonality>,

}
Expand description

Linux contains platform-specific configuration for Linux based containers.

Fields

uid_mappings: Option<Vec<LinuxIdMapping>>

UIDMappings specifies user mappings for supporting user namespaces.

gid_mappings: Option<Vec<LinuxIdMapping>>

GIDMappings specifies group mappings for supporting user namespaces.

sysctl: Option<HashMap<String, String>>

Sysctl are a set of key value pairs that are set for the container on start.

resources: Option<LinuxResources>

Resources contain cgroup information for handling resource constraints for the container.

cgroups_path: Option<PathBuf>

CgroupsPath specifies the path to cgroups that are created and/or joined by the container. The path is expected to be relative to the cgroups mountpoint. If resources are specified, the cgroups at CgroupsPath will be updated based on resources.

namespaces: Option<Vec<LinuxNamespace>>

Namespaces contains the namespaces that are created and/or joined by the container.

devices: Option<Vec<LinuxDevice>>

Devices are a list of device nodes that are created for the container.

seccomp: Option<LinuxSeccomp>

Seccomp specifies the seccomp security settings for the container.

rootfs_propagation: Option<String>

RootfsPropagation is the rootfs mount propagation mode for the container.

masked_paths: Option<Vec<String>>

MaskedPaths masks over the provided paths inside the container.

readonly_paths: Option<Vec<String>>

ReadonlyPaths sets the provided paths as RO inside the container.

mount_label: Option<String>

MountLabel specifies the selinux context for the mounts in the container.

intel_rdt: Option<LinuxIntelRdt>

IntelRdt contains Intel Resource Director Technology (RDT) information for handling resource constraints (e.g., L3 cache, memory bandwidth) for the container.

personality: Option<LinuxPersonality>

Personality contains configuration for the Linux personality syscall.

Trait Implementations

Returns a copy of the value. Read more

Performs copy-assignment from source. Read more

Formats the value using the given formatter. Read more

Returns the “default value” for a type. Read more

Deserialize this value from the given Serde deserializer. Read more

This method tests for self and other values to be equal, and is used by ==. Read more

This method tests for !=.

Serialize this value into the given Serde serializer. Read more

Auto Trait Implementations

Blanket Implementations

Gets the TypeId of self. Read more

Immutably borrows from an owned value. Read more

Mutably borrows from an owned value. Read more

Performs the conversion.

Performs the conversion.

The resulting type after obtaining ownership.

Creates owned data from borrowed data, usually by cloning. Read more

🔬 This is a nightly-only experimental API. (toowned_clone_into)

recently added

Uses borrowed data to replace owned data, usually by cloning. Read more

The type returned in the event of a conversion error.

Performs the conversion.

The type returned in the event of a conversion error.

Performs the conversion.