Struct oci_spec::runtime::Linux [−][src]
pub struct Linux {Show 14 fields
pub uid_mappings: Option<Vec<LinuxIdMapping>>,
pub gid_mappings: Option<Vec<LinuxIdMapping>>,
pub sysctl: Option<HashMap<String, String>>,
pub resources: Option<LinuxResources>,
pub cgroups_path: Option<PathBuf>,
pub namespaces: Option<Vec<LinuxNamespace>>,
pub devices: Option<Vec<LinuxDevice>>,
pub seccomp: Option<LinuxSeccomp>,
pub rootfs_propagation: Option<String>,
pub masked_paths: Option<Vec<String>>,
pub readonly_paths: Option<Vec<String>>,
pub mount_label: Option<String>,
pub intel_rdt: Option<LinuxIntelRdt>,
pub personality: Option<LinuxPersonality>,
}
Expand description
Linux contains platform-specific configuration for Linux based containers.
Fields
uid_mappings: Option<Vec<LinuxIdMapping>>
UIDMappings specifies user mappings for supporting user namespaces.
gid_mappings: Option<Vec<LinuxIdMapping>>
GIDMappings specifies group mappings for supporting user namespaces.
sysctl: Option<HashMap<String, String>>
Sysctl are a set of key value pairs that are set for the container on start.
resources: Option<LinuxResources>
Resources contain cgroup information for handling resource constraints for the container.
cgroups_path: Option<PathBuf>
CgroupsPath specifies the path to cgroups that are created and/or joined by the container. The path is expected to be relative to the cgroups mountpoint. If resources are specified, the cgroups at CgroupsPath will be updated based on resources.
namespaces: Option<Vec<LinuxNamespace>>
Namespaces contains the namespaces that are created and/or joined by the container.
devices: Option<Vec<LinuxDevice>>
Devices are a list of device nodes that are created for the container.
seccomp: Option<LinuxSeccomp>
Seccomp specifies the seccomp security settings for the container.
rootfs_propagation: Option<String>
RootfsPropagation is the rootfs mount propagation mode for the container.
masked_paths: Option<Vec<String>>
MaskedPaths masks over the provided paths inside the container.
readonly_paths: Option<Vec<String>>
ReadonlyPaths sets the provided paths as RO inside the container.
mount_label: Option<String>
MountLabel specifies the selinux context for the mounts in the container.
intel_rdt: Option<LinuxIntelRdt>
IntelRdt contains Intel Resource Director Technology (RDT) information for handling resource constraints (e.g., L3 cache, memory bandwidth) for the container.
personality: Option<LinuxPersonality>
Personality contains configuration for the Linux personality syscall.
Trait Implementations
fn deserialize<__D>(__deserializer: __D) -> Result<Self, __D::Error> where
__D: Deserializer<'de>,
fn deserialize<__D>(__deserializer: __D) -> Result<Self, __D::Error> where
__D: Deserializer<'de>,
Deserialize this value from the given Serde deserializer. Read more
Auto Trait Implementations
impl RefUnwindSafe for Linux
impl UnwindSafe for Linux
Blanket Implementations
Mutably borrows from an owned value. Read more