unshare

package

v1.9.0 Latest Latest Go to latest Published: Jun 15, 2019 License: Apache-2.0 Imports: 19 Imported by: 0

Details

Valid go.mod file

The Go module system was introduced in Go 1.11 and is the official dependency management solution for Go.
Redistributable license

Redistributable licenses place minimal restrictions on how software can be used, modified, and redistributed.
Tagged version

Modules with tagged versions give importers more predictable builds.
Stable version

When a project reaches major version v1 it is considered stable.
Learn more about best practices

Repository

github.com/robertsandoval/buildah

Documentation ¶

Rendered for

Index ¶

Constants
func ExecRunnable(cmd Runnable)
func GetHostIDMappings(pid string) ([]specs.LinuxIDMapping, []specs.LinuxIDMapping, error)
func GetRootlessUID() int
func GetSubIDMappings(user, group string) ([]specs.LinuxIDMapping, []specs.LinuxIDMapping, error)
func IsRootless() bool
func MaybeReexecUsingUserNamespace(evenForRoot bool)
func ParseIDMappings(uidmap, gidmap []string) ([]idtools.IDMap, []idtools.IDMap, error)
func RootlessEnv() []string
type Cmd
- func Command(args ...string) *Cmd
type Runnable

Constants ¶

View Source

const (
	// UsernsEnvName is the environment variable, if set indicates in rootless mode
	UsernsEnvName = "_CONTAINERS_USERNS_CONFIGURED"
)

Variables ¶

This section is empty.

Functions ¶

func ExecRunnable ¶

func ExecRunnable(cmd Runnable)

ExecRunnable runs the specified unshare command, captures its exit status, and exits with the same status.

func GetHostIDMappings ¶ added in v1.8.0

func GetHostIDMappings(pid string) ([]specs.LinuxIDMapping, []specs.LinuxIDMapping, error)

GetHostIDMappings reads mappings for the specified process (or the current process if pid is "self" or an empty string) from the kernel.

func GetRootlessUID ¶

func GetRootlessUID() int

GetRootlessUID returns the UID of the user in the parent userNS

func GetSubIDMappings ¶ added in v1.8.0

func GetSubIDMappings(user, group string) ([]specs.LinuxIDMapping, []specs.LinuxIDMapping, error)

GetSubIDMappings reads mappings from /etc/subuid and /etc/subgid.

func IsRootless ¶

func IsRootless() bool

IsRootless tells us if we are running in rootless mode

func MaybeReexecUsingUserNamespace ¶

func MaybeReexecUsingUserNamespace(evenForRoot bool)

MaybeReexecUsingUserNamespace re-exec the process in a new namespace

func ParseIDMappings ¶ added in v1.8.0

func ParseIDMappings(uidmap, gidmap []string) ([]idtools.IDMap, []idtools.IDMap, error)

ParseIDMappings parses mapping triples.

func RootlessEnv ¶

func RootlessEnv() []string

RootlessEnv returns the environment settings for the rootless containers

Types ¶

type Cmd ¶

type Cmd struct {
	*exec.Cmd
	UnshareFlags               int
	UseNewuidmap               bool
	UidMappings                []specs.LinuxIDMapping
	UseNewgidmap               bool
	GidMappings                []specs.LinuxIDMapping
	GidMappingsEnableSetgroups bool
	Setsid                     bool
	Setpgrp                    bool
	Ctty                       *os.File
	OOMScoreAdj                *int
	Hook                       func(pid int) error
}

Cmd wraps an exec.Cmd created by the reexec package in unshare(), and handles setting ID maps and other related settings by triggering initialization code in the child.

func Command ¶

func Command(args ...string) *Cmd

Command creates a new Cmd which can be customized.

func (*Cmd) CombinedOutput ¶

func (c *Cmd) CombinedOutput() ([]byte, error)

func (*Cmd) Output ¶

func (c *Cmd) Output() ([]byte, error)

func (*Cmd) Run ¶

func (c *Cmd) Run() error

func (*Cmd) Start ¶

func (c *Cmd) Start() error

type Runnable ¶

type Runnable interface {
	Run() error
}

Source Files ¶

View all Source files

?	: This menu
/	: Search site
f or F	: Jump to
y or Y	: Canonical URL