| 123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657 |
- // +build !windows
- /*
- Copyright The containerd Authors.
- Licensed under the Apache License, Version 2.0 (the "License");
- you may not use this file except in compliance with the License.
- You may obtain a copy of the License at
- http://www.apache.org/licenses/LICENSE-2.0
- Unless required by applicable law or agreed to in writing, software
- distributed under the License is distributed on an "AS IS" BASIS,
- WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
- See the License for the specific language governing permissions and
- limitations under the License.
- */
- package containerd
- import (
- "context"
- "github.com/containerd/containerd/runtime/linux/runctypes"
- "github.com/pkg/errors"
- )
- // WithNoNewKeyring causes tasks not to be created with a new keyring for secret storage.
- // There is an upper limit on the number of keyrings in a linux system
- func WithNoNewKeyring(ctx context.Context, c *Client, ti *TaskInfo) error {
- if ti.Options == nil {
- ti.Options = &runctypes.CreateOptions{}
- }
- opts, ok := ti.Options.(*runctypes.CreateOptions)
- if !ok {
- return errors.New("could not cast TaskInfo Options to CreateOptions")
- }
- opts.NoNewKeyring = true
- return nil
- }
- // WithNoPivotRoot instructs the runtime not to you pivot_root
- func WithNoPivotRoot(_ context.Context, _ *Client, info *TaskInfo) error {
- if info.Options == nil {
- info.Options = &runctypes.CreateOptions{
- NoPivotRoot: true,
- }
- return nil
- }
- opts, ok := info.Options.(*runctypes.CreateOptions)
- if !ok {
- return errors.New("invalid options type, expected runctypes.CreateOptions")
- }
- opts.NoPivotRoot = true
- return nil
- }
|
