local build
This commit is contained in:
parent
410c4871bc
commit
57a35a04b6
@ -27,8 +27,7 @@ No bare options are used. The format of TOML can be simplified to:
|
|||||||
The `storage` table supports the following options:
|
The `storage` table supports the following options:
|
||||||
|
|
||||||
**driver**=""
|
**driver**=""
|
||||||
container storage driver
|
Copy On Write (COW) container storage driver. Valid drivers are "overlay", "vfs", "devmapper", "aufs", "btrfs", and "zfs". Some drivers (for example, "zfs", "btrfs", and "aufs") may not work if your kernel lacks support for the filesystem.
|
||||||
Default Copy On Write (COW) container storage driver. Valid drivers are "overlay", "vfs", "devmapper", "aufs", "btrfs", and "zfs". Some drivers (for example, "zfs", "btrfs", and "aufs") may not work if your kernel lacks support for the filesystem.
|
|
||||||
This field is required to guarantee proper operation.
|
This field is required to guarantee proper operation.
|
||||||
Valid rootless drivers are "btrfs", "overlay", and "vfs".
|
Valid rootless drivers are "btrfs", "overlay", and "vfs".
|
||||||
Rootless users default to the driver defined in the system configuration when possible.
|
Rootless users default to the driver defined in the system configuration when possible.
|
||||||
@ -37,35 +36,28 @@ The `storage` table supports the following options:
|
|||||||
**graphroot**=""
|
**graphroot**=""
|
||||||
container storage graph dir (default: "/var/lib/containers/storage")
|
container storage graph dir (default: "/var/lib/containers/storage")
|
||||||
Default directory to store all writable content created by container storage programs.
|
Default directory to store all writable content created by container storage programs.
|
||||||
The rootless graphroot path supports environment variable substitutions (ie. `$HOME/containers/storage`)
|
The rootless graphroot path supports environment variable substitutions (ie. `$HOME/containers/storage`).
|
||||||
When changing the graphroot location on an SELINUX system, ensure
|
When changing the graphroot location on an SELINUX system, ensure the labeling matches the default locations labels with the following commands:
|
||||||
the labeling matches the default locations labels with the
|
|
||||||
following commands:
|
|
||||||
|
|
||||||
```
|
```
|
||||||
# semanage fcontext -a -e /var/lib/containers/storage /NEWSTORAGEPATH
|
# semanage fcontext -a -e /var/lib/containers/storage /NEWSTORAGEPATH
|
||||||
# restorecon -R -v /NEWSTORAGEPATH
|
# restorecon -R -v /NEWSTORAGEPATH
|
||||||
```
|
```
|
||||||
|
|
||||||
In Rootless Mode you would set
|
In rootless mode you would set
|
||||||
|
|
||||||
```
|
```
|
||||||
# semanage fcontext -a -e $HOME/.local/share/containers NEWSTORAGEPATH
|
# semanage fcontext -a -e $HOME/.local/share/containers NEWSTORAGEPATH
|
||||||
$ restorecon -R -v /NEWSTORAGEPATH
|
$ restorecon -R -v /NEWSTORAGEPATH
|
||||||
```
|
```
|
||||||
**rootless_storage_path**="$HOME/.local/share/containers/storage"
|
**rootless_storage_path**="$HOME/.local/share/containers/storage"
|
||||||
Storage path for rootless users. By default the graphroot for rootless users
|
Storage path for rootless users. By default the graphroot for rootless users is set to `$XDG_DATA_HOME/containers/storage`, if XDG_DATA_HOME is set. Otherwise `$HOME/.local/share/containers/storage` is used. This field can be used if administrators need to change the storage location for all users. The rootless storage path supports environment variable substitutions (ie. `$HOME/containers/storage`)
|
||||||
is set to `$XDG_DATA_HOME/containers/storage`, if XDG_DATA_HOME is set.
|
|
||||||
Otherwise `$HOME/.local/share/containers/storage` is used. This field can
|
|
||||||
be used if administrators need to change the storage location for all users.
|
|
||||||
The rootless storage path supports environment variable substitutions (ie. `$HOME/containers/storage`)
|
|
||||||
|
|
||||||
A common use case for this field is to provide a local storage directory when user home directories are NFS-mounted (podman does not support container storage over NFS).
|
A common use case for this field is to provide a local storage directory when user home directories are NFS-mounted (podman does not support container storage over NFS).
|
||||||
|
|
||||||
**runroot**=""
|
**runroot**=""
|
||||||
container storage run dir (default: "/run/containers/storage")
|
container storage run dir (default: "/run/containers/storage")
|
||||||
Default directory to store all temporary writable content created by container storage programs.
|
Default directory to store all temporary writable content created by container storage programs. The rootless runroot path supports environment variable substitutions (ie. `$HOME/containers/storage`)
|
||||||
The rootless runroot path supports environment variable substitutions (ie. `$HOME/containers/storage`)
|
|
||||||
|
|
||||||
### STORAGE OPTIONS TABLE
|
### STORAGE OPTIONS TABLE
|
||||||
|
|
||||||
@ -216,20 +208,19 @@ The `storage.options.overlay` table supports the following options:
|
|||||||
|
|
||||||
**force_mask** = "0000|shared|private"
|
**force_mask** = "0000|shared|private"
|
||||||
ForceMask specifies the permissions mask that is used for new files and
|
ForceMask specifies the permissions mask that is used for new files and
|
||||||
directories.
|
directories. The values "shared" and "private" are accepted. (default: ""). Octal permission
|
||||||
The values "shared" and "private" are accepted. (default: ""). Octal permission
|
|
||||||
masks are also accepted.
|
masks are also accepted.
|
||||||
|
|
||||||
``: Not set
|
- ``: Not set
|
||||||
All files/directories, get set with the permissions identified within the
|
All files/directories, get set with the permissions identified within the
|
||||||
image.
|
image.
|
||||||
|
|
||||||
`private`: it is equivalent to 0700.
|
- `private`: it is equivalent to 0700.
|
||||||
All files/directories get set with 0700 permissions. The owner has rwx
|
All files/directories get set with 0700 permissions. The owner has rwx
|
||||||
access to the files. No other users on the system can access the files.
|
access to the files. No other users on the system can access the files.
|
||||||
This setting could be used with networked based home directories.
|
This setting could be used with networked based home directories.
|
||||||
|
|
||||||
`shared`: it is equivalent to 0755.
|
- `shared`: it is equivalent to 0755.
|
||||||
The owner has rwx access to the files and everyone else can read, access
|
The owner has rwx access to the files and everyone else can read, access
|
||||||
and execute them. This setting is useful for sharing containers storage
|
and execute them. This setting is useful for sharing containers storage
|
||||||
with other users. For instance, a storage owned by root could be shared
|
with other users. For instance, a storage owned by root could be shared
|
||||||
|
@ -11,6 +11,11 @@ containers-transports - description of supported transports for copying and stor
|
|||||||
Tools which use the containers/image library, including skopeo(1), buildah(1), podman(1), all share a common syntax for referring to container images in various locations.
|
Tools which use the containers/image library, including skopeo(1), buildah(1), podman(1), all share a common syntax for referring to container images in various locations.
|
||||||
The general form of the syntax is _transport:details_, where details are dependent on the specified transport, which are documented below.
|
The general form of the syntax is _transport:details_, where details are dependent on the specified transport, which are documented below.
|
||||||
|
|
||||||
|
The semantics of the image names ultimately depend on the environment where
|
||||||
|
they are evaluated. For example: if evaluated on a remote server, image names
|
||||||
|
might refer to paths on that server; relative paths are relative to the current
|
||||||
|
directory of the image consumer.
|
||||||
|
|
||||||
### **containers-storage**:[**[**storage-specifier**]**]{image-id|docker-reference[@image-id]}
|
### **containers-storage**:[**[**storage-specifier**]**]{image-id|docker-reference[@image-id]}
|
||||||
|
|
||||||
An image located in a local containers storage.
|
An image located in a local containers storage.
|
||||||
|
@ -605,6 +605,12 @@ log_driver = "journald"
|
|||||||
#
|
#
|
||||||
#volume_path = "/var/lib/containers/storage/volumes"
|
#volume_path = "/var/lib/containers/storage/volumes"
|
||||||
|
|
||||||
|
# Default timeout (in seconds) for volume plugin operations.
|
||||||
|
# Plugins are external programs accessed via a REST API; this sets a timeout
|
||||||
|
# for requests to that API.
|
||||||
|
# A value of 0 is treated as no timeout.
|
||||||
|
#volume_plugin_timeout = 5
|
||||||
|
|
||||||
# Paths to look for a valid OCI runtime (crun, runc, kata, runsc, krun, etc)
|
# Paths to look for a valid OCI runtime (crun, runc, kata, runsc, krun, etc)
|
||||||
[engine.runtimes]
|
[engine.runtimes]
|
||||||
#crun = [
|
#crun = [
|
||||||
@ -665,7 +671,14 @@ log_driver = "journald"
|
|||||||
#
|
#
|
||||||
#disk_size=10
|
#disk_size=10
|
||||||
|
|
||||||
# The image used when creating a podman-machine VM.
|
# Default image URI when creating a new VM using `podman machine init`.
|
||||||
|
# Options: On Linux/Mac, `testing`, `stable`, `next`. On Windows, the major
|
||||||
|
# version of the OS (e.g `36`) for Fedora 36. For all platforms you can
|
||||||
|
# alternatively specify a custom download URL to an image. Container engines
|
||||||
|
# translate URIs $OS and $ARCH to the native OS and ARCH. URI
|
||||||
|
# "https://example.com/$OS/$ARCH/foobar.ami" becomes
|
||||||
|
# "https://example.com/linux/amd64/foobar.ami" on a Linux AMD machine.
|
||||||
|
# The default value is `testing`.
|
||||||
#
|
#
|
||||||
# image = "testing"
|
# image = "testing"
|
||||||
|
|
||||||
|
@ -197,9 +197,9 @@ the container.
|
|||||||
|
|
||||||
Indicates whether the container engine uses MAC(SELinux) container separation via labeling. This option is ignored on disabled systems.
|
Indicates whether the container engine uses MAC(SELinux) container separation via labeling. This option is ignored on disabled systems.
|
||||||
|
|
||||||
**log_driver**="k8s-file"
|
**log_driver**=""
|
||||||
|
|
||||||
Logging driver for the container. Available options: `k8s-file` and `journald`.
|
Logging driver for the container. Currently available options are k8s-file, journald, none and passthrough, with json-file aliased to k8s-file for scripting compatibility. The journald driver is used by default if the systemd journal is readable and writable. Otherwise, the k8s-file driver is used.
|
||||||
|
|
||||||
**log_size_max**=-1
|
**log_size_max**=-1
|
||||||
|
|
||||||
@ -711,11 +711,13 @@ The size of the disk in GB created when init-ing a podman-machine VM
|
|||||||
|
|
||||||
**image**=""
|
**image**=""
|
||||||
|
|
||||||
Default image used when creating a new VM using `podman machine init`.
|
Default image URI when creating a new VM using `podman machine init`.
|
||||||
Options: On Linux/Mac, `testing`, `stable`, `next`. On Windows, the major
|
Options: On Linux/Mac, `testing`, `stable`, `next`. On Windows, the major
|
||||||
version of the OS (e.g `35`). For all platforms you can alternatively specify
|
version of the OS (e.g `36`) for Fedora 36. For all platforms you can
|
||||||
a custom path or download URL to an image. The default is `testing` on
|
alternatively specify a custom download URL to an image. Container engines
|
||||||
Linux/Mac, and `35` on Windows.
|
translate URIs $OS and $ARCH to the native OS and ARCH. URI "https://example.com/$OS/$ARCH/foobar.ami" would become "https://example.com/linux/amd64/foobar.ami" on a Linux AMD machine.
|
||||||
|
The default value
|
||||||
|
is `testing` on Linux/Mac, and on Windows.
|
||||||
|
|
||||||
**memory**=2048
|
**memory**=2048
|
||||||
|
|
||||||
|
Loading…
Reference in New Issue
Block a user