MCPcopy Index your code
hub / github.com/containerd/containerd / WithRootFSReadonly

Function WithRootFSReadonly

pkg/oci/spec_opts.go:500–506  ·  view source on GitHub ↗

WithRootFSReadonly sets specs.Root.Readonly to true

()

Source from the content-addressed store, hash-verified

498
499// WithRootFSReadonly sets specs.Root.Readonly to true
500func WithRootFSReadonly() SpecOpts {
501 return func(_ context.Context, _ Client, _ *containers.Container, s *Spec) error {
502 setRoot(s)
503 s.Root.Readonly = true
504 return nil
505 }
506}
507
508// WithNoNewPrivileges sets no_new_privileges on the process for the container
509func WithNoNewPrivileges(_ context.Context, _ Client, _ *containers.Container, s *Spec) error {

Callers 3

buildLinuxSpecMethod · 0.92
sandboxContainerSpecMethod · 0.92
NewContainerFunction · 0.92

Calls 1

setRootFunction · 0.85

Tested by

no test coverage detected

Used in the wild real call sites across dependent graphs

searching dependent graphs…