MCPcopy
hub / github.com/opencontainers/runc / verifyDevNull

Function verifyDevNull

libcontainer/rootfs_linux.go:1315–1322  ·  view source on GitHub ↗
(f *os.File)

Source from the content-addressed store, hash-verified

1313}
1314
1315func verifyDevNull(f *os.File) error {
1316 return sys.VerifyInode(f, func(st *unix.Stat_t, _ *unix.Statfs_t) error {
1317 if !isDevNull(st) {
1318 return errors.New("container's /dev/null is invalid")
1319 }
1320 return nil
1321 })
1322}
1323
1324// maskDir mounts a read-only tmpfs on top of the specified path.
1325func maskDir(path, mountLabel string) error {

Callers 2

reOpenDevNullFunction · 0.85
maskPathsFunction · 0.85

Calls 2

VerifyInodeFunction · 0.92
isDevNullFunction · 0.85

Tested by

no test coverage detected

Used in the wild real call sites across dependent graphs

searching dependent graphs…