c0333b102b
Use containers/storage to store images, pod sandboxes, and containers. A pod sandbox's infrastructure container has the same ID as the pod to which it belongs, and all containers also keep track of their pod's ID. The container configuration that we build using the data in a CreateContainerRequest is stored in the container's ContainerDirectory and ContainerRunDirectory. We catch SIGTERM and SIGINT, and when we receive either, we gracefully exit the grpc loop. If we also think that there aren't any container filesystems in use, we attempt to do a clean shutdown of the storage driver. The test harness now waits for ocid to exit before attempting to delete the storage root directory. Signed-off-by: Nalin Dahyabhai <nalin@redhat.com>
95 lines
2.4 KiB
Markdown
95 lines
2.4 KiB
Markdown
% ocid.conf(5) Open Container Initiative Daemon
|
|
% Aleksa Sarai
|
|
% OCTOBER 2016
|
|
|
|
# NAME
|
|
ocid.conf - Syntax of OCID configuration file
|
|
|
|
# DESCRIPTION
|
|
The OCID configuration file specifies all of the available command-line options
|
|
for the ocid(8) program, but in a TOML format that can be more easily modified
|
|
and versioned.
|
|
|
|
# FORMAT
|
|
The [TOML format][toml] is used as the encoding of the configuration file.
|
|
Every option and subtable listed here is nested under a global "ocid" table.
|
|
No bare options are used. The format of TOML can be simplified to:
|
|
|
|
[table]
|
|
option = value
|
|
|
|
[table.subtable1]
|
|
option = value
|
|
|
|
[table.subtable2]
|
|
option = value
|
|
|
|
## OCID TABLE
|
|
|
|
The `ocid` table supports the following options:
|
|
|
|
|
|
**root**=""
|
|
OCID root dir (default: "/var/lib/containers")
|
|
|
|
**runroot**=""
|
|
OCID state dir (default: "/var/run/containers")
|
|
|
|
**storage_driver**=""
|
|
OCID storage driver (default is "devicemapper")
|
|
|
|
**storage_option**=[]
|
|
OCID storage driver option list (no default)
|
|
|
|
## OCID.API TABLE
|
|
|
|
**listen**=""
|
|
Path to ocid socket (default: "/var/run/ocid.sock")
|
|
|
|
## OCID.RUNTIME TABLE
|
|
|
|
**conmon**=""
|
|
Path to the conmon executable (default: "/usr/libexec/ocid/conmon")
|
|
|
|
**conmon_env**=[]
|
|
Environment variable list for conmon process (default: ["PATH=/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/bin",])
|
|
|
|
**runtime**=""
|
|
OCI runtime path (default: "/usr/bin/runc")
|
|
|
|
**selinux**=*true*|*false*
|
|
Enable selinux support (default: false)
|
|
|
|
**signature_policy**=""
|
|
Path to the signature policy json file (default: "", to use the system-wide default)
|
|
|
|
**seccomp_profile**=""
|
|
Path to the seccomp json profile to be used as the runtime's default (default: "/etc/ocid/seccomp.json")
|
|
|
|
**apparmor_profile**=""
|
|
Name of the apparmor profile to be used as the runtime's default (default: "ocid-default")
|
|
|
|
## OCID.IMAGE TABLE
|
|
|
|
**default_transport**
|
|
A prefix to prepend to image names that can't be pulled as-is (default: "docker://")
|
|
|
|
**pause_command**=""
|
|
Path to the pause executable in the pause image (default: "/pause")
|
|
|
|
**pause_image**=""
|
|
Image which contains the pause executable (default: "kubernetes/pause")
|
|
|
|
## OCID.NETWORK TABLE
|
|
|
|
**network_dir**=""
|
|
Path to CNI configuration files (default: "/etc/cni/net.d/")
|
|
|
|
**plugin_dir**=""
|
|
Path to CNI plugin binaries (default: "/opt/cni/bin/")
|
|
|
|
# SEE ALSO
|
|
ocid(8)
|
|
|
|
# HISTORY
|
|
Oct 2016, Originally compiled by Aleksa Sarai <asarai@suse.de>
|