vbatts/cri-o
1
0
Fork 0
Code Issues Pull requests Releases Wiki Activity
cri-o/oci
History
Samuel Ortiz 2ec696be41 server: Set sandbox and container privileged flags 
The sandbox privileged flag is set to true only if either the
pod configuration privileged flag is set to true or when any
of the pod namespaces are the host ones.

A container inherit its privileged flag from its sandbox, and
will be run by the privileged runtime only if it's set to true.
In other words, the privileged runtime (when defined) will be
when one of the below conditions is true:

- The sandbox will be asked to run at least one privileged container.
- The sandbox requires access to either the host IPC or networking
  namespaces.

Signed-off-by: Samuel Ortiz <sameo@linux.intel.com>
2017-03-03 19:06:04 +01:00
..
history.go use an in memory store for containers 2016-09-19 13:11:36 +02:00
memory_store.go fix typo to make go report more happy 2017-01-04 14:24:11 +08:00
oci.go server: Set sandbox and container privileged flags 2017-03-03 19:06:04 +01:00
store.go use an in memory store for containers 2016-09-19 13:11:36 +02:00