You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Copy file name to clipboardExpand all lines: config-linux.md
+6-3Lines changed: 6 additions & 3 deletions
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -35,11 +35,14 @@ The following parameters can be specified to setup namespaces:
35
35
***`user`** the container will be able to remap user and group IDs from the host to local users and groups within the container.
36
36
***`cgroup`** the container will have an isolated view of the cgroup hierarchy.
37
37
38
-
***`path`***(string, OPTIONAL)* - an absolute path to namespace file in the [runtime mount namespace](glossary.md#runtime-namespace)
38
+
***`path`***(string, OPTIONAL)* - an absolute path to namespace file in the [runtime mount namespace](glossary.md#runtime-namespace).
39
+
The runtime MUST place the container process in the namespace associated with that `path`.
40
+
The runtime MUST [generate an error](runtime.md#errors) if `path` is not associated with a namespace of type `type`.
41
+
42
+
If `path` is not specified, the runtime MUST create a new [container namespace](glossary.md#container-namespace) of type `type`.
39
43
40
-
If a path is specified, that particular file is used to join that type of namespace.
41
44
If a namespace type is not specified in the `namespaces` array, the container MUST inherit the [runtime namespace](glossary.md#runtime-namespace) of that type.
42
-
If a `namespaces` field contains duplicated namespaces with same `type`, the runtime MUST error out.
45
+
If a `namespaces` field contains duplicated namespaces with same `type`, the runtime MUST [generate an error](runtime.md#errors).
0 commit comments