Tree - container/kubernetes-kubelet - src.fedoraproject.org

container / kubernetes-kubelet

Blame config.json.template

Blob History Raw

		a4e9020	`{`
		a4e9020	`"ociVersion": "1.0.0",`
		a4e9020	`"platform": {`
		a4e9020	`"os": "linux",`
		a4e9020	`"arch": "amd64"`
		a4e9020	`},`
		a4e9020	`"process": {`
		a4e9020	`"terminal": false,`
		a4e9020	`"user": {},`
		a4e9020	`"args": [`
		a4e9020	`"/usr/bin/kubelet-docker.sh"`
		a4e9020	`],`
		a4e9020	`"env": [`
		a4e9020	`"PATH=/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/bin",`
		a4e9020	`"TERM=xterm"`
		a4e9020	`],`
		a4e9020	`"noNewPrivileges": false,`
		a4e9020	`"cwd": "/",`
		a4e9020	`"capabilities": {`
		a4e9020	`"bounding": [`
		a4e9020	`"CAP_CHOWN",`
		a4e9020	`"CAP_DAC_OVERRIDE",`
		a4e9020	`"CAP_DAC_READ_SEARCH",`
		a4e9020	`"CAP_FOWNER",`
		a4e9020	`"CAP_FSETID",`
		a4e9020	`"CAP_KILL",`
		a4e9020	`"CAP_SETGID",`
		a4e9020	`"CAP_SETUID",`
		a4e9020	`"CAP_SETPCAP",`
		a4e9020	`"CAP_LINUX_IMMUTABLE",`
		a4e9020	`"CAP_NET_BIND_SERVICE",`
		a4e9020	`"CAP_NET_BROADCAST",`
		a4e9020	`"CAP_NET_ADMIN",`
		a4e9020	`"CAP_NET_RAW",`
		a4e9020	`"CAP_IPC_LOCK",`
		a4e9020	`"CAP_IPC_OWNER",`
		a4e9020	`"CAP_SYS_MODULE",`
		a4e9020	`"CAP_SYS_RAWIO",`
		a4e9020	`"CAP_SYS_CHROOT",`
		a4e9020	`"CAP_SYS_PTRACE",`
		a4e9020	`"CAP_SYS_PACCT",`
		a4e9020	`"CAP_SYS_ADMIN",`
		a4e9020	`"CAP_SYS_BOOT",`
		a4e9020	`"CAP_SYS_NICE",`
		a4e9020	`"CAP_SYS_RESOURCE",`
		a4e9020	`"CAP_SYS_TIME",`
		a4e9020	`"CAP_SYS_TTY_CONFIG",`
		a4e9020	`"CAP_MKNOD",`
		a4e9020	`"CAP_LEASE",`
		a4e9020	`"CAP_AUDIT_WRITE",`
		a4e9020	`"CAP_AUDIT_CONTROL",`
		a4e9020	`"CAP_SETFCAP",`
		a4e9020	`"CAP_MAC_OVERRIDE",`
		a4e9020	`"CAP_MAC_ADMIN",`
		a4e9020	`"CAP_SYSLOG",`
		a4e9020	`"CAP_WAKE_ALARM",`
		a4e9020	`"CAP_BLOCK_SUSPEND"`
		a4e9020	`],`
		a4e9020	`"permitted": [`
		a4e9020	`"CAP_CHOWN",`
		a4e9020	`"CAP_DAC_OVERRIDE",`
		a4e9020	`"CAP_DAC_READ_SEARCH",`
		a4e9020	`"CAP_FOWNER",`
		a4e9020	`"CAP_FSETID",`
		a4e9020	`"CAP_KILL",`
		a4e9020	`"CAP_SETGID",`
		a4e9020	`"CAP_SETUID",`
		a4e9020	`"CAP_SETPCAP",`
		a4e9020	`"CAP_LINUX_IMMUTABLE",`
		a4e9020	`"CAP_NET_BIND_SERVICE",`
		a4e9020	`"CAP_NET_BROADCAST",`
		a4e9020	`"CAP_NET_ADMIN",`
		a4e9020	`"CAP_NET_RAW",`
		a4e9020	`"CAP_IPC_LOCK",`
		a4e9020	`"CAP_IPC_OWNER",`
		a4e9020	`"CAP_SYS_MODULE",`
		a4e9020	`"CAP_SYS_RAWIO",`
		a4e9020	`"CAP_SYS_CHROOT",`
		a4e9020	`"CAP_SYS_PTRACE",`
		a4e9020	`"CAP_SYS_PACCT",`
		a4e9020	`"CAP_SYS_ADMIN",`
		a4e9020	`"CAP_SYS_BOOT",`
		a4e9020	`"CAP_SYS_NICE",`
		a4e9020	`"CAP_SYS_RESOURCE",`
		a4e9020	`"CAP_SYS_TIME",`
		a4e9020	`"CAP_SYS_TTY_CONFIG",`
		a4e9020	`"CAP_MKNOD",`
		a4e9020	`"CAP_LEASE",`
		a4e9020	`"CAP_AUDIT_WRITE",`
		a4e9020	`"CAP_AUDIT_CONTROL",`
		a4e9020	`"CAP_SETFCAP",`
		a4e9020	`"CAP_MAC_OVERRIDE",`
		a4e9020	`"CAP_MAC_ADMIN",`
		a4e9020	`"CAP_SYSLOG",`
		a4e9020	`"CAP_WAKE_ALARM",`
		a4e9020	`"CAP_BLOCK_SUSPEND"`
		a4e9020	`],`
		a4e9020	`"inheritable": [`
		a4e9020	`"CAP_CHOWN",`
		a4e9020	`"CAP_DAC_OVERRIDE",`
		a4e9020	`"CAP_DAC_READ_SEARCH",`
		a4e9020	`"CAP_FOWNER",`
		a4e9020	`"CAP_FSETID",`
		a4e9020	`"CAP_KILL",`
		a4e9020	`"CAP_SETGID",`
		a4e9020	`"CAP_SETUID",`
		a4e9020	`"CAP_SETPCAP",`
		a4e9020	`"CAP_LINUX_IMMUTABLE",`
		a4e9020	`"CAP_NET_BIND_SERVICE",`
		a4e9020	`"CAP_NET_BROADCAST",`
		a4e9020	`"CAP_NET_ADMIN",`
		a4e9020	`"CAP_NET_RAW",`
		a4e9020	`"CAP_IPC_LOCK",`
		a4e9020	`"CAP_IPC_OWNER",`
		a4e9020	`"CAP_SYS_MODULE",`
		a4e9020	`"CAP_SYS_RAWIO",`
		a4e9020	`"CAP_SYS_CHROOT",`
		a4e9020	`"CAP_SYS_PTRACE",`
		a4e9020	`"CAP_SYS_PACCT",`
		a4e9020	`"CAP_SYS_ADMIN",`
		a4e9020	`"CAP_SYS_BOOT",`
		a4e9020	`"CAP_SYS_NICE",`
		a4e9020	`"CAP_SYS_RESOURCE",`
		a4e9020	`"CAP_SYS_TIME",`
		a4e9020	`"CAP_SYS_TTY_CONFIG",`
		a4e9020	`"CAP_MKNOD",`
		a4e9020	`"CAP_LEASE",`
		a4e9020	`"CAP_AUDIT_WRITE",`
		a4e9020	`"CAP_AUDIT_CONTROL",`
		a4e9020	`"CAP_SETFCAP",`
		a4e9020	`"CAP_MAC_OVERRIDE",`
		a4e9020	`"CAP_MAC_ADMIN",`
		a4e9020	`"CAP_SYSLOG",`
		a4e9020	`"CAP_WAKE_ALARM",`
		a4e9020	`"CAP_BLOCK_SUSPEND"`
		a4e9020	`],`
		a4e9020	`"effective": [`
		a4e9020	`"CAP_CHOWN",`
		a4e9020	`"CAP_DAC_OVERRIDE",`
		a4e9020	`"CAP_DAC_READ_SEARCH",`
		a4e9020	`"CAP_FOWNER",`
		a4e9020	`"CAP_FSETID",`
		a4e9020	`"CAP_KILL",`
		a4e9020	`"CAP_SETGID",`
		a4e9020	`"CAP_SETUID",`
		a4e9020	`"CAP_SETPCAP",`
		a4e9020	`"CAP_LINUX_IMMUTABLE",`
		a4e9020	`"CAP_NET_BIND_SERVICE",`
		a4e9020	`"CAP_NET_BROADCAST",`
		a4e9020	`"CAP_NET_ADMIN",`
		a4e9020	`"CAP_NET_RAW",`
		a4e9020	`"CAP_IPC_LOCK",`
		a4e9020	`"CAP_IPC_OWNER",`
		a4e9020	`"CAP_SYS_MODULE",`
		a4e9020	`"CAP_SYS_RAWIO",`
		a4e9020	`"CAP_SYS_CHROOT",`
		a4e9020	`"CAP_SYS_PTRACE",`
		a4e9020	`"CAP_SYS_PACCT",`
		a4e9020	`"CAP_SYS_ADMIN",`
		a4e9020	`"CAP_SYS_BOOT",`
		a4e9020	`"CAP_SYS_NICE",`
		a4e9020	`"CAP_SYS_RESOURCE",`
		a4e9020	`"CAP_SYS_TIME",`
		a4e9020	`"CAP_SYS_TTY_CONFIG",`
		a4e9020	`"CAP_MKNOD",`
		a4e9020	`"CAP_LEASE",`
		a4e9020	`"CAP_AUDIT_WRITE",`
		a4e9020	`"CAP_AUDIT_CONTROL",`
		a4e9020	`"CAP_SETFCAP",`
		a4e9020	`"CAP_MAC_OVERRIDE",`
		a4e9020	`"CAP_MAC_ADMIN",`
		a4e9020	`"CAP_SYSLOG",`
		a4e9020	`"CAP_WAKE_ALARM",`
		a4e9020	`"CAP_BLOCK_SUSPEND"`
		a4e9020	`],`
		a4e9020	`"ambient": [`
		a4e9020	`"CAP_CHOWN",`
		a4e9020	`"CAP_DAC_OVERRIDE",`
		a4e9020	`"CAP_DAC_READ_SEARCH",`
		a4e9020	`"CAP_FOWNER",`
		a4e9020	`"CAP_FSETID",`
		a4e9020	`"CAP_KILL",`
		a4e9020	`"CAP_SETGID",`
		a4e9020	`"CAP_SETUID",`
		a4e9020	`"CAP_SETPCAP",`
		a4e9020	`"CAP_LINUX_IMMUTABLE",`
		a4e9020	`"CAP_NET_BIND_SERVICE",`
		a4e9020	`"CAP_NET_BROADCAST",`
		a4e9020	`"CAP_NET_ADMIN",`
		a4e9020	`"CAP_NET_RAW",`
		a4e9020	`"CAP_IPC_LOCK",`
		a4e9020	`"CAP_IPC_OWNER",`
		a4e9020	`"CAP_SYS_MODULE",`
		a4e9020	`"CAP_SYS_RAWIO",`
		a4e9020	`"CAP_SYS_CHROOT",`
		a4e9020	`"CAP_SYS_PTRACE",`
		a4e9020	`"CAP_SYS_PACCT",`
		a4e9020	`"CAP_SYS_ADMIN",`
		a4e9020	`"CAP_SYS_BOOT",`
		a4e9020	`"CAP_SYS_NICE",`
		a4e9020	`"CAP_SYS_RESOURCE",`
		a4e9020	`"CAP_SYS_TIME",`
		a4e9020	`"CAP_SYS_TTY_CONFIG",`
		a4e9020	`"CAP_MKNOD",`
		a4e9020	`"CAP_LEASE",`
		a4e9020	`"CAP_AUDIT_WRITE",`
		a4e9020	`"CAP_AUDIT_CONTROL",`
		a4e9020	`"CAP_SETFCAP",`
		a4e9020	`"CAP_MAC_OVERRIDE",`
		a4e9020	`"CAP_MAC_ADMIN",`
		a4e9020	`"CAP_SYSLOG",`
		a4e9020	`"CAP_WAKE_ALARM",`
		a4e9020	`"CAP_BLOCK_SUSPEND"`
		a4e9020	`]`
		a4e9020	`},`
		a4e9020	`"rlimits": [`
		a4e9020	`{`
		a4e9020	`"type": "RLIMIT_NOFILE",`
		a4e9020	`"hard": 1024,`
		a4e9020	`"soft": 1024`
		a4e9020	`}`
		a4e9020	`]`
		a4e9020	`},`
		a4e9020	`"root": {`
		a4e9020	`"path": "rootfs",`
		a4e9020	`"readonly": true`
		a4e9020	`},`
		a4e9020	`"mounts": [`
		a4e9020	`{`
		a4e9020	`"destination": "/proc",`
		a4e9020	`"type": "proc",`
		a4e9020	`"source": "proc"`
		a4e9020	`},`
		a4e9020	`{`
		87638b8	`"source": "/dev",`
		a4e9020	`"destination": "/dev",`
		87638b8	`"type": "bind",`
		a4e9020	`"options": [`
		87638b8	`"rbind",`
		87638b8	`"rslave"`
		a4e9020	`]`
		a4e9020	`},`
		a4e9020	`{`
		a4e9020	`"destination": "/dev/pts",`
		a4e9020	`"type": "devpts",`
		a4e9020	`"source": "devpts",`
		a4e9020	`"options": [`
		a4e9020	`"nosuid",`
		a4e9020	`"noexec",`
		a4e9020	`"newinstance",`
		a4e9020	`"ptmxmode=0666",`
		a4e9020	`"mode=0620",`
		a4e9020	`"gid=5"`
		a4e9020	`]`
		a4e9020	`},`
		a4e9020	`{`
		a4e9020	`"destination": "/dev/shm",`
		a4e9020	`"type": "tmpfs",`
		a4e9020	`"source": "shm",`
		a4e9020	`"options": [`
		a4e9020	`"nosuid",`
		a4e9020	`"noexec",`
		a4e9020	`"nodev",`
		a4e9020	`"mode=1777",`
		a4e9020	`"size=65536k"`
		a4e9020	`]`
		a4e9020	`},`
		a4e9020	`{`
		87638b8	`"type": "bind",`
		87638b8	`"source": "/sys",`
		a4e9020	`"destination": "/sys",`
		a4e9020	`"options": [`
		87638b8	`"rbind",`
		87638b8	`"rw"`
		a4e9020	`]`
		a4e9020	`},`
		a4e9020	`{`
		87638b8	`"type": "bind",`
		87638b8	`"source": "/etc/cni/net.d",`
		87638b8	`"destination": "/etc/cni/net.d",`
		87638b8	`"options": [`
		87638b8	`"bind",`
		87638b8	`"slave",`
		87638b8	`"rw",`
		87638b8	`"mode=777"`
		87638b8	`]`
		a4e9020	`},`
		a4e9020	`{`
		a4e9020	`"type": "bind",`
		a4e9020	`"source": "/etc/kubernetes",`
		a4e9020	`"destination": "/etc/kubernetes",`
		a4e9020	`"options": [`
		a4e9020	`"rbind",`
		a4e9020	`"ro",`
		a4e9020	`"rprivate"`
		a4e9020	`]`
		a4e9020	`},`
		a4e9020	`{`
		87638b8	`"type": "bind",`
		87638b8	`"source": "/etc/localtime",`
		87638b8	`"destination": "/etc/localtime",`
		87638b8	`"options": [`
		87638b8	`"rbind",`
		87638b8	`"ro"`
		87638b8	`]`
		87638b8	`},`
		87638b8	`{`
		87638b8	`"type": "bind",`
		87638b8	`"source": "/etc/pki",`
		87638b8	`"destination": "/etc/pki",`
		87638b8	`"options": [`
		87638b8	`"bind",`
		87638b8	`"ro"`
		87638b8	`]`
		87638b8	`},`
		87638b8	`{`
		a4e9020	`"destination": "/etc/resolv.conf",`
		a4e9020	`"type": "bind",`
		a4e9020	`"source": "/etc/resolv.conf",`
		a4e9020	`"options": [`
		a4e9020	`"ro",`
		87638b8	`"bind"`
		a4e9020	`]`
		a4e9020	`},`
		a4e9020	`{`
		a4e9020	`"type": "bind",`
		a4e9020	`"source": "/",`
		a4e9020	`"destination": "/rootfs",`
		a4e9020	`"options": [`
		a4e9020	`"rbind",`
		a4e9020	`"rslave",`
		a4e9020	`"ro"`
		a4e9020	`]`
		a4e9020	`},`
		a4e9020	`{`
		a4e9020	`"type": "bind",`
		87638b8	`"source": "/var/run/secrets",`
		87638b8	`"destination": "/var/run/secrets",`
		a4e9020	`"options": [`
		a4e9020	`"rbind",`
		a4e9020	`"rw",`
		a4e9020	`"mode=755"`
		a4e9020	`]`
		a4e9020	`},`
		a4e9020	`{`
		a4e9020	`"type": "bind",`
		87638b8	`"source": "${RUN_DIRECTORY}",`
		a4e9020	`"destination": "/run",`
		a4e9020	`"options": [`
		a4e9020	`"rbind",`
		a4e9020	`"rw",`
		a4e9020	`"mode=755"`
		a4e9020	`]`
		a4e9020	`},`
		a4e9020	`{`
		a4e9020	`"type": "bind",`
		87638b8	`"source": "${STATE_DIRECTORY}",`
		a4e9020	`"destination": "/var/lib",`
		a4e9020	`"options": [`
		a4e9020	`"bind",`
		a4e9020	`"rw",`
		a4e9020	`"mode=755"`
		a4e9020	`]`
		a4e9020	`},`
		a4e9020	`{`
		a4e9020	`"type": "bind",`
		87638b8	`"source": "${STATE_DIRECTORY}/kubelet",`
		a4e9020	`"destination": "/var/lib/kubelet",`
		a4e9020	`"options": [`
		a4e9020	`"rbind",`
		87638b8	`"rshared",`
		a4e9020	`"rw",`
		a4e9020	`"mode=755"`
		a4e9020	`]`
		a4e9020	`},`
		a4e9020	`{`
		a4e9020	`"type": "bind",`
		a4e9020	`"source": "/var/log",`
		a4e9020	`"destination": "/var/log",`
		a4e9020	`"options": [`
		a4e9020	`"bind",`
		a4e9020	`"rw",`
		a4e9020	`"mode=755"`
		a4e9020	`]`
		87638b8	`},`
		87638b8	`{`
		87638b8	`"destination": "/tmp",`
		87638b8	`"type": "tmpfs",`
		87638b8	`"source": "tmpfs",`
		87638b8	`"options": [`
		87638b8	`"mode=755",`
		87638b8	`"size=65536k"`
		87638b8	`]`
		a4e9020	`}`
		87638b8	`$ADDTL_MOUNTS`
		a4e9020	`],`
		a4e9020	`"linux": {`
		a4e9020	`"rootfsPropagation": "rslave",`
		a4e9020	`"resources": {`
		a4e9020	`"devices": [`
		a4e9020	`{`
		87638b8	`"allow": true,`
		a4e9020	`"access": "rwm"`
		a4e9020	`}`
		a4e9020	`]`
		a4e9020	`},`
		a4e9020	`"namespaces": [`
		a4e9020	`{`
		a4e9020	`"type": "mount"`
		a4e9020	`}`
		a4e9020	`],`
		a4e9020	`"devices": null,`
		87638b8	`"apparmorProfile": ""`
		a4e9020	`}`
		a4e9020	`}`

container / kubernetes-kubelet

Source Code

Blame config.json.template