| 123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234 |
- {
- "ociVersion": "1.0.0",
- "platform": {
- "os": "linux",
- "arch": "amd64"
- },
- "process": {
- "terminal": false,
- "consoleSize": {
- "height": 0,
- "width": 0
- },
- "user": {
- "uid": 0,
- "gid": 0
- },
- "args": [
- "/usr/local/bin/run-system-container.sh"
- ],
- "env": [
- "PATH=/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/bin",
- "TERM=xterm",
- "OPTS=$OPTS",
- "PLAYBOOK_FILE=$PLAYBOOK_FILE",
- "ANSIBLE_CONFIG=$ANSIBLE_CONFIG"
- ],
- "cwd": "/usr/share/ansible/openshift-ansible",
- "rlimits": [
- {
- "type": "RLIMIT_NOFILE",
- "hard": 1024,
- "soft": 1024
- }
- ],
- "noNewPrivileges": true
- },
- "root": {
- "path": "rootfs",
- "readonly": true
- },
- "mounts": [
- {
- "destination": "/proc",
- "type": "proc",
- "source": "proc"
- },
- {
- "destination": "/dev",
- "type": "tmpfs",
- "source": "tmpfs",
- "options": [
- "nosuid",
- "strictatime",
- "mode=755",
- "size=65536k"
- ]
- },
- {
- "destination": "/dev/pts",
- "type": "devpts",
- "source": "devpts",
- "options": [
- "nosuid",
- "noexec",
- "newinstance",
- "ptmxmode=0666",
- "mode=0620",
- "gid=5"
- ]
- },
- {
- "destination": "/dev/shm",
- "type": "tmpfs",
- "source": "shm",
- "options": [
- "nosuid",
- "noexec",
- "nodev",
- "mode=1777",
- "size=65536k"
- ]
- },
- {
- "destination": "/dev/mqueue",
- "type": "mqueue",
- "source": "mqueue",
- "options": [
- "nosuid",
- "noexec",
- "nodev"
- ]
- },
- {
- "destination": "/sys",
- "type": "sysfs",
- "source": "sysfs",
- "options": [
- "nosuid",
- "noexec",
- "nodev",
- "ro"
- ]
- },
- {
- "type": "bind",
- "source": "$HOME_ROOT/.ssh",
- "destination": "/opt/app-root/src/.ssh",
- "options": [
- "bind",
- "rw",
- "mode=755"
- ]
- },
- {
- "type": "bind",
- "source": "$HOME_ROOT",
- "destination": "/root",
- "options": [
- "bind",
- "rw",
- "mode=755"
- ]
- },
- {
- "type": "bind",
- "source": "$VAR_LIB_OPENSHIFT_INSTALLER",
- "destination": "/var/lib/openshift-installer",
- "options": [
- "bind",
- "rw",
- "mode=755"
- ]
- },
- {
- "type": "bind",
- "source": "$VAR_LOG_OPENSHIFT_LOG",
- "destination": "/var/log/ansible.log",
- "options": [
- "bind",
- "rw",
- "mode=755"
- ]
- },
- {
- "destination": "/root/.ansible",
- "type": "tmpfs",
- "source": "tmpfs",
- "options": [
- "nosuid",
- "strictatime",
- "mode=755"
- ]
- },
- {
- "destination": "/tmp",
- "type": "tmpfs",
- "source": "tmpfs",
- "options": [
- "nosuid",
- "strictatime",
- "mode=755"
- ]
- },
- {
- "type": "bind",
- "source": "$INVENTORY_FILE",
- "destination": "/etc/ansible/hosts",
- "options": [
- "bind",
- "rw",
- "mode=755"
- ]
- },
- {
- "destination": "/etc/resolv.conf",
- "type": "bind",
- "source": "/etc/resolv.conf",
- "options": [
- "ro",
- "rbind",
- "rprivate"
- ]
- },
- {
- "destination": "/sys/fs/cgroup",
- "type": "cgroup",
- "source": "cgroup",
- "options": [
- "nosuid",
- "noexec",
- "nodev",
- "relatime",
- "ro"
- ]
- }
- ],
- "hooks": {
- },
- "linux": {
- "resources": {
- "devices": [
- {
- "allow": false,
- "access": "rwm"
- }
- ]
- },
- "namespaces": [
- {
- "type": "pid"
- },
- {
- "type": "mount"
- }
- ],
- "maskedPaths": [
- "/proc/kcore",
- "/proc/latency_stats",
- "/proc/timer_list",
- "/proc/timer_stats",
- "/proc/sched_debug",
- "/sys/firmware"
- ],
- "readonlyPaths": [
- "/proc/asound",
- "/proc/bus",
- "/proc/fs",
- "/proc/irq",
- "/proc/sys",
- "/proc/sysrq-trigger"
- ]
- }
- }
|
