quadlet: Change ReadOnly to default to enabled

This makees much more sense for typical service loads, and can easily be reverted by `ReadOnly=no`. Also updates and adds various tests for this. Signed-off-by: Alexander Larsson <alexl@redhat.com>
2025-12-01 18:49:18 +08:00 · 2022-10-20 09:51:46 +02:00
parent 0de98b1b6c
commit 998f834b04
8 changed files with 28 additions and 5 deletions
--- a/test/e2e/quadlet/basic.container
+++ b/test/e2e/quadlet/basic.container
@@ -12,7 +12,8 @@
 ## assert-podman-args "--sdnotify=conmon"
 ## assert-podman-args "--security-opt=no-new-privileges"
 ## assert-podman-args "--cap-drop=all"
-## assert-podman-args "--tmpfs" "/tmp:rw,size=512M,mode=1777"
+## assert-podman-args "--read-only"
+## !assert-podman-args "--read-only-tmpfs=false"
 ## assert-key-is "Unit" "RequiresMountsFor" "%t/containers"
 ## assert-key-is "Service" "KillMode" "mixed"
 ## assert-key-is "Service" "Delegate" "yes"