mirror of https://github.com/containers/podman.git synced 2025-05-17 15:18:43 +08:00

Files

Matthew Heon 046c0e5fc2 Only stop chowning volumes once they're not empty

When an empty volume is mounted into a container, Docker will
chown that volume appropriately for use in the container. Podman
does this as well, but there are differences in the details. In
Podman, a chown is presently a one-and-done deal; in Docker, it
will continue so long as the volume remains empty. Mount into a
dozen containers, but never add content, the chown occurs every
time. The chown is also linked to copy-up; it will always occur
when a copy-up occurred, despite the volume now not being empty.
This PR changes our logic to (mostly) match Docker's.

For some reason, the chowning also stops if the volume is chowned
to root at any point. This feels like a Docker bug, but as they
say, bug for bug compatible.

In retrospect, using bools for NeedsChown and NeedsCopyUp was a
mistake. Docker isn't actually tracking this stuff; they're just
doing a copy-up and permissions change unconditionally as long as
the volume is empty. They also have the two linked as one
operation, seemingly, despite happening at very different times
during container init. Replicating that in our stateful system is
nontrivial, hence the need for the new CopiedUp field. Basically,
we never want to chown a volume with contents in it, except if
that data is a result of a copy-up that resulted from mounting
into the current container. Tracking who did the copy-up is the
easiest way to do this.

Fixes #22571

Signed-off-by: Matthew Heon <matthew.heon@pm.me>

2024-05-22 17:47:01 -04:00

source

Only stop chowning volumes once they're not empty

2024-05-22 17:47:01 -04:00

tutorials

[CI:DOCS] performance: fix URL and kernel version requirement

2024-03-09 16:29:43 +01:00

dckrman.sh

Add information about .containerignore to podman build man page

2021-10-12 16:42:07 -04:00

kubernetes_support.md

kube: add DaemonSet support for generate

2023-09-12 10:30:57 +05:30

links-to-html.lua

Update XML to not embed quote in PATH on windows

2020-01-31 15:22:20 -07:00

make.bat

…

Makefile

Add default value for $RM

2022-08-13 07:53:34 +01:00

MANPAGE_SYNTAX.md

Clean up more language for inclusiveness

2023-01-27 09:40:27 -05:00

play.png

…

podman-derivative-api

Remove varlink support from Podman

2020-11-26 16:50:42 -05:00

README.md

Fix broken titles on readthedocs

2022-09-15 14:35:06 -06:00

remote-docs.sh

Makefile: add support for building freebsd release tarballs

2023-07-03 15:44:01 +01:00

requirements.txt

Use a new markdown converter for sphinx

2021-09-16 21:10:13 +02:00

standalone-styling.css

Open Windows tutorial after MSI installation

2022-06-16 23:46:24 -05:00

use-pagetitle.lua

[CI:DOCS] Add titles to remote docs (windows)

2021-04-29 22:18:13 +01:00

README.md

Podman Documentation

The online man pages and other documents regarding Podman can be found at Read The Docs. The man pages can be found under the Commands link on that page.

Build the Docs

Directory Structure

	Directory
Markdown source for man pages	docs/source/markdown/
man pages aliases as .so files	docs/source/markdown/links/
target for output	docs/build
man pages	docs/build/man
remote linux man pages	docs/build/remote/linux
remote darwin man pages	docs/build/remote/darwin
remote windows html pages	docs/build/remote/windows

Support files


docs/remote-docs.sh	Read the docs/source/markdown files and format for each platform
docs/links-to-html.lua	pandoc filter to do aliases for html files
docs/use-pagetitle.lua	pandoc filter to set html document title

Manpage Syntax

The syntax for the formatting of all man pages can be found here.

API Reference

The latest online documentation is automatically generated by two cooperating automation systems based on committed upstream source code. Firstly, the Cirrus-CI docs task builds pkg/api/swagger.yaml and uploads it to a public-facing location (Google Storage Bucket - an online service for storing unstructured data). Second, Read The Docs reacts to the github.com repository change, building the content for the libpod documentation site. This site includes for the API section, some javascript which consumes the uploaded swagger.yaml file directly from the Google Storage Bucket.

Since there are multiple systems and local cache is involved, it's possible that updates to documentation (especially the swagger/API docs) will lag by 10-or-so minutes. However, because the client (i.e. your web browser) is fetching content from multiple locations that do not share a common domain, accessing the API section may show a stack-trace similar to the following:

If reloading the page, or clearing your local cache does not fix the problem, it is likely caused by broken metadata needed to protect clients from cross-site-scripting style attacks. Please notify a maintainer so they may investigate how/why the swagger.yaml file's CORS-metadata is incorrect, or the file isn't accessible for some other reason.

Local Testing

To build standard man pages, run make docs. Results will be in docs/build/man.

To build HTMLized man pages: Assuming that you have the dependencies installed, then also install (showing Fedora in the example):

$ sudo dnf install python3-sphinx python3-recommonmark
$ pip install sphinx-markdown-tables myst_parser

(The above dependencies are current as of 2022-09-15. If you experience problems, please see requirements.txt in this directory, it will almost certainly be more up-to-date than this README.)

After that completes, cd to the docs directory in your Podman sandbox and then do make html.

You can then preview the html files in docs/build/html with:

python -m http.server 8000 --directory build/html

...and point your web browser at http://localhost:8000/