-
Notifications
You must be signed in to change notification settings - Fork 12
/
usage.txt
70 lines (64 loc) · 4.07 KB
/
usage.txt
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
usage: %1$s [-h] [options] [--] [<VAR=value...> [--]] [exe [args ...]]
Chroot into <root> and execute <exe> with the specified arguments,
setting up namespaces and other low-level minutiae that are needed in
order to enter a sane, isolated environment.
Environment variables can be overriden for the spacetime process by
specifying VAR=value before the executable to run.
Options:
-h, --help: Print this message.
--version: Print the version number.
-r, --root <dir> Set root directory.
--argv0 <arg> Set argv[0] (defaults to <exe>).
--share <dir>,
--share <ns,...>[=path] Share the specified namespaces using target
nsfs files (default: share parent namespaces).
--unshare <ns,...> Unshare the specified namespaces (all name-
spaces are unshared by default).
--persist <dir>,
--persist <ns,...>[=path] Persist process namespaces into target path
for re-entry.
--workdir <directory> Set current work directory.
--mount <mount> Mount source over target before
executing the program.
--umask <mask> Set the umask to the provided value.
--uid <uid> Set user ID.
--gid <gid> Set group ID.
--groups <gid,gid,...> Set additional groups.
--arch <arch> Set the execution domain.
--hostname <host> Set the host name.
--domainname <domain> Set the domain name.
--time <name>=<s>[.ns] Set the time of a specific clock.
--init=<init-argv> Use the specified outer path as init process.
--setup=<cmdline> Run the specified setup command with sh -euc.
--setup-exe=<path> Run the specified setup executable.
--uid-map=<map> Use the specified uid map for the user
namespace mapping.
--gid-map=<map> Use the specified gid map for the user
namespace mapping.
--nic <nic> Create network interface in namespace.
--ip <address>,<dev> Add an IP address to the specified interface.
--route <route> Add a route in the network namespace.
--cgroup-driver <driver> Specify cgroup driver to use (native, systemd).
--cgroup <name> Specify cgroup to join -- value dependent
on the cgroup driver in use.
--limit <res>=<value> Set the specified cgroup resource to the
provided value(s).
--try-limit <res>=<value> Same as --limit but fails silently when the
resource is unknown to the kernel.
--rlimit <res>=<hard>:<soft>,
--rlimit <res>=<value> Set the specified resource to the provided
value(s).
--pidfile <path> Write PID in file and exclusive-lock it.
--tty[=<options>] Allocate a pty for the process.
--close-fd[=<fd>|<from>-[to]] Close specified file descriptor or fd range
before exec, but after setup.
--no-copy-hard-rlimits Don't copy hard limit values to soft limits.
--no-fake-devtmpfs Don't replace devtmpfs mounts with fake ones.
--no-derandomize Don't attempt to reduce randomness sources.
--no-cgroup-remount Don't remount the existing /sys/fs/cgroup.
--no-proc-remount Don't remount the existing /proc in pid
namespaces.
--no-loopback-setup Don't bring the lo interface up in network
namespaces.
--no-env Clear the environment before running the
executable.