github.com/containers/podman/v5@v5.1.0-rc1/docs/source/markdown/options/rootfs.md

github.com/containers/podman/v5@v5.1.0-rc1/docs/source/markdown/options/rootfs.md (about)

     1  ####> This option file is used in:
     2  ####>   podman create, run
     3  ####> If file is edited, make sure the changes
     4  ####> are applicable to all of those.
     5  #### **--rootfs**
     6  
     7  If specified, the first argument refers to an exploded container on the file system.
     8  
     9  This is useful to run a container without requiring any image management, the rootfs
    10  of the container is assumed to be managed externally.
    11  
    12    `Overlay Rootfs Mounts`
    13  
    14     The `:O` flag tells Podman to mount the directory from the rootfs path as
    15  storage using the `overlay file system`. The container processes
    16  can modify content within the mount point which is stored in the
    17  container storage in a separate directory. In overlay terms, the source
    18  directory is the lower, and the container storage directory is the
    19  upper. Modifications to the mount point are destroyed when the container
    20  finishes executing, similar to a tmpfs mount point being unmounted.
    21  
    22  Note: On **SELinux** systems, the rootfs needs the correct label, which is by default
    23  **unconfined_u:object_r:container_file_t:s0**.
    24  
    25    `idmap`
    26  
    27  If `idmap` is specified, create an idmapped mount to the target user
    28  namespace in the container.
    29  The idmap option supports a custom mapping that can be different than the user
    30  namespace used by the container.  The mapping can be specified after the idmap
    31  option like: `idmap=uids=0-1-10#10-11-10;gids=0-100-10`.  For each triplet, the
    32  first value is the start of the backing file system IDs that are mapped to the
    33  second value on the host.  The length of this mapping is given in the third value.
    34  Multiple ranges are separated with #.