Appendix B. OCI runtimes
This appendix describes the primary OCI runtimes used with container engines like Podman. As discussed in chapter 1, the OCI runtime (https://opencontainers.org) is the executable launched by container engines, including Podman, used to configure the Linux kernel and subsystems to run the kernel; its last step is launching the container. The OCI runtime reads the OCI runtime specification JSON file and then configures the namespaces, security controls, and cgroups and eventually starts the container process (figure B.1).
Figure B.1 Podman executes the OCI runtime to launch the container.
In this appendix, you’ll learn ...
Get Podman in Action now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.
