Read-only filesystem containers in Docker - Time & Space Complexity

We want to understand how using a read-only filesystem in a Docker container affects the time it takes to run container commands.

Specifically, how does making the filesystem read-only change the speed or steps of container operations?

Analyze the time complexity of the following Docker run command with a read-only filesystem.

docker run --read-only --name mycontainer alpine sh -c "echo Hello && touch /file"

This command runs an Alpine container with its filesystem set to read-only, then tries to print a message and create a file inside the container.

Look for repeated actions or loops in the container's filesystem operations.

• Primary operation: The container tries to write a file with touch /file.
• How many times: This write operation happens once during the container run.

The container's attempt to write a file does not depend on input size; it is a single operation.

Input Size (n)	Approx. Operations
10	1 write attempt
100	1 write attempt
1000	1 write attempt

Pattern observation: The number of operations stays the same regardless of input size because the filesystem is read-only and the write fails immediately.

Time Complexity: O(1)

This means the time to run the container command with a read-only filesystem stays constant no matter the input size.

[X] Wrong: "Making the filesystem read-only will slow down all container operations significantly because every file access is checked."

[OK] Correct: The read-only setting mainly affects write operations, which fail fast. Read operations proceed normally without extra delay.

Understanding how container filesystem modes affect operation speed helps you explain trade-offs in container security and performance clearly.

"What if the container uses a writable volume mounted on top of the read-only filesystem? How would that change the time complexity of write operations?"