jasder/runc - runc - 军科开源项目托管

Commit Graph

Author	SHA1	Message	Date
Michael Crosby	9c41e8388c	Handle seccomp proc parsing errors Signed-off-by: Michael Crosby <crosbymichael@gmail.com>	2016-01-19 11:43:49 -08:00
Jessica Frazelle	41edbeb25e	add seccomp.IsEnabled() function This is much like apparmor.IsEnabled() function and a nice helper. Signed-off-by: Jessica Frazelle <acidburn@docker.com>	2016-01-18 10:44:31 -08:00
Michael Crosby	caca840972	Add seccomp trace support Closes #347 Signed-off-by: Michael Crosby <crosbymichael@gmail.com>	2015-11-12 17:03:53 -08:00
Matthew Heon	795a6c9702	Libcontainer: Add support for multiple architectures in Seccomp This commit allows additional architectures to be added to Seccomp filters created by containers. This allows containers to make syscalls using these architectures. For example, in a container on an AMD64 system, only AMD64 syscalls would be usable unless x86 was added to the filter using this patch, which would allow both 32-bit and 64-bit syscalls to be used. Signed-off-by: Matthew Heon <mheon@redhat.com>	2015-09-23 13:54:24 -04:00
Michael Crosby	a8e0185d97	Add seccomp build tag Add a seccomp build tag and also support in the Makefile to add or remove build tags. Signed-off-by: Michael Crosby <crosbymichael@gmail.com>	2015-09-11 12:03:57 -07:00
Matthew Heon	a6b73dbc73	Remove Seccomp build tag to fix godep Signed-off-by: Matthew Heon <mheon@redhat.com>	2015-08-13 15:23:43 -04:00
Matthew Heon	2ae581ae62	Convert Seccomp support to use Libseccomp This removes the existing, native Go seccomp filter generation and replaces it with Libseccomp. Libseccomp is a C library which provides architecture independent generation of Seccomp filters for the Linux kernel. This adds a dependency on v2.2.1 or above of Libseccomp. Signed-off-by: Matthew Heon <mheon@redhat.com>	2015-08-13 07:56:27 -04:00

7 Commits