runc/apparmor at f79e211b1d5763d25fb8debda70a764ca86a0f23 - runc

History

Tobias Klauser db093f621f libcontainer: remove dependency on libapparmor libapparmor is integrated in libcontainer using cgo but is only used to call a single function: aa_change_onexec. It turns out this function is simple enough (writing a string to a file in /proc/<n>/attr/...) to be re-implemented locally in libcontainer in plain Go. This allows to drop the dependency on libapparmor and the corresponding cgo integration. Fixes #1674 Signed-off-by: Tobias Klauser <tklauser@distanz.ch>	2017-12-15 09:59:58 +01:00
..
apparmor.go	libcontainer: remove dependency on libapparmor	2017-12-15 09:59:58 +01:00
apparmor_disabled.go	Adding error conditions when apparmor disabled	2015-11-22 13:14:18 +05:30

Tobias Klauser db093f621f libcontainer: remove dependency on libapparmor

libapparmor is integrated in libcontainer using cgo but is only used to
call a single function: aa_change_onexec. It turns out this function is
simple enough (writing a string to a file in /proc/<n>/attr/...) to be
re-implemented locally in libcontainer in plain Go.

This allows to drop the dependency on libapparmor and the corresponding
cgo integration.

Fixes #1674

Signed-off-by: Tobias Klauser <tklauser@distanz.ch>

2017-12-15 09:59:58 +01:00

apparmor.go

libcontainer: remove dependency on libapparmor

2017-12-15 09:59:58 +01:00

apparmor_disabled.go

Adding error conditions when apparmor disabled

2015-11-22 13:14:18 +05:30