mirror of
https://github.com/moby/moby.git
synced 2022-11-09 12:21:53 -05:00
b7942ec2ca
Added --selinux-enable switch to daemon to enable SELinux labeling. The daemon will now generate a new unique random SELinux label when a container starts, and remove it when the container is removed. The MCS labels will be stored in the daemon memory. The labels of containers will be stored in the container.json file. When the daemon restarts on boot or if done by an admin, it will read all containers json files and reserve the MCS labels. A potential problem would be conflicts if you setup thousands of containers, current scheme would handle ~500,000 containers. Docker-DCO-1.1-Signed-off-by: Dan Walsh <dwalsh@redhat.com> (github: rhatdan) Docker-DCO-1.1-Signed-off-by: Dan Walsh <dwalsh@redhat.com> (github: crosbymichael) |
||
|---|---|---|
| .. | ||
| execdriver | ||
| graphdriver | ||
| networkdriver | ||
| container.go | ||
| container_unit_test.go | ||
| daemon.go | ||
| daemon_aufs.go | ||
| daemon_btrfs.go | ||
| daemon_devicemapper.go | ||
| daemon_no_aufs.go | ||
| history.go | ||
| network_settings.go | ||
| server.go | ||
| sorter.go | ||
| state.go | ||
| utils.go | ||
| utils_test.go | ||
| volumes.go | ||