1
0
Fork 0
mirror of https://github.com/moby/moby.git synced 2022-11-09 12:21:53 -05:00
moby--moby/pkg
Dan Walsh b7942ec2ca This patch reworks the SELinux patch to be only run on demand by the daemon
Added --selinux-enable switch to daemon to enable SELinux labeling.

The daemon will now generate a new unique random SELinux label when a
container starts, and remove it when the container is removed.   The MCS
labels will be stored in the daemon memory.  The labels of containers will
be stored in the container.json file.

When the daemon restarts on boot or if done by an admin, it will read all containers json files and reserve the MCS labels.

A potential problem would be conflicts if you setup thousands of containers,
current scheme would handle ~500,000 containers.

Docker-DCO-1.1-Signed-off-by: Dan Walsh <dwalsh@redhat.com> (github: rhatdan)
Docker-DCO-1.1-Signed-off-by: Dan Walsh <dwalsh@redhat.com> (github: crosbymichael)
2014-04-29 03:40:05 -07:00
..
apparmor Make sure @proc is defined 2014-04-21 10:28:04 -07:00
beam Fix Go formatting in beam and dockerscript 2014-04-22 16:16:29 -07:00
cgroups Merge pull request #5455 from rjnagal/cgroup-stats 2014-04-28 17:53:37 -07:00
collections Remove std sort and use custom sort for performances 2014-01-26 14:01:38 -08:00
dockerscript Fix Go formatting in beam and dockerscript 2014-04-22 16:16:29 -07:00
graphdb SQLite is also available in FreeBSD 2014-04-17 07:19:30 +09:00
iptables Revert "Support hairpin NAT without going through docker server" 2014-04-09 11:55:08 +00:00
label This patch reworks the SELinux patch to be only run on demand by the daemon 2014-04-29 03:40:05 -07:00
libcontainer Initial work on selinux patch 2014-04-29 03:40:05 -07:00
listenbuffer adding configuration for timeout and disable it by default 2014-03-17 15:12:02 -07:00
mflag update godoc and add MAINTAINERS for mflags 2014-03-14 17:35:41 +00:00
mount Merge pull request #3841 from alexlarsson/separate-base-fs 2014-01-31 11:49:14 -08:00
namesgenerator Fix typo in names-generator 2014-04-04 00:57:43 +02:00
netlink Fix libcontainer network support on rhel6 2014-04-09 15:44:18 +02:00
proxy Remove verbose logging for non errors 2014-02-17 13:31:13 -08:00
selinux This patch reworks the SELinux patch to be only run on demand by the daemon 2014-04-29 03:40:05 -07:00
signal Like signal_linux.go, we don't have import os and os/signal 2014-03-11 23:14:58 +09:00
sysinfo remove ip_forward warning 2014-01-28 13:27:56 -06:00
system Use cgo to get systems clock ticks for metrics 2014-04-21 10:26:22 -07:00
systemd Add systemd.SdBooted() 2014-03-27 22:44:31 +01:00
term Use BSD raw mode on darwin. Fixes nano, tmux and others 2014-03-13 11:11:02 -07:00
user Use type switch instead of reflection 2014-01-31 20:15:24 -07:00
version Update Version to not use string anymore 2014-04-01 15:46:52 -07:00
README.md Add README to pkg 2013-12-23 23:12:19 +00:00

pkg/ is a collection of utility packages used by the Docker project without being specific to its internals.

Utility packages are kept separate from the docker core codebase to keep it as small and concise as possible. If some utilities grow larger and their APIs stabilize, they may be moved to their own repository under the Docker organization, to facilitate re-use by other projects. However that is not the priority.

The directory pkg is named after the same directory in the camlistore project. Since Brad is a core Go maintainer, we thought it made sense to copy his methods for organizing Go code :) Thanks Brad!

Because utility packages are small and neatly separated from the rest of the codebase, they are a good place to start for aspiring maintainers and contributors. Get in touch if you want to help maintain them!