kotovalexarian-likes-github/moby--moby
1
0
Fork 0
mirror of https://github.com/moby/moby.git synced 2022-11-09 12:21:53 -05:00
Code Releases Activity
moby--moby/contrib
History
Justin Cormack dcf2632945 Revert "Block obsolete socket families in the default seccomp profile" 
This reverts commit 7e3a596a63.

Unfortunately, it was pointed out in https://github.com/moby/moby/pull/29076#commitcomment-21831387
that the `socketcall` syscall takes a pointer to a struct so it is not possible to
use seccomp profiles to filter it. This means these cannot be blocked as you can
use `socketcall` to call them regardless, as we currently allow 32 bit syscalls.

Users who wish to block these should use a seccomp profile that blocks all
32 bit syscalls and then just block the non socketcall versions.

Signed-off-by: Justin Cormack <justin.cormack@docker.com>
2017-05-09 14:26:00 +01:00
..
apparmor apparmor: fix version checks to work properly 2016-02-15 20:36:07 +11:00
builder Remove Ubuntu 12.04 "precise pangolin" from build scripts 2017-04-11 14:08:39 +02:00
completion bash completion for stack deploy --prune 2017-05-08 10:14:15 +02:00
desktop-integration
docker-device-tool modify some wrong func information in device_tool.go 2016-12-13 17:49:03 +08:00
gitdm Update gitdm domain-map 2017-04-10 14:28:27 -07:00
httpserver Add functional support for Docker sub commands on Solaris 2016-11-07 09:06:34 -08:00
init contrib/init/openrc: allow separate logs for stdout and stderr 2017-02-23 17:07:26 -06:00
mkimage mkimage: add debian security updates source when available 2016-12-14 23:23:00 +08:00
nnp-test Add support for NoNewPrivileges in docker 2016-03-07 09:47:02 -08:00
reprepro Convert script shebangs from "#!/bin/bash" to "#!/usr/bin/env bash" 2017-02-13 11:01:54 -08:00
selinux/docker-engine-selinux Fix conflicts with newly updated selinux policies 2017-01-06 16:04:24 -05:00
selinux-fedora-24/docker-engine-selinux Add selinux policy per distro 2016-08-04 14:29:22 -07:00
selinux-oraclelinux-7/docker-engine-selinux Update oracle linux selinux to match docker upstream 2017-03-24 12:17:39 -07:00
syntax Remove unmaintained Dockerfile syntax for Kate 2016-10-25 15:42:27 -07:00
syscall-test Revert "Block obsolete socket families in the default seccomp profile" 2017-05-09 14:26:00 +01:00
udev
vagrant-docker Merge pull request #29697 from yuexiao-wang/fix-docker-daemon 2017-01-04 11:55:38 +01:00
check-config.sh Merge pull request #28634 from ghostplant/check_cfg_memsw 2017-01-27 10:49:32 +01:00
docker-machine-install-bundle.sh Convert script shebangs from "#!/bin/bash" to "#!/usr/bin/env bash" 2017-02-13 11:01:54 -08:00
dockerize-disk.sh Fix dockerize-disk.sh working in non-en locale 2015-07-02 16:08:12 -07:00
download-frozen-image-v1.sh Convert script shebangs from "#!/bin/bash" to "#!/usr/bin/env bash" 2017-02-13 11:01:54 -08:00
download-frozen-image-v2.sh Convert script shebangs from "#!/bin/bash" to "#!/usr/bin/env bash" 2017-02-13 11:01:54 -08:00
editorconfig added editorconfig 2016-10-20 22:18:16 -02:00
mac-install-bundle.sh Add a script to install a bundle into Docker for Mac 2016-10-05 13:21:18 +02:00
mkimage-alpine.sh Additional repo and container cleanup 2015-12-28 14:11:56 +01:00
mkimage-arch-pacman.conf
mkimage-arch.sh Changed to 1800 second timeout for all ARMV* 2016-07-10 18:47:14 -07:00
mkimage-archarm-pacman.conf Fixed arm arch image maker to support arm versions other than 7 2016-07-10 18:46:35 -07:00
mkimage-busybox.sh
mkimage-crux.sh
mkimage-debootstrap.sh
mkimage-pld.sh add script to make base image for PLD Linux 2016-05-31 09:20:51 +03:00
mkimage-rinse.sh Moving man pages out of docs 2015-06-10 13:43:35 -07:00
mkimage-yum.sh Add errexit to mkimage-yum.sh 2016-09-14 12:04:04 +02:00
mkimage.sh Add functional support for Docker sub commands on Solaris 2016-11-07 09:06:34 -08:00
nuke-graph-directory.sh Convert script shebangs from "#!/bin/bash" to "#!/usr/bin/env bash" 2017-02-13 11:01:54 -08:00
project-stats.sh
README.md Add .md extension to readme for markdown rendering 2016-02-24 20:39:46 +00:00
report-issue.sh add execute bit to contrib/report-issue.sh 2016-02-16 12:55:15 +02:00
REVIEWERS

README.md

The contrib directory contains scripts, images, and other helpful things which are not part of the core docker distribution. Please note that they could be out of date, since they do not receive the same attention as the rest of the repository.