kotovalexarian-likes-github/moby--moby
1
0
Fork 0
mirror of https://github.com/moby/moby.git synced 2022-11-09 12:21:53 -05:00
Code Releases Activity
moby--moby/daemon/execdriver
History
Justin Cormack ac47ad8ea4 Add some uses of personality syscall to default seccomp filter 
We generally want to filter the personality(2) syscall, as it
allows disabling ASLR, and turning on some poorly supported
emulations that have been the target of CVEs. However the use
cases for reading the current value, setting the default
PER_LINUX personality, and setting PER_LINUX32 for 32 bit
emulation are fine.

See issue #20634

Signed-off-by: Justin Cormack <justin.cormack@docker.com>
(cherry picked from commit 39b799ac53)
2016-03-07 16:36:41 -05:00
..
execdrivers daemon: remove sysInitPath, lxc leftover 2015-11-30 10:04:13 +01:00
native Add some uses of personality syscall to default seccomp filter 2016-03-07 16:36:41 -05:00
windows Modify import paths to point to the new engine-api package. 2016-01-06 19:48:59 -05:00
driver.go Implemet docker update command 2015-12-28 19:19:26 +08:00
driver_unix.go Filter auto-created device list if user namespaces enabled 2016-03-07 14:46:59 -05:00
driver_windows.go Move Config and HostConfig from runconfig to types/container. 2015-12-22 13:34:30 -05:00
pipes.go Fix golint warnings for daemon/execdriver/* 2015-07-28 08:43:22 +08:00
termconsole.go Add user namespace (mapping) support to the Docker engine 2015-10-09 17:47:37 -04:00
utils_unix.go Don't build utils on Windows 2015-11-07 08:46:36 -08:00