kotovalexarian-likes-github/moby--moby
1
0
Fork 0
mirror of https://github.com/moby/moby.git synced 2022-11-09 12:21:53 -05:00
Code Releases Activity
moby--moby/container
History
Dan Walsh ba38d58659 Make mqueue container specific 
mqueue can not be mounted on the host os and then shared into the container.
There is only one mqueue per mount namespace, so current code ends up leaking
the /dev/mqueue from the host into ALL containers.  Since SELinux changes the
label of the mqueue, only the last container is able to use the mqueue, all
other containers will get a permission denied.  If you don't have SELinux protections
sharing of the /dev/mqueue allows one container to interact in potentially hostile
ways with other containers.

Signed-off-by: Dan Walsh <dwalsh@redhat.com>
2016-02-05 16:50:35 +01:00
..
archive.go Modify import paths to point to the new engine-api package. 2016-01-06 19:48:59 -05:00
container.go Signed-off-by: John Howard <jhoward@microsoft.com> 2016-01-29 20:49:39 -08:00
container_unit_test.go Modify import paths to point to the new engine-api package. 2016-01-06 19:48:59 -05:00
container_unix.go Make mqueue container specific 2016-02-05 16:50:35 +01:00
container_windows.go Signed-off-by: John Howard <jhoward@microsoft.com> 2016-01-29 20:49:39 -08:00
history.go Extract container store from the daemon. 2016-01-19 13:21:41 -05:00
memory_store.go Extract container store from the daemon. 2016-01-19 13:21:41 -05:00
memory_store_test.go Extract container store from the daemon. 2016-01-19 13:21:41 -05:00
monitor.go Lock container when set state to restarting 2016-02-02 19:50:06 +08:00
state.go Forbid exec a restarting container 2016-01-27 10:05:06 +08:00
state_test.go
state_unix.go
state_windows.go
store.go Extract container store from the daemon. 2016-01-19 13:21:41 -05:00