docker/cli
1
0
Fork 0
mirror of https://github.com/docker/cli.git synced 2026-01-23 15:21:32 +03:00
Code Activity
Files
2a0b4ab45f4e91f1c7818feb6dd681bfc436e9b8
cli/components/engine/daemon
History
Dan Walsh 2a0b4ab45f Change default label of container volumes to shared SELinux Label 
Since these will be shared between containers we want to label
them as svirt_sandbox_file_t:s0.  That will allow multiple containers
to write to them.

Currently we are allowing container domains to read/write all content in
/var/lib/docker because of container volumes.  This is a big security hole
in our SELinux story.

This patch will allow us to tighten up the security of docker containers.

Docker-DCO-1.1-Signed-off-by: Dan Walsh <dwalsh@redhat.com> (github: rhatdan)
Upstream-commit: 73617e5e18159e5f791d2860c7857cd5dea31be4
Component: engine
2014-09-09 08:18:20 -04:00
..
execdriver
Update mount struct with reference
2014-09-01 15:18:30 -07:00
graphdriver
Change default label of container volumes to shared SELinux Label
2014-09-09 08:18:20 -04:00
networkdriver
Skip "no chain" error on deleting chain in Unmap
2014-08-27 20:24:27 +04:00
attach.go
move some io related utils to pkg/ioutils
2014-09-03 11:36:21 +03:00
changes.go
Move "changes" to daemon/changes.go
2014-08-01 14:24:46 -04:00
commit.go
Move "commit" to daemon/commit.go
2014-08-01 14:17:24 -04:00
config.go
Fix typo for --restart deprecation
2014-08-22 12:56:43 -07:00
container_unit_test.go
Added test cases for no port passed to nat.ParsePortSpecs and negative port number passed
2014-08-01 23:41:34 +05:30
container.go
fixes #7802, when api version 1.11 is json.Marshaling the container struct
2014-09-08 09:30:33 -07:00
copy.go
Move "copy" to daemon/copy.go
2014-08-01 14:24:41 -04:00
create.go
Cleanup: move image depth checks in image/
2014-08-15 00:43:12 +00:00
daemon_aufs.go
Extract log utils into pkg/log
2014-08-13 15:18:15 -07:00
daemon_btrfs.go
update go import path and libcontainer
2014-07-24 22:19:50 +00:00
daemon_devicemapper.go
update go import path and libcontainer
2014-07-24 22:19:50 +00:00
daemon_no_aufs.go
update go import path and libcontainer
2014-07-24 22:19:50 +00:00
daemon.go
move some io related utils to pkg/ioutils
2014-09-03 11:36:21 +03:00
delete.go
Use State as embedded to Container
2014-09-03 00:01:11 +04:00
export.go
Separate events subsystem
2014-08-06 10:08:19 +00:00
history.go
don't call sort for every add in history
2014-05-14 15:02:02 +03:00
image_delete.go
Use State as embedded to Container
2014-09-03 00:01:11 +04:00
info.go
Extract log utils into pkg/log
2014-08-13 15:18:15 -07:00
inspect.go
update go import path and libcontainer
2014-07-24 22:19:50 +00:00
kill.go
Separate events subsystem
2014-08-06 10:08:19 +00:00
list.go
Use State as embedded to Container
2014-09-03 00:01:11 +04:00
logs.go
Use State as embedded to Container
2014-09-03 00:01:11 +04:00
MAINTAINERS
Add maintainers to daemon/ and graph/
2014-08-06 10:29:15 +00:00
monitor.go
Use State as embedded to Container
2014-09-03 00:01:11 +04:00
network_settings.go
update go import path and libcontainer
2014-07-24 22:19:50 +00:00
pause.go
Separate events subsystem
2014-08-06 10:08:19 +00:00
README.md
Add readme for daemon directory
2014-05-17 17:56:02 +00:00
resize.go
Move "resize" to daemon/resize.go
2014-08-01 14:17:20 -04:00
restart.go
Separate events subsystem
2014-08-06 10:08:19 +00:00
start.go
Use State as embedded to Container
2014-09-03 00:01:11 +04:00
state_test.go
Fix go vet warnings
2014-08-13 11:37:30 +04:00
state.go
Merge Container and State mutexes
2014-08-29 12:56:04 +04:00
stop.go
Use State as embedded to Container
2014-09-03 00:01:11 +04:00
top.go
Use State as embedded to Container
2014-09-03 00:01:11 +04:00
utils_linux.go
Fix cross compile non cgo and linux systems
2014-07-16 16:57:49 -07:00
utils_nolinux.go
Fix cross compile non cgo and linux systems
2014-07-16 16:57:49 -07:00
utils_test.go
update go import path and libcontainer
2014-07-24 22:19:50 +00:00
utils.go
update go import path and libcontainer
2014-07-24 22:19:50 +00:00
volumes.go
Cleanup: applyVolumesFrom
2014-08-26 20:52:58 -04:00
wait.go
Use State as embedded to Container
2014-09-03 00:01:11 +04:00

README.md

This directory contains code pertaining to running containers and storing images

Code pertaining to running containers:

  • execdriver
  • networkdriver

Code pertaining to storing images:

  • graphdriver
View Git Blame Copy Permalink