cyphar 65987d4f80 daemon: *: refactored container resource path generation ...

This patch is a preventative patch, it fixes possible future
vulnerabilities regarding unsantised paths. Due to several recent
vulnerabilities, wherein the docker daemon could be fooled into
accessing data from the host (rather than a container), this patch
was created to try and mitigate future possible vulnerabilities in
the same vein.

Docker-DCO-1.1-Signed-off-by: Aleksa Sarai <cyphar@cyphar.com> (github: cyphar)
Upstream-commit: 0fb507dc2328c5c364a2cd1701a155efb1767a1a
Component: engine

2014-05-14 11:15:50 +10:00

..

execdriver

Always mount a /run tmpfs in the container

2014-05-12 21:41:04 +02:00

graphdriver

devmapper: Remove accidental debug spew

2014-05-08 19:25:47 +02:00

networkdriver

add resolvconf

2014-05-05 22:55:32 +00:00

attach.go

Move Attach from container to daemon

2014-05-05 16:48:56 -07:00

container_unit_test.go

Rename runtime/* to daemon/*

2014-04-17 14:43:01 -07:00

container.go

daemon: *: refactored container resource path generation

2014-05-14 11:15:50 +10:00

daemon_aufs.go

Rename runtime/* to daemon/*

2014-04-17 14:43:01 -07:00

daemon_btrfs.go

Rename runtime/* to daemon/*

2014-04-17 14:43:01 -07:00

daemon_devicemapper.go

Rename runtime/* to daemon/*

2014-04-17 14:43:01 -07:00

daemon_no_aufs.go

Rename runtime/* to daemon/*

2014-04-17 14:43:01 -07:00

daemon.go

move RegisterLinks to daemon

2014-05-13 00:54:46 +00:00

history.go

Rename runtime/* to daemon/*

2014-04-17 14:43:01 -07:00

network_settings.go

Rename runtime/* to daemon/*

2014-04-17 14:43:01 -07:00

server.go

Rename runtime/* to daemon/*

2014-04-17 14:43:01 -07:00

state.go

container: Remove Ghost state

2014-04-22 09:49:53 +02:00

utils_test.go

Rename runtime/* to daemon/*

2014-04-17 14:43:01 -07:00

utils.go

Rename runtime/* to daemon/*

2014-04-17 14:43:01 -07:00

volumes.go

daemon: *: refactored container resource path generation

2014-05-14 11:15:50 +10:00