p4u1/docker-cli
0
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
fb6083d3f664c084b9b8328c4165648d74ccbe64
docker-cli/components/engine/daemon/execdriver
History
Abin Shahab fb6083d3f6 use lxc.auto.mount to ensure proc and sys are readonly 
Set lxc.auto.mount = proc:mixed in unprivilged mode. This ensures that lxc mounts sys and proc/sysrq-trigger as readonly.
Signed-off-by: Abin Shahab <ashahab@altiscale.com> (github: ashahab-altiscale)
Docker-DCO-1.1-Signed-off-by: Abin Shahab <ashahab@altiscale.com> (github: ashahab-altiscale)
Upstream-commit: d821c63e0d5fe2abe10ff885de6298acc4db956e
Component: engine
2015-01-18 09:27:16 +00:00
..
execdrivers
update go import path and libcontainer
2014-07-24 22:19:50 +00:00
lxc
use lxc.auto.mount to ensure proc and sys are readonly
2015-01-18 09:27:16 +00:00
native
Merge pull request #10093 from crosbymichael/readonly-containers
2015-01-14 15:56:51 -08:00
driver.go
Add --readonly for read only container rootfs
2015-01-14 15:41:31 -08:00
MAINTAINERS
update MAINTAINERS files
2014-06-16 22:20:07 +00:00
pipes.go
Rename runtime/* to daemon/*
2014-04-17 14:43:01 -07:00
termconsole.go
Refactoring execdriver.Command and Container structs to support 'docker exec' and other
2014-09-01 14:30:16 -07:00
utils.go
Merge pull request #7062 from crosbymichael/fix-lxc-caps
2014-07-28 16:19:08 -07:00