Error out if user tries to specify a custom seccomp profile on system that does not support it
@@ -3,10 +3,15 @@
package daemon
import (
+ "fmt"
+
"github.com/docker/docker/container"
"github.com/opencontainers/specs/specs-go"
)
func setSeccomp(daemon *Daemon, rs *specs.Spec, c *container.Container) error {
+ if c.SeccompProfile != "" && c.SeccompProfile != "unconfined" {
+ return fmt.Errorf("seccomp profiles are not supported on this daemon, you cannot specify a custom seccomp profile")
+ }
return nil
}
Vincent Demeester