moby/profiles at 21cce932b05a4b979359624668f7f09e83dc90cd - 0ct0pu5/moby

History

Aleksa Sarai 67c602c3fe apparmor: allow receiving of signals from 'docker kill' In newer kernels, AppArmor will reject attempts to send signals to a container because the signal originated from outside of that AppArmor profile. Correct this by allowing all unconfined signals to be received. Signed-off-by: Goldwyn Rodrigues <rgoldwyn@suse.com> Signed-off-by: Aleksa Sarai <asarai@suse.de> (cherry picked from commit `4822fb1e24`) Signed-off-by: Sebastiaan van Stijn <github@gone.nl>	2018-11-21 22:13:56 +01:00
..
apparmor	apparmor: allow receiving of signals from 'docker kill'	2018-11-21 22:13:56 +01:00
seccomp	Move the syslog syscall to be gated by CAP_SYS_ADMIN or CAP_SYSLOG	2018-10-02 20:33:38 +02:00

apparmor: allow receiving of signals from 'docker kill'

In newer kernels, AppArmor will reject attempts to send signals to a
container because the signal originated from outside of that AppArmor
profile. Correct this by allowing all unconfined signals to be received.

Signed-off-by: Goldwyn Rodrigues <rgoldwyn@suse.com>
Signed-off-by: Aleksa Sarai <asarai@suse.de>
(cherry picked from commit 4822fb1e24)
Signed-off-by: Sebastiaan van Stijn <github@gone.nl>

2018-11-21 22:13:56 +01:00

apparmor apparmor: allow receiving of signals from 'docker kill' 2018-11-21 22:13:56 +01:00

seccomp Move the syslog syscall to be gated by CAP_SYS_ADMIN or CAP_SYSLOG 2018-10-02 20:33:38 +02:00