ebcb7d6b40
Use strongly typed errors to set HTTP status codes. Error interfaces are defined in the api/errors package and errors returned from controllers are checked against these interfaces. Errors can be wraeped in a pkg/errors.Causer, as long as somewhere in the line of causes one of the interfaces is implemented. The special error interfaces take precedence over Causer, meaning if both Causer and one of the new error interfaces are implemented, the Causer is not traversed. Signed-off-by: Brian Goff <cpuguy83@gmail.com>
29 lines
660 B
Go
29 lines
660 B
Go
//+build !windows
|
|
|
|
package daemon
|
|
|
|
import (
|
|
"github.com/docker/docker/container"
|
|
)
|
|
|
|
func (daemon *Daemon) saveApparmorConfig(container *container.Container) error {
|
|
container.AppArmorProfile = "" //we don't care about the previous value.
|
|
|
|
if !daemon.apparmorEnabled {
|
|
return nil // if apparmor is disabled there is nothing to do here.
|
|
}
|
|
|
|
if err := parseSecurityOpt(container, container.HostConfig); err != nil {
|
|
return validationError{err}
|
|
}
|
|
|
|
if !container.HostConfig.Privileged {
|
|
if container.AppArmorProfile == "" {
|
|
container.AppArmorProfile = defaultApparmorProfile
|
|
}
|
|
|
|
} else {
|
|
container.AppArmorProfile = "unconfined"
|
|
}
|
|
return nil
|
|
}
|