moby/profiles
Djordje Lukic 7de9f4f82d Allow different syscalls from kernels 5.12 -> 5.16
Kernel 5.12:

    mount_setattr: needs CAP_SYS_ADMIN

Kernel 5.14:

    quotactl_fd: needs CAP_SYS_ADMIN
    memfd_secret: always allowed

Kernel 5.15:

    process_mrelease: always allowed

Kernel 5.16:

    futex_waitv: always allowed

Signed-off-by: Djordje Lukic <djordje.lukic@docker.com>
2022-05-13 12:35:08 +02:00
..
apparmor refactor: move from io/ioutil to io and os package 2021-08-27 14:56:57 +08:00
seccomp Allow different syscalls from kernels 5.12 -> 5.16 2022-05-13 12:35:08 +02:00