c5251f7116
Until we can support existing behaviour with `sudo` disable ambient capabilities in runc build. Add tests that non root user cannot use default capabilities, and that capabilities are working as expected. Test for #27590 Update runc. Signed-off-by: Justin Cormack <justin.cormack@docker.com>
15 lines
565 B
Docker
15 lines
565 B
Docker
FROM buildpack-deps:jessie
|
|
|
|
COPY . /usr/src/
|
|
|
|
WORKDIR /usr/src/
|
|
|
|
RUN gcc -g -Wall -static userns.c -o /usr/bin/userns-test \
|
|
&& gcc -g -Wall -static ns.c -o /usr/bin/ns-test \
|
|
&& gcc -g -Wall -static acct.c -o /usr/bin/acct-test \
|
|
&& gcc -g -Wall -static setuid.c -o /usr/bin/setuid-test \
|
|
&& gcc -g -Wall -static setgid.c -o /usr/bin/setgid-test \
|
|
&& gcc -g -Wall -static socket.c -o /usr/bin/socket-test \
|
|
&& gcc -g -Wall -static raw.c -o /usr/bin/raw-test
|
|
|
|
RUN [ "$(uname -m)" = "x86_64" ] && gcc -s -m32 -nostdlib exit32.s -o /usr/bin/exit32-test || true
|