beenull/moby
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity
moby/container
History
Kenfe-Mickael Laventure f7d4abdc00 Prevent mqueue from implicitely becoming a bind mount with --ipc=host 
Currently, when running a container with --ipc=host, if /dev/mqueue is
a standard directory on the hos the daemon will bind mount it allowing
the container to create/modify files on the host.

This commit forces /dev/mqueue to always be of type mqueue except when
the user explicitely requested something to be bind mounted to
/dev/mqueue.

Signed-off-by: Kenfe-Mickael Laventure <mickael.laventure@gmail.com>
2016-02-09 14:16:08 -08:00
..
archive.go Modify import paths to point to the new engine-api package. 2016-01-06 19:48:59 -05:00
container.go Signed-off-by: John Howard <jhoward@microsoft.com> 2016-01-29 20:49:39 -08:00
container_unit_test.go Modify import paths to point to the new engine-api package. 2016-01-06 19:48:59 -05:00
container_unix.go Prevent mqueue from implicitely becoming a bind mount with --ipc=host 2016-02-09 14:16:08 -08:00
container_windows.go Signed-off-by: John Howard <jhoward@microsoft.com> 2016-01-29 20:49:39 -08:00
history.go Extract container store from the daemon. 2016-01-19 13:21:41 -05:00
memory_store.go Extract container store from the daemon. 2016-01-19 13:21:41 -05:00
memory_store_test.go Extract container store from the daemon. 2016-01-19 13:21:41 -05:00
monitor.go Lock container when set state to restarting 2016-02-02 19:50:06 +08:00
state.go Forbid exec a restarting container 2016-01-27 10:05:06 +08:00
state_test.go Move Container to its own package. 2015-12-03 17:39:49 +01:00
state_unix.go Move Container to its own package. 2015-12-03 17:39:49 +01:00
state_windows.go Move Container to its own package. 2015-12-03 17:39:49 +01:00
store.go Extract container store from the daemon. 2016-01-19 13:21:41 -05:00