index
:
moby
master
A fork of moby (docker) for custom push logic
Galen Guyer <galen@galenguyer.com>
about
summary
refs
log
tree
commit
diff
log msg
author
committer
range
path:
root
/
profiles
Commit message (
Expand
)
Author
Age
Files
Lines
...
*
profiles: Fix file permissions on json files
Arnaud Rebillout
2019-09-16
2
-0
/
+0
*
seccomp: whitelist io-uring related system calls
youcai
2019-09-07
2
-0
/
+6
*
Add sigprocmask to default seccomp profile
Michael Crosby
2019-08-29
2
-0
/
+2
*
profiles/seccomp: improve profile conversion
Kir Kolyshkin
2019-06-18
1
-7
/
+5
*
Merge pull request #39121 from goldwynr/master
Sebastiaan van Stijn
2019-06-11
1
-1
/
+1
|
\
|
*
apparmor: allow readby and tracedby
Goldwyn Rodrigues
2019-04-22
1
-1
/
+1
*
|
Fix seccomp profile for clone syscall
Sebastiaan van Stijn
2019-06-04
3
-5
/
+5
|
/
*
seccomp: whitelist io_pgetevents()
Avi Kivity
2019-03-18
2
-0
/
+2
*
seccomp: review update
Tonis Tiigi
2019-02-05
3
-17
/
+18
*
Merge pull request #38137 from tonistiigi/seccomp-ptrace
Justin Cormack
2019-02-05
3
-1
/
+50
|
\
|
*
seccomp: allow ptrace for 4.8+ kernels
Tonis Tiigi
2018-11-04
3
-1
/
+50
*
|
Merge pull request #37831 from cyphar/apparmor-external-templates
Vincent Demeester
2018-11-19
2
-0
/
+27
|
\
\
|
|
/
|
/
|
|
*
apparmor: allow receiving of signals from 'docker kill'
Aleksa Sarai
2018-09-13
2
-0
/
+27
*
|
Move the syslog syscall to be gated by CAP_SYS_ADMIN or CAP_SYSLOG
Justin Cormack
2018-09-27
2
-2
/
+26
*
|
Whitelist syscalls linked to CAP_SYS_NICE in default seccomp profile
Nicolas V Castet
2018-06-20
2
-0
/
+28
|
/
*
If container will run as non root user, drop permitted, effective caps early
Justin Cormack
2018-03-19
1
-2
/
+2
*
Whitelist statx syscall for libseccomp-2.3.3 onward
NobodyOnSE
2018-03-06
2
-0
/
+2
*
Add canonical import comment
Daniel Nephin
2018-02-05
6
-6
/
+6
*
Copy Inslice() to those parts that use it
Chao Wang
2017-11-10
1
-5
/
+15
*
drop useless apparmor denies
Tycho Andersen
2017-10-06
1
-2
/
+0
*
Remove double defined alarm
Simon Vikstrom
2017-08-19
2
-2
/
+0
*
Merge pull request #34445 from pmoust/f-seccomp-quotacl
Yong Tang
2017-08-09
2
-0
/
+2
|
\
|
*
seccomp: whitelist quotactl with CAP_SYS_ADMIN
Panagiotis Moustafellos
2017-08-09
2
-0
/
+2
*
|
Move pkg/templates away
Vincent Demeester
2017-08-08
1
-2
/
+2
|
/
*
Remove unused import
Florin Patan
2017-07-29
1
-1
/
+0
*
[project] change syscall to /x/sys/unix|windows
Christopher Jones
2017-07-11
1
-4
/
+3
*
Whitelist adjtimex get operation. Adjustment operations are gated by CAP_SYS_...
Miklos Szegedi
2017-06-02
2
-2
/
+2
*
Revert "Block obsolete socket families in the default seccomp profile"
Justin Cormack
2017-05-09
2
-364
/
+4
*
Update moby to runc and oci 1.0 runtime final rc
Michael Crosby
2017-05-05
1
-13
/
+13
*
seccomp: Allow personality with UNAME26 bit set.
Ian Campbell
2017-05-02
2
-0
/
+56
*
profiles: seccomp: allow clock_settime when CAP_SYS_TIME is added
Antonio Murdaca
2017-03-20
2
-1
/
+3
*
Seccomp Update
Justin Cormack
2017-03-07
2
-0
/
+4
*
profiles: seccomp: fix !seccomp build
Aleksa Sarai
2017-03-02
1
-1
/
+1
*
Allow sync_file_range2 on supported architectures.
Gabriel Linder
2017-02-14
2
-0
/
+26
*
Add two arm specific syscalls to seccomp profile
Justin Cormack
2017-01-29
2
-0
/
+4
*
Block obsolete socket families in the default seccomp profile
Justin Cormack
2017-01-17
2
-4
/
+364
*
Merge pull request #29314 from vdemeester/no-more-utils
Sebastiaan van Stijn
2016-12-22
1
-1
/
+1
|
\
|
*
Move templates to pkg/templates
Vincent Demeester
2016-12-12
1
-1
/
+1
*
|
Get rid of err altogether by just returning the assignment
Xianglin Gao
2016-12-13
1
-9
/
+2
*
|
Merge pull request #29130 from cyphar/29097-dynamically-reload-apparmor
Victor Vieux
2016-12-12
1
-5
/
+11
|
\
\
|
|
/
|
/
|
|
*
apparmor: switch IsLoaded to return bool
Aleksa Sarai
2016-12-06
1
-5
/
+11
*
|
Merge pull request #28924 from xlgao-zju/fix-apparmor-load-profile
Justin Cormack
2016-12-08
1
-1
/
+1
|
\
\
|
|
/
|
/
|
|
*
fix apparmor load profile
Xianglin Gao
2016-11-29
1
-1
/
+1
*
|
profiles/seccomp: fix comment
Antonio Murdaca
2016-11-25
1
-1
/
+1
|
/
*
remove redundant file Close
allencloud
2016-11-18
1
-1
/
+0
*
Fix apparmor profile installation
Christopher Jones
2016-09-29
1
-2
/
+2
*
apparmor: prohibit /sys/firmware/** from being accessed
Akihiro Suda
2016-09-16
1
-1
/
+1
*
apparmor: do not save profile to /etc/apparmor.d
Aleksa Sarai
2016-09-13
1
-10
/
+9
*
Add engine-api types to docker
Michael Crosby
2016-09-07
3
-3
/
+3
*
New seccomp format
Antonio Murdaca
2016-09-01
5
-3317
/
+1220
[prev]
[next]