Rolf Neugebauer
6bea56c185
Update all YAML files to use the new packages
...
Signed-off-by: Rolf Neugebauer <rolf.neugebauer@docker.com>
2017-05-18 18:55:22 +01:00
Justin Cormack
6a5f8099a4
Remove extra files from init
...
fix #1807
Signed-off-by: Justin Cormack <justin.cormack@docker.com>
2017-05-12 15:36:13 +01:00
Justin Cormack
66d6d3a6e3
Update containers to use containerd
...
Now the issues seem fixed, switch over to containerd.
Signed-off-by: Justin Cormack <justin.cormack@docker.com>
2017-05-11 11:25:06 +01:00
Justin Cormack
72c3f9cfa2
More renames to LinuxKit
...
Signed-off-by: Justin Cormack <justin.cormack@docker.com>
2017-04-14 11:47:24 -05:00
Rolf Neugebauer
85d6492d5d
kernel: Use linuxkit images for compilingi/packaging the kernel
...
Signed-off-by: Rolf Neugebauer <rolf.neugebauer@docker.com>
2017-04-12 21:28:17 +01:00
Justin Cormack
e4213f1582
Merge pull request #1602 from justincormack/slash-rshared
...
Make / rshared
2017-04-12 13:39:31 +01:00
Justin Cormack
3c326bebdf
Make / rshared
...
Previously only `/var` was `rshared` but some people need to share
mounts in `/opt` etc so let us make everything `rshared` for now.
Signed-off-by: Justin Cormack <justin.cormack@docker.com>
2017-04-12 13:10:46 +01:00
Rolf Neugebauer
b0629176ab
examples: Don't use a file section if you don't need it
...
Exception is ./moby.yaml where it serves as an example.
Signed-off-by: Rolf Neugebauer <rolf.neugebauer@docker.com>
2017-04-12 12:26:30 +01:00
Rolf Neugebauer
a59e24b4fa
example: Don't use the full @sha25t version of images
...
The sha1 tag should be sufficient to uniquely identify the image
and the sha256 versions are just very long...
Signed-off-by: Rolf Neugebauer <rolf.neugebauer@docker.com>
2017-04-12 12:24:02 +01:00
Riyaz Faizullabhoy
5f90faeafa
init: update main moby example and tests
...
Signed-off-by: Riyaz Faizullabhoy <riyaz.faizullabhoy@docker.com>
2017-04-10 11:59:23 -07:00
Justin Cormack
bc23fde1c2
Use the real default containerd toml config
...
Rather than an empty one.
Signed-off-by: Justin Cormack <justin.cormack@docker.com>
2017-04-10 16:25:13 +01:00
Justin Cormack
9ee52aa966
Rework how /var is mounted
...
Instead of mounting a new filesystem, revert to doing a `rw` bind.
However do not make `/` `rshared`, just `/var` as that is where we expect
filesystems to be mounted for persistence. Also only make the actual
container rootfs writeable, not the whole directory.
Signed-off-by: Justin Cormack <justin.cormack@docker.com>
2017-04-10 11:28:00 +01:00
Riyaz Faizullabhoy
3aead78f36
landlock: example yml
...
Signed-off-by: Riyaz Faizullabhoy <riyaz.faizullabhoy@docker.com>
2017-04-09 12:09:06 -07:00
Riyaz Faizullabhoy
b95ca1b358
landlock: gitignore for kernel build
...
Signed-off-by: Riyaz Faizullabhoy <riyaz.faizullabhoy@docker.com>
2017-04-09 12:08:53 -07:00
Riyaz Faizullabhoy
f89bd06edb
landlock: Makefile with kernel-landlock name
...
Signed-off-by: Riyaz Faizullabhoy <riyaz.faizullabhoy@docker.com>
2017-04-09 12:07:10 -07:00
Riyaz Faizullabhoy
1e9495e609
landlock: Dockerfile
...
Signed-off-by: Riyaz Faizullabhoy <riyaz.faizullabhoy@docker.com>
2017-04-09 12:06:48 -07:00
Mickaël Salaün
296a0f4560
landlock: Backport patches from the sixth series
...
Backport from Linux v4.11-rc3-812-gc6bf33827b7d to Linux 4.9.20:
https://github.com/landlock-lsm/linux/commits/landlock-v6-linux-v4.9.20
Do not include documentation nor tests.
See built documentation here:
https://landlock-lsm.github.io/linux-doc/landlock-v6/security/landlock/index.html
Signed-off-by: Mickaël Salaün <mic@digikod.net>
Link: https://lkml.kernel.org/r/20170328234650.19695-1-mic@digikod.net
2017-04-09 19:45:24 +02:00
Mickaël Salaün
792238f5cb
landlock: Add kernel_config{,.debug}
...
Based on kernel_config{,.debug} from commit
724561bf69
2017-04-09 19:45:24 +02:00
Riyaz Faizullabhoy
9effac329a
landlock: start project, add roadmap doc
...
Signed-off-by: Riyaz Faizullabhoy <riyaz.faizullabhoy@docker.com>
2017-04-08 20:05:39 -07:00
