github/linuxkit
1
0
Fork 0
mirror of https://github.com/linuxkit/linuxkit.git synced 2025-11-25 05:37:40 +00:00
Code Issues Projects Releases Wiki Activity
Files
348e83f3e4eb4db67937e51a677aa11d58024d0b
linuxkit/projects/selinux/selinux.yaml
Tycho Andersen 31b0c2a9b6 projects: add selinux project 
Signed-off-by: Tycho Andersen <tycho@docker.com>
2017-03-21 11:42:11 -06:00

29 lines
828 B
YAML
Raw Blame History

kernel:
image: "mobylinux/kernel-selinux:4.9.x"
cmdline: "console=ttyS0 page_poison=1 security=selinux selinux=1"
init: "mobylinux/init:b0379db477e4453fcab55832d685233e7e3cec86"
system:
- name: sysctl
image: "mobylinux/sysctl:2cf2f9d5b4d314ba1bfc22b2fe931924af666d8c"
network_mode: host
pid: host
ipc: host
capabilities:
- CAP_SYS_ADMIN
read_only: true
daemon:
- name: rngd
image: "mobylinux/rngd:3dad6dd43270fa632ac031e99d1947f20b22eec9@sha256:1c93c1db7196f6f71f8e300bc1d15f0376dd18e8891c8789d77c8ff19f3a9a92"
capabilities:
- CAP_SYS_ADMIN
oom_score_adj: -800
read_only: true
command: [/bin/tini, /usr/sbin/rngd, -f]
files:
- path: etc/docker/daemon.json
contents: '{"debug": true}'
outputs:
- format: kernel+initrd
- format: iso-bios
- format: iso-efi
Reference in New Issue View Git Blame Copy Permalink