github/linuxkit
1
0
Fork 0
mirror of https://github.com/linuxkit/linuxkit.git synced 2025-07-19 17:26:28 +00:00
Code Issues Projects Releases Wiki Activity
v1.6.0
linuxkit/projects/selinux
History
Dave Tucker 561ce6f4be Remove Notary and Content Trust 
This commit removes Notary and Content Trust.
Notary v1 is due to be replaced with Notary v2 soon.
There is no clean migration path from one to the other.
For now, this removes all signing from LinuxKit.
We will look to add this back once a new Notary alternative
becomes available.

Signed-off-by: Dave Tucker <dave@dtucker.co.uk>
2021-03-30 14:51:11 +01:00
..
init Remove Notary and Content Trust 2021-03-30 14:51:11 +01:00
kernel kernel: Use linuxkit images for compilingi/packaging the kernel 2017-04-12 21:28:17 +01:00
Makefile Rename .yaml to .yml 2017-03-27 09:53:26 +02:00
README.md selinux: add readme 2017-03-21 12:08:14 -06:00
selinux.yml Consistently don't use quotes around image names 2017-07-09 17:47:30 +01:00

README.md

selinux

The ultimate goal here is to use SELinux as our default LSM in Moby. To this end, here are the compiler flags and userspace packages necessary to do the basics.

TODO

All the necessary binaries exist, so the next steps are:

  • label the filesystem with a default label
  • have a policy that contains containerd
  • label each container's files seprately, and contain them each with a policy
  • policies for other system daemons