opensource/podman
1
0
Fork 0
mirror of https://github.com/containers/podman.git synced 2025-12-02 02:58:03 +08:00
Code Issues Packages Projects Releases Wiki Activity
Files
bd40dcfc2bc7c9014ea1f33482fb63aacbcdfe87
podman/vendor/github.com/seccomp/containers-golang/README.md
Valentin Rothberg bd40dcfc2b vendor: update everything 
* If possible, update each dependency to the latest available version.

* Use releases over commit IDs and avoid vendoring branches.

Signed-off-by: Valentin Rothberg <rothberg@redhat.com>
2019-01-11 13:38:11 +01:00

1.2 KiB
Raw Blame History

containers-golang is a set of Go libraries used by container runtimes to generate and load seccomp mappings into the kernel.

seccomp (short for secure computing mode) is a BPF based syscall filter language and present a more conventional function-call based filtering interface that should be familiar to, and easily adopted by, application developers.

Building

make - Generates default.json file, which containes the whitelisted syscalls that can be used by container runtime engines like CRI-O, Buildah, Podman and Docker, and container runtimes like OCI Runc to controll the syscalls available to containers.

Supported build tags

seccomp

Contributing

When developing this library, please use make (or make … BUILDTAGS=…) to take advantage of the tests and validation.

License

ASL 2.0

Contact

  • IRC: #CRI-O on freenode.net
Reference in New Issue View Git Blame Copy Permalink