opensource/podman
1
0
Fork 0
mirror of https://github.com/containers/podman.git synced 2025-06-27 05:26:50 +08:00
Code Issues Packages Projects Releases Wiki Activity
Files
podman/pkg/spec
History
Daniel J Walsh bae80a0b66 Clear all caps, except the bounding set, when --user is specified. 
Currently we are giving all caps to users when running with podman run --user,
They should get none by default.  If the command line includes --cap-add, then
we need to run with those capabilties.  Similarly we need to drop caps from
bounding set, if user specifies --cap-drop

Signed-off-by: Daniel J Walsh <dwalsh@redhat.com>

Closes: #851
Approved by: mheon
2018-05-31 13:46:08 +00:00
..
createconfig.go
podman create, start, getattachsocket
2018-05-21 19:26:56 +00:00
parse.go
podman create, start, getattachsocket
2018-05-21 19:26:56 +00:00
ports.go
Spell check strings and comments
2018-05-25 08:45:15 +00:00
spec_test.go
podman create, start, getattachsocket
2018-05-21 19:26:56 +00:00
spec.go
Clear all caps, except the bounding set, when --user is specified.
2018-05-31 13:46:08 +00:00