diff options
| author |   Manuel Rüger <mrueg@gentoo.org> | 2018-04-07 00:00:12 +0200 |
|---|---|---|
| committer | Manuel Rüger <mrueg@gentoo.org> | 2018-04-07 00:00:57 +0200 |
| commit | f76e0c651a4a7b7cc722e3fd506151a786078c70 (patch) | |
| tree | e7d222c331806eb6ba6a8f53b0366b6f663cae09 /app-emulation/docker/files | |
| parent | dev-python/pynacl: Fix missing test dependencies (diff) | |
| download | gentoo-f76e0c651a4a7b7cc722e3fd506151a786078c70.tar.gz gentoo-f76e0c651a4a7b7cc722e3fd506151a786078c70.tar.bz2 gentoo-f76e0c651a4a7b7cc722e3fd506151a786078c70.zip | |
app-emulation/docker: Add Patch
https://github.com/moby/moby/issues/36809
Package-Manager: Portage-2.3.28, Repoman-2.3.9
Diffstat (limited to 'app-emulation/docker/files')
| -rw-r--r-- | app-emulation/docker/files/bsc1073877-docker-apparmor-add-signal.patch | 20 |
1 files changed, 20 insertions, 0 deletions
diff --git a/app-emulation/docker/files/bsc1073877-docker-apparmor-add-signal.patch b/app-emulation/docker/files/bsc1073877-docker-apparmor-add-signal.patch new file mode 100644 index 000000000000..6bc3fa494e33 --- /dev/null +++ b/app-emulation/docker/files/bsc1073877-docker-apparmor-add-signal.patch @@ -0,0 +1,20 @@ +From: Goldwyn Rodrigues <rgoldwyn@suse.com> +Subject: Allow signal mediation while for apparmor profile + +Allows docker processes under docker-default ot receive all signals. + +Signed-off-by: Goldwyn Rodrigues <rgoldwyn@suse.com> +--- + components/engine/profiles/apparmor/template.go | 1 + + 1 file changed, 1 insertion(+) + +--- a/components/engine/profiles/apparmor/template.go ++++ b/components/engine/profiles/apparmor/template.go +@@ -17,6 +17,7 @@ profile {{.Name}} flags=(attach_disconne + capability, + file, + umount, ++ signal (receive) peer=unconfined, + + deny @{PROC}/* w, # deny write for all files directly in /proc (not in a subdir) + # deny write to files not in /proc/<number>/** or /proc/sys/** |